It’s no ordinary occasion that Microsoft, Sun and Cisco engage in a project together. But this is no ordinary occasion. Hackers have discovered a potentially very dangerous ways to take people to different websites even when they think they’ve typed in the right address. For instance, you may type www.cnn.com into your webpage, but you may be redirected to a fake site that can steal your identity or money in a technique called spoofing. The BBC reported the story; an excerpt:
The flaw, discovered by accident, would allow criminals to redirect users to fake webpages, even if they typed the correct address into a browser.
Internet giants such as Microsoft are now distributing the security patch.
Security expert Dan Kaminsky said that the case was unprecedented, but added: “People should be concerned but they should not be panicking.”
Here’s a bulletin from Microsoft that details the patch and security threat. Not a bad idea to install that one.