Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Slashdot Deals: Deal of the Day - Pay What You Want for the Learn to Code Bundle, includes AngularJS, Python, HTML5, Ruby, and more. ×

Submission + - Profile poisoning the next frontier for web attacks? (securityledger.com) 1

chicksdaddy writes: "Google and Facebook already know everything about you – your interests, friends, tastes and even your movements. That’s a privacy nightmare. But researchers at the Georgia Institute of Technology’s Information Security Center (GTISC) think it could soon be a security nightmare, also.

According to Georgia Tech's “Emerging Cyber Threats Reports 2013, automated information systems could soon become a powerful tool in the hands of sophisticated attackers, who will look for ways to manipulate victims’ online profile — a kind of super SEO poisoning attack — that will steer them to certain (malicious) sites.

“If you compromise a computer, the victim can always switch to a clean machine and your attack is over,” said Wenke Lee, a professor at Georgia Tech’s College of Computing and director of the GTISC in the report. “If you compromise a user’s search history and hence his online profile, the victim gets the malicious search results no matter where he logs in from.""

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Profile poisoning the next frontier for web attacks?

Comments Filter:

I have a theory that it's impossible to prove anything, but I can't prove it.