{"id":136,"date":"2008-04-25T09:26:13","date_gmt":"2008-04-25T08:26:13","guid":{"rendered":"http:\/\/blog.intego.com\/?p=136"},"modified":"2008-04-25T09:26:13","modified_gmt":"2008-04-25T08:26:13","slug":"url-spoofing-flaw-affects-safari","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/url-spoofing-flaw-affects-safari\/","title":{"rendered":"URL Spoofing Flaw Affects Safari"},"content":{"rendered":"

Secunia has issued an advisory<\/a> about a URL spoofing flaw they have discovered in Safari, both for Mac OS X and for Windows. As they say, “The problem is that it is possible to hide the actual location of a page in the address bar via a specially crafted URL containing a number of certain special characters in the “user” field before the “@” character.” What this means is that you may go to a web site, via a link, and not be on the correct site; the address may look correct, but may not be, leading you into a phishing net. <\/p>\n

The only precaution you can take for now, until Apple fixes this, is to avoid browsing on untrusted websites. If you even visit a website that has a link to, say, PayPal or to your Bank, don’t click that link (unless you trust the originating site), but rather type the URL or use your own bookmark. <\/p>\n","protected":false},"excerpt":{"rendered":"

Secunia has issued an advisory about a URL spoofing flaw they have discovered in Safari, both for Mac OS X and for Windows. As they say, “The problem is that it is possible to hide the actual location of a page in the address bar via a specially crafted URL containing a number of certain […]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[7,13],"tags":[],"yoast_head":"\n\n\n\n\n\n\n\n\n\n\n\n\n\t\n\t\n\t\n