Full Feed
Special Features
Black Friday 2009
Black Friday is almost here! Gadgetell's got you covered with all the latest news on who's offering the best deals. Dangerous crowds? You're on your own.
Palm Pre Information & Updates
Palm just introduced their next-gen smartphone, the Palm Pre, and next-gen operating system, Palm webOS. Gadgetell's got the latest Pre and webOS information and news for you right here.
RIM has issued a patch for a bug in its browser that could allow BlackBerry users to be hit by a phishing attack. The bug involves the security feature that notifies a user if the website they are trying to visit has a certificate mismatch. The browser correctly identifies such sites but does not display the mismatch properly if it contains null, or hidden, characters. This means a user could easily think the notification was in error and continue to load the page.
A hacker could take advantage of this bug by creating a fake site and purposely altering its certificate. They could then send an SMS text message to a user with the malicious link included. The user would click on it and be tricked into thinking it’s a legit and trusted site. For example, say a hacker decided to create a phishing site for a major bank such as HSBC and purposely alter the certificate. They would then send out an SMS made to look like an alert from the bank with the malicious link included. Thinking it’s a real alert the BB user clicks on the link (since it was sent via an SMS text the mouse hover trick would not work). When the BB user gets the warning the bug makes the warning look bogus so the user continues on and logs into the fake site.
This bug affects all devices and OS versions and it is highly recommended that BB users download the fix and apply it ASAP. In the meantime avoid clicking on links sent via SMS.
Read [ZDnet]
Keep up with the latest gadget goodness! -
Subscribe to our feed