Experts in the field of information security found in the iPhone yet another vulnerability. Known in some circles specialist Nitesh Dhanzhani said in his blog about how criminals can be without too much trouble to hide the real address of a site and hide by his presence on the malicious resource. In his blog Dhanzhani describes a conceptual model of an attack involving a pseudo-site, is indistinguishable from the site of Bank of America
According Dzhanzhani, the user creates a full sense of the real mobile banking BofA. According to the author's real technique attackers could use this technique for real attacks on users iPhone.
However, the specialist has a blog SANS Institute, says that the trick works only with a substitute address in mobile sites, where the guidelines spelled out HTML markup mobile site.
No comments:
Post a Comment