All Browsers But IE At Risk To New Spoofing Scheme (Techweb article)

  • Thread starter Thread starter jeffrey
  • Start date Start date
I tried the example, dusting off a rarely used copy of Mozilla 1.6 to do it.

the example for spoofing paypal.com uses a cyrillic 'a', which is much smaller
than the other characters in the url. Will anybody fall for something that
looks so obvioulsy rwong? Maybe. But I can Xerox a dollar bill, and replace
George Washington's face with Moe Howard, and some people will fall for that,
too.

This hardly compares to the many serious security flaws that turn up all the
time in microsoft software.
 
Al said:
I tried the example, dusting off a rarely used copy of Mozilla 1.6 to do it.
Click to expand...
the example for spoofing paypal.com uses a cyrillic 'a', which is much smaller
than the other characters in the url. Will anybody fall for something that
looks so obvioulsy rwong? Maybe. But I can Xerox a dollar bill, and replace
George Washington's face with Moe Howard, and some people will fall for that,
too.
Click to expand...

It all depends on the fonts you're using. Using the default font for
Firefox -- whatever that happens to be on my system -- the spoof is
pretty convincing. I can't detect any difference between the two a's.
 
Back
Top