Login Forenübersicht Mein Profil priv Nachrichten Mitgliederliste Suche Sprache/ language:

Übersicht:
>> Forumindex >> Scripting >> Cross site scripting attack at vanguard

Titel:
 Cross site scripting attack at vanguard
 
Seite 1 von 1
    Seite wählen: [ 1 ]   
   #579
erstellt: 21.4.2018 16:15
 kevinmanuel
 

 

Registriert am: 26.2.2018
Beiträge: 0
Loginstatus: Offline Userstatus: Aktiv

HI,

Today my Firefox browser version 57.0 updated my NoScript extension to version 10.1.1. When I logged on to Vanguard.com I saw warning messages about potential cross site scripting attacks from ******.fls.doubleclick.net to adservice.google.com. I simply clicked on the 'block' decision and continued my activities.When I performed a fund exchange I noticed the warning popup box contained the details of my transaction: account ID, fund name, city name, zip code, target bank, etc. This is potentially everything required for account hijacking. Luckily NoScript blocked it for me.I performed a nslookup on advervice.google.com, and it is in fact the same as pagead46.l.doubleclick.net. That also looked deceptive.I concluded that there is either a security issue at vanguard's web site, or I was infected with a browser based malware.My browser plugins include "Widevine Content Decryption Module provided by Google Inc.", and "OpenH264 Video Codec provided by Cisco Systems, Inc."any idea.?

Please help.

I didn't find the right solution from the Internet.

References:
https://www.bogleheads.org/forum/viewtopic.php?t=232830
Infographic design animation company

Thanks!
Bearbeiten
priv Nachricht
Zitieren
Antworten

Seite 1 von 1
    Seite wählen: [ 1 ]   

Übersicht:
>> Forumindex >> Scripting >> Cross site scripting attack at vanguard

was bedeuten die Symbole:
= neuer
Beitrag
= alter
Beitrag
 
 
= Global
= Wichtig
= Geschlossen
 

Useraktivitäten
Der neuste registrierte User ist evanvleettania.
Im Moment sind 39 Gäste und 0 registrierte User online:


CMS & Forum coded by Alexander 'EisWiesel' Rothenberg
:: Seitenaufbau: 0.045 Sekunden :: SQL Selects: 52, InUpDel: 3 ::



Portions of the materials used are ®, (tm),(mr), and/or (mc) Epic Games, Inc., and/or copyrighted works of Epic Games, Inc., in the United States of America and elsewhere. All rights reserved, Epic Games, Inc. This material is not official and is not endorsed by Epic Games, Inc.
Diese Webseite verwendet Cookies / This website uses cookies