>> proof of concept <<
I assumed (and hoped) that it was innocent, but, as it would work when
malicious, I got pulled off the page before I had time to read far
enough to get to the full explanation of what _was_ going to happen.
When I returned to the tab, there as the bogus page. imho, the user
should have been offered the option of experiencing the phish rather
than having it execute on the page reporting on the possibility. It was
pretty disturbing, albeit educational.
Beverly Howard
_______________________________________________
support-seamonkey mailing list
[email protected]
https://lists.mozilla.org/listinfo/support-seamonkey
