A powerful new type of Internet attack acts like a telephone tap, but works between computers and Web sites they trust. A serious flaw in the way Web browsers dismiss untrustworthy sites and block anybody from seeing them has come to the surface. Hackers can set up a secret eavesdropping post and take in credit card numbers, passwords and other sensitive data being transferred between computers on that network and sites their browsers have thought to be safe.
In an even more evil plot, an attacker can hijack the auto-update feature on a victim’s computer, and trick it into automatically installing malware pulled in from a hacker’s Web site- making the computer think it’s an update from the software manufacturer.
Microsoft, whose Internet Explorer browser is the world’s most popular, said it was looking into the the issue. Mozilla Corp. said most of the problems being addressed were repaired in the latest version of its browser, and that the rest will be fixed in an update coming this week.
http://finance.yahoo.com/news/Hackers-expose-weakness-in-apf-684913613.html?x=0
Do you Want to say something?