Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.

https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

hought that was a CAPTCHA? R is for run

01-07-2013 10:31AM

#1

Capt'n Midnight

Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 96,120 Mod ✭✭✭✭

Join Date: March 2003

Posts: 94357

http://www.theregister.co.uk/2013/07/01/keyjacking_attack_targets_letter_r_captchas/

The so-called keyjacking technique, uncovered by Italian security researcher Rosario Valotta, is similar to clickjacking. However, instead of fooling marks into generating fake Facebook likes, the keyjacking involves disguising a "run executable" dialogue box within a CAPTCHA challenge.
...
"The attack technique allows for remote code execution on Internet Explorer and Google Chrome with a minimum user interaction. I'm actually talking of typing one key [on IE] or making one click [on Chrome]," Valotta told El Reg.

2