The issue is caused by the 'OnKeyDown' JavaScript feature that allows
websites to capture and duplicate keystrokes entered into data fields, including
fields where users enter credit card information.
Security experts noted that exploiting the flaw would require the user to
type a fair amount of text. Attackers would therefore most likely target online
games or blogs.
Although the flaw requires a sophisticated attacker to effectively exploit
it, it is noteworthy because it spans multiple operating systems and browser
vendors.
SOFTWARE ENGINEERS: ANALYSIS, VISUALISATION & DATA TEAM, £25,500+, Exeter Make a difference by visualising world-class research How many programming jobs put you in a position to make a real difference to your own future and ... more >
Technical Architect, Warrington, Salary and package to attract the best These positions require highly skilled Technical Architects with demonstrable experience of working within a complex and distributed infrastructure environment. Working within the Service Assurance team ... more >
Client Development Support Specialist - 21350 The Company Bloomberg is the leading global provider of financial data, news and analytics. The BLOOMBERG TERMINAL and Bloomberg's media services provide real-time and archived financial and market data, ... more >
Financial Software Development Intern - Summer 2008 - 20735 The Company Bloomberg is the leading global provider of financial data, news and analytics. The BLOOMBERG PROFESSIONAL service and Bloomberg's media services provide real-time and archived ... more >More job opportunities
Print
Discuss
Send to friend
RSS feeds
Daily news podcast
del.icio.us
Digg this
reddit!
