Warning on Spoofed Login Windows in Firefox

by admin January 4, 2008 at 2:55 pm

A common feature on many Web sites is a pop-up dialog box where users enter their username and password. Before you enter your information in Firefox next time, you might want to think twice. Security researcher Aviv Raff is alleging that in the latest Firefox release the pop-up dialog box for password entry can be spoofed in a phishing attack.

“Mozilla Firefox allows spoofing the information presented in the basic authentication dialog box, Raff wrote in an advisory. “This can allow an attacker to conduct phishing attacks, by tricking the user to believe that the authentication dialog box is from a trusted Web site.”

Full article: internetnews.com