Firefox phishing attack defense...

Talk here about security in general. Posting illegals software is prohibited. All stuffs in this forum must be considered as for "Educational purpose only".
donald
Full of knowledge
Full of knowledge
Posts: 2063
Joined: 17 Jun 2013, 13:17
Distribution: Porteus 3.2.2 XFCE 32bit
Location: Germany

Firefox phishing attack defense...

Post#1 by donald » 17 Sep 2017, 19:27

Pale Moon has
network.IDN_show_punycode;false
set by default

but nonetheless Pale Moon showes
"xn--80ak6aa92e.com/"
not "apple.com"

...several less mainstream browsers are fortunately not vulnerable... B)

Falcony
Full of knowledge
Full of knowledge
Posts: 237
Joined: 01 Jan 2011, 12:44
Location: Russia

Firefox phishing attack defense...

Post#2 by Falcony » 18 Sep 2017, 08:15

network.IDN_show_punycode;false- allow to show site in International codepages,
Setting it true break showing domain.

Itself such kind phishing attack already blocked by SSL certificate authority checks. And if you see warning that it mismatched for your well-known domain - that the problem.

It is for ssl connection. For http there no cure - waiting for fix.

Anyway all wide-spread browser quite vulnerable - all based on Mozilla or any other engines - chrome, ie, opera, etc.

Neve save passord in password managers, use proper extensions, use hardering for your browser - and do not visit malicious sites - like porno, torrent, etc - if you have enabled scripts on this sites - well, you enable the way insite you system.

Post Reply