Slashdot Mirror

← Back to Stories (view on slashdot.org)

Tabnapping Scams Around the Corner?

Posted by CmdrTaco on from the well-that's-not-very-nice dept.

scamdetect pointed us to an interesting bit of news about a new security risk called tabnapping that was recently outlined by Aza Raskin. The short story is that background tabs are updated with login forms impersonating the sites they originally contained, but hosted by helpful third parties primarily interested in your password. (CT:Original writeup removed at request of submitter)

4 of 362 comments (clear)

  1. Re:Umm... by mgblst · · Score: 5, Insightful

    What if they have it in another tab already? Then it would work.

    And if you use this for gmail, or facebook, tabs that people always have opened, it is going to get results.

    This is actually incredibly brilliant. I am going to pay more attention to my tabs from now on.

  2. Re:A little peeved! by clickety6 · · Score: 5, Insightful

    First tab-nabbing and now submission-nabbing where the link in the article changes after submission!

    --
    ----------------------------------- My Other Sig Is Hilarious -----------------------------------
  3. Re:A little peeved! by mysidia · · Score: 5, Insightful

    Slashdot is about news, not driving traffic to someone's website.

    And 'getting traffic' is not some kind of exchange or reward offered for submitting an article.

    If a different link is editorially better, then it is expected that the editors will swap it.

  4. Re:A little peeved! by mcgrew · · Score: 5, Insightful

    That's a valid reason for including the link and for being disappointed that it was replaced - isn't it?

    Not in my eyes it isn't, and I wish they'd do it more often -- like when the submission has ten ad-laden one-paragraph pages I wish they'd link to a single page view, whether that site or another. Of course you think your blog was better than krebsonsecurity, but personally I almost never click on any link with "blog" in the name, especially from slashdot. They've gotten a lot of (well deserved) flak in the past for linking a blog that links an original story, and I'm glad they're listening.

    Be glad that they didn't rewrite the entire summary as they've done with some of my submissions.

    A submission is supposed to benefit the slashdot community, not the submitter. Too often people like you make submissions just to drive traffic to their own site for the money.

    Shame on you.

    --
    Free Martian Whores!