[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Re: Most common keystroke loggers?

Subject: Re: [Full-disclosure] Re: Most common keystroke loggers?
From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Thu, 01 Dec 2005 16:26:05 -0500

If the user is passed to a phishing site that ask for the OTP, the user
enters it, the phishing site can return a error and instruct the user to
use the next OTP password, hence giving the attacker any number of
OTP....the OTP ones that are list based anyways.


Social Darwinism :

Try to make something idiot-proof, nature will provide you with a better idiot. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

References:
- RE: [Full-disclosure] Re: Most common keystroke loggers?
  - From: Todd Towles

Prev by Date: Re: [Full-disclosure] re: webmin remote format string bug
Next by Date: Re: [Full-disclosure] Most common keystroke loggers?
Previous by thread: RE: [Full-disclosure] Re: Most common keystroke loggers?
Next by thread: [Full-disclosure] Re: Most common keystroke loggers?
Index(es):
- Date
- Thread