Nguy c? m?t b� m?t t�i kho?n t? nh?ng t?p tin lai GIF v� RAR

M?t ph?n m?m ?ang ???c hacker ph�t tri?n c� th? ??t file GIFAR (lai gi?a ??nh d?ng ?nh GIF v� file n�n RAR) v�o c�c website, cho ph�p ng??i d�ng upload ?nh nh?ng th?c ra trong qu� tr�nh n�y, n� s? l?y c?p th�ng tin t�i kho?n.



??i v?i c�c m�y ch? web, t?p tin tr�ng nh? m?t file .gif, c�n tr�nh duy?t s? m? n� ra d??i d?ng m?t file Java Archive v� ch?y nh? m?t ?ng d?ng nh?. ?i?u n�y cho ph�p k? t?n c�ng c� c? h?i ch?y m� Java trong tr�nh duy?t c?a n?n nh�n. L�c n�y, tr�nh duy?t cho r?ng ?ng d?ng ?� do ch�nh ng??i l?p website vi?t ra.



C�ch l�m c?a k? t?n c�ng c?ng kh� ??n gi?n: t?o m?t account tr�n c�c trang chia s? l?n nh? Facebook, MySpace... v� upload t?p tin GIFAR l�n nh? m?t b?c ?nh tr�n ?�. Sau ?�, h? s? l?a ng??i kh�c v�o m?t trang ??c y�u c?u tr�nh duy?t m? file GIFAR ra. L�c n�y, ?ng d?ng s? ch?y trong tr�nh duy?t v� khi?n hacker truy c?p ???c v�o account.



H�nh th?c t?n c�ng n�y c� th? di?n ra tr�n b?t k? trang n�o cho ph�p t?i file nh? website ??u gi� tr?c tuy?n cho ??ng ?nh m�n h�ng c?n b�n, trang c?a ng�n h�ng y�u c?u ng??i d�ng ??ng ?nh... V� c�c file GIFAR ???c m? b?ng Java n�n c� th? ch?y tr�n r?t nhi?u ki?u tr�nh duy?t.



Ch??ng tr�nh ???c b�n lu?n ? H?i ngh? b?o m?t Black Hat c?a c�c chuy�n gia khai th�c ?i?m y?u an ninh m?ng ?ang di?n ra ? Las Vegas (M?) t? 2 ??n 7/8. H? hy v?ng h�ng Sun Micro Systems s? si?t ch?t m�i tr??ng Java v� x? l� c�c l? h?ng b?o m?t sau th?o lu?n n�y.

Submit Article :- Digg + Technorati + del.icio.us + Stumbleupon + Reddit + BlinkList + Furl + Yahoo+ Blogmarks + Ekstreme Socializer
POSTED IN : , , |

This entry was posted on 21:52 and is filed under , , .Follow any comments here with the RSS 2.0 . You can leave a response so that we can know your suggestion.
0 Responses to "Nguy c? m?t b� m?t t�i kho?n t? nh?ng t?p tin lai GIF v� RAR"

Đăng nhận xét