Target _Blank - The Infamous Issue

This is one of those vulnerabilities which hasn't got enough spotlight, and therefore vendors are still reluctant to fix it. Some of the vendors do not consider this a vulnerability at all. Here via this blog post, I would like to highlight this issue, and also possible workaround(s). What

You aid spammers! LION vs. Sheep

It’s 21st century, the year 2014 and we are still on ground zero talking about spam emails and attacks like spear phishing. No matter how stringent your controls are, how much you have invest in your "defense in depth" approach, a single human being of your firm clicking a

paytm & spear phishing

Before you deep dive in the technical information, I wish to confirm that this vulnerability has been FIXED. Thanks to PAYTM for taking a quick action. Looking forward for such quick response on security concerns. Kudos! Don’t get this wrong. I wish to share a vulnerability that can be

Sponsored Ad - Shall I trust it?

I am not sure if this is an expected feature, an expected ‘trick’ from the sponsored advertisements (SAds) of Google but to me its a surprise (shocking). These SAds are the links pushed with payments to the service provider, and are also termed as being part of Pay-Per-Click program. Google

Dear bank, don’t phish me!

With so many vulnerabilities floating all around us, this is one of its type. This vulnerability has no impact on the user information, bank servers, data but still can be leveraged to perform tricks on the end-users. What if I ‘use’ this vulnerability (design-flaw) to phish end-users? Will they trust

Journey of Phishing Link

We come across so many links via social networking websites, and we unknowingly click many of these. The malicious links have catastrophic results and the system as well as yours privacy is either compromised or your data takes the hit. Here is one such analysis of a link dated 17.

Search

    Your Bio Here
    More Details →

    My Skills

    • Web Design
    • C#
    • jQuery
    • PHP
    • Html5
    • Css3
    • Wordpress
    • Ghost

    Connect Me

    ← Back

    Recent Posts