sfantupetru - Slashdot User

Comment He has a forum too! (Score 1) 1154

by sfantupetru on Friday August 17, 2007 @04:30PM (#20267293) Attached to: A Campaign to Block Firefox Users?

Make sure you go to this guy's forum at http://dannycarlton.net/feedback/index.php?forum=g eneral and let him know what you think about this 'campaign' eh? Go go!

Phishing Scams Incorporate SSL Certificates 316

Posted by timothy on Wednesday March 10, 2004 @12:54AM from the flashing-a-badge dept.

dettifoss writes "Netcraft reports: `Internet "phishing" scams are incorporating the use of SSL certificates in their efforts to trick users into divulging sensitive login information for financial accounts.' Perhaps more disturbingly: `Scammers can also configure their web server so that deceptive SSL certificates won't trigger an alert in the user's browser. "One of the SSL encoding methods is 'plain text'," Neal Krawetz from Secure Science Corporation noted in the SANS post on the issue. "Most SSL servers have this disabled by default, but most browsers support it. When plain text is used, no central certificate authority is consulted and the user never sees a message asking if a certificate should be accepted.'"

Slashdot Top Deals