I was doing some research and I ended up reading a [leaked?] "court indictment" from Cryptome website, a story about how some hackers spear-phished 7900 university professors, and sold their user accounts and research publications on a website (file 2018-0022.pdf).
I went and checked the website that was referenced in the indictment (which was http: // megapaper.ir / ). Now, I use NoScript, blocking all javascript by default. when I opened the website, I noticed that the website tries to run 4 scripts. To my astonishment, one was from Localhost! Others were from google-analytics.com, etc.
Is it a NoScript bug or the website is really trying to do something malicious? I read the source code but couldn't find any javascript code that originated from localhost or 127.0.0.1 or something like that. Websites cannot run local code, isn't it true?
Aucun commentaire:
Enregistrer un commentaire