Quote:
Originally Posted by f.montoya
If you happen to visit a site that has an ****** embedded, and you visit that site with IE, your passwords stored IE could be at risk of being stolen via the ******. Currently, the attacks that we've experienced have involved placing iframes on our online league websites.
|
The firefox browser as well as the google chrome browser is also at risk to ****** attacks. That is not just limited to Internet explorer. With Firefox, if you use noscript, the default behavior is to allow iframes as well. Anyone who uses firefox with noscript should go into the options and make sure to check the box to block iframes as well.
The attack of iframes being places on sites however is a very common attack that have hit hundreds of thousands of sites. Usually those iframes are placed on the server due to exploiting server scripts or applications and have less to do with the actual browser that people use. Once a server is infected however, someone using an insecure browser or a system not properly patched is at risk.