A weakness has been discovered in Internet Explorer, which can be exploited by malicious people to conduct phishing attacks.
The problem is that it's possible to display a popup with a somewhat spoofed address bar where a number of special characters have been appended to the URL. This makes it possible to only display a part of the address bar, which may trick users into performing certain unintended actions.
An example of the spoof is here:
Other related posts:
Why a 24hr parking limit won’t fix the Wellington airport parking issue.
CCTV exposed. Why understanding network security is so important.
Anker make some of the best USB chargers and powerbanks available. Now you can get their products shipped directly to New Zealand
Comment by freitasm, on 27-Oct-2006 21:04
I read a good comment somewhere... Apparently this was known before RTM. But Secunia decided to release the information after this was public. Fact? Not sure, but suspicious nonetheless...