JavaScript Botnet Sheds Light On Criminal Activity

CowboyRobot writes "Informatica64, a security research group, demonstrated the use of cached JavaScript to control computers connecting to a malicious proxy. 'The researchers found a variety of low-level criminals using their proxy server: fraudsters posing as British immigration officials offering work permits in hopes of stealing money and sensitive documents from their victims; a man pretending to be a pretty woman on a number of dating sites to con victims into sending money for a plane ticket; and another fraudster selling nonexistent Yorkshire Terriers.'"

Re:uh... only if you run it

[hairyfeet]

Hell you can't even change browser defaults because "web designers" have gone suck fucking heavy with JavaScript that most sites will be completely unusable without it.

I used to try to get my customers to use NoScript but now its strictly ABP, why? Because it only takes a half a dozen "reload the page a dozen damned times trying to figure which of the 40 third party scripts loads the fucking content" easter egg hunts for people to become sick of it. Hell its gotten to the point i just sandbox the browser rather than mess with NoScript because i get sick of playing "Where's the content" 3 or 4 times for every. single. page. that I go to.

So if you want to bitch at somebody about the mess? Blame the website designers, a good 99% of whom has gone so damned heavy with third party scripts being loaded from everywhere that most of the time you can't even get the fricking content AT ALL without a ton of JavaScript loaded. And lets face it, its only gonna get worse with all the "HTML V5 Web 3.0 Apps in the cloud" crap coming down the line. To get most of that stuff to even function you have to load a half a dozen scripts from all over the place, what a mess.