Go Back  HTML Forums - Free Webmaster Forums and Help Forums > TOOLS OF THE TRADE > Security Alert
Reload this Page Attackers Exploit Web Application Flaw to Hijack Yahoo Mail Accounts
User Name:
Password:
 

Reply
Thread Tools   Display Modes
  View First Unread
 
Old 09-26-2009, 10:38 AM
  #1
scoutt
Mister Admin to you
 
scoutt's Avatar
 
Join Date: Jul 2001
Posts: 30,730
iTrader: (0)
scoutt is a jewel in the roughscoutt is a jewel in the roughscoutt is a jewel in the rough
Attackers Exploit Web Application Flaw to Hijack Yahoo Mail Accounts
(September 18, 2009)
Attackers are exploiting a known vulnerability in Yahoo's network to
launch brute force attacks against users' Yahoo mail accounts. The
attackers are using hijacked mail accounts to send spam. The main Yahoo
login page has mechanisms in place that protect accounts from brute
force attacks, but the recent attacks have been exploiting a web
application that automates the authentication process and does not have
the attack protection in place.
http://www.theregister.co.uk/2009/09..._mail_attacks/
http://www.scmagazineus.com/Rampant-...rticle/149373/
http://searchsecurity.techtarget.com...68227,00.html#
[Editor's Note (Ullrich): The attackers are taking advantage of an all
too common flaw. The web application will block repeat login attempts
using CAPTCHAS, while the web service does not implement similar
protections.]
__________________
Have a Script or Snippet you want to share?

WWW Standards: HTML 4.01, CSS2.1, CSS3, XHTML 1.0
PHP Standards: PHP Standards
scoutt is offline   Add to del.icio.us Add to del.icio.us    Can you digg it?Can you digg it? Reply With Quote

Reply
« Previous Thread | Next Thread »
KEEP TABS
SPONSORS
 
Boxedart
 
 


 
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
  
  
 
 



 
  POSTING RULES
 
 
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Thread Tools
Display Modes
Linear Mode Linear Mode

Forum Jump

 

All times are GMT -5. The time now is 10:34 PM.
   
Network Sites: Web Tools and Resources | Web Templates | Free Webmaster Resources | Free JavaScripts | Free Clip Art | Clipart Resources |
Turnkey Website Templates | Free Fonts | HTML Help | Stock Photos | Quality Hosting | Learn Perl and CGI | Top Web Hosts | CMS Templates

Partner Sites: Free Web Templates | Webmaster Resources | Javascripts | Stock Photos | DHTML Scripts | Create a free forum | Web Hosting Reviews |Web Hosting
| Unlimited Domain Hosting

Mascot team created by Drawshop.com

Powered by vBulletin® Version 3.6.7
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.

Server Monitoring by ENIACmonitor 0.01
HTMLforums.com © Big Resources, Inc. Web Design by BoxedArt.com
vRewrite 1.5 beta SEOed URLs completed by Tech Help Forum and Chalo Na.