- From: Luke Hutchison <luke.hutch@mit.edu>
- Date: Fri, 23 Jul 2010 00:58:30 -0400
I should add that to complicate things, not all the social engineering directions make it clear to the user that they will be pasting stuff into the addressbar: e.g. I got one called "World's Hardest Riddle" that selected the text in the box for you somehow and then told the user that to see the riddle they had to type Ctrl-C, Alt-D, Ctrl-V, Enter. (i.e. copy, go to addressbar, paste, enter -- but how many users even know what Alt-D does?? Most users would just think this was some magic key sequence used to unlock the riddle...) Thanks for the link to the Firefox bug, Daniel -- looks like you came across the same trick as described in your comment.
Received on Thursday, 22 July 2010 21:58:30 UTC