Using XSS & Google To Find Physical Location

Posted by kdawson on Monday August 2, 2010 @06:24PM from the how-i-met-your-girlfriend dept.

wiredmikey sends along a brief (and quite poorly written) report from Security Week on Samy Kamkar's talk at Black Hat last week. In the video, which is amusing, he demonstrates how to obtain location information (within 30 feet, in the example he shows) of a user who does no more than visit a malicious website. The technique involves sniffing out the local router, breaking into it to obtain its MAC address, and sending that to Google to extract the router's location from Google's Street View database.

2 of 77 comments (clear)

Min score:

Reason:

Sort:

.. thats why it didnt work for me... by Anonymous Coward · 2010-08-02 18:29 · Score: -1, Offtopic

"obtain its MAC accress" .. thats why it didnt work for me... I was looking at the MAC address!
adult product by lucklyquan · 2010-08-02 20:59 · Score: -1, Offtopic

to give you a best time on http://www.well-replica.com