What is Digg?Sponsored by Best Buy
Best Buy finds gold in Iowa. view!
youtube.com - Best Buy employee, Danielle Kelly, sings her way into holiday campaign.
40 Comments
- newmanium2001, on 12/02/2008, -2/+30Those pesky Ruski's ... always attacking our children, our way of life, and our iframes.
- theadvinci, on 12/02/2008, -3/+27Security is the last thing commercial sites like CBS think of...
- akchrs, on 12/03/2008, -0/+20Lucky for me that I never go there, or anyone else for that matter.
- inferno10, on 12/03/2008, -0/+15I <3 FF3 & NoScript
- inactive, on 12/03/2008, -0/+15Up next on CBS, "Everyone Loves....Re-Formatting!".
- inactive, on 12/03/2008, -0/+12If you think a firewall blocks malware, I think it's time for you to get a virus software, if it's not already too late.
- slapded, on 12/03/2008, -3/+14when i go to the homepage thats all i C, is BS
HAWHAW HAW - D3koy, on 12/03/2008, -0/+10A few years back Digg implemented a reply feature. This is the perfect time to use it...
- rexykik, on 12/03/2008, -0/+8"I personally don't have virus software, because I'm firewalled."
Dude, that firewall isn't going to protect you from many viruses. Firewalls aren't anti-malware.
Edit: Ufia, you beat me to it. - badave, on 12/03/2008, -0/+4NoScript gets annoying after a while.
- MWeather, on 12/03/2008, -0/+4Then how do you know about it?
- wontstoptalking, on 12/03/2008, -2/+5Why couldn't it be Fox?
- inactive, on 12/03/2008, -0/+3The same thing happened to nbc a few months ago but it wasnt reported.
- inactive, on 12/03/2008, -0/+3Designed for Internet explorer
- 6oo63D, on 12/03/2008, -0/+3The CBS crew will prefer not to comment about our new Russian overlords
- drivelocity, on 12/03/2008, -0/+2"gotcha," media...
- gravesg, on 12/03/2008, -0/+2This was great lol.
- brian1625, on 12/03/2008, -0/+2CBS owns CNET now, so maybe they should get it together.
- mrBitch, on 12/03/2008, -0/+2If you're running Windows, then firefox won't save you from an iframe hack (unless you run NO-SCRIPT).
- zoydberg, on 12/03/2008, -1/+3Homer with Spanish accent: "First you get the sugar, then you get the power, then you get the women"
- unluckier, on 12/03/2008, -0/+2NoScript can disable iframes, though the feature is not enabled by default. You should also set it up to do so for trusted sites. Details here:
http://www.cert.org/tech_tips/securing_browser/#no ... - mrBitch, on 12/03/2008, -0/+1@recxykik, Spot on.
@conradtjbass RE: " It really sucks how we have to worry about sites so big and common as CBS carrying malware. I personally don't have virus software, because I'm firewalled. "
Wow, you shouldn't be making posts on a subject that you know ZERO about.
Please either do some background reading on the subject of why a firewall has NOTHING to do with virus prevention... or just log out of digg. - FTAFIRE, on 03/05/2009, -0/+1Thanks for this useful info.
I just got free tv and thought other digg users may find this info useful.
Here a bunch of links that helped me out.
http://www.FTAFIRE.COM
http://www.ftaprofessionals.tv
http://www.ftaprofessionals.info
http://www.FTAVIP.COM
http://www.FTAN3FILES.INFO
http://www.FTAFILESBLOG.INFO
http://www.FTABINFILES.INFO
http://www.VIEWSATULTRAFILES.INFO
http://www.FTAIKS.INFO
http://www.FTAFILESFORUM.INFO
http://www.FTANEWS.INFO
http://www.VIEWSATXTREMEFILES.INFO
http://www.FTAFILESN3.INFO
http://www.FTAFILESFORFREE.INFO
http://www.FREEFTAFILES.INFO
http://www.VIEWSAT-ULTRA.INFO
http://www.N3FILES.INFO
http://www.FTASITE.NET
http://www.FTASITE.INFO
http://www.FREEBINFILES.INFO
http://www.FTAFILESFREE.INFO
http://www.FTAPRO.INFO
http://www.FTAINSTRUCTIONS.INFO
http://www.FTAFILESFORUM.COM
http://www.FREEFTA.INFO
http://www.freetoairkeys.com
Thanks
Have a great day :)
●████▅▅▄▄▄▄▄▄... ..▄▄▄ {¦---(¦====¦>
▄▄▅█ Care Tank █▅▄▃▂
██████████████►
◥☼▲⊙▲⊙▲⊙▲⊙▲☼◤ - funkytaco, on 12/03/2008, -0/+1I worked in a data center. Script kiddies essentially automate wget attempts for known exploits and that drops a zip file on the server through these security holes usually. For PHP, you can load .so files as modules which extend PHP and can essentially create an iframe in every page, with whatever code you created. It's a pretty lame hack, are years old, and should not work unless your sys admin is overpaid or overburdened.
And if it's an XSS attack, that is still the sys admin's fault. - inactive, on 12/03/2008, -1/+2George bush made the IFRAME Hack.
- unluckier, on 12/03/2008, -0/+1Sure, the malware is hosted on a different server. That's a pretty standard MO. But I would say that the CBS site was indeed compromised, based on the description. If an attacker can inject an iframe into another site's content, then it has been compromised.
- LongShlong, on 12/03/2008, -0/+1This makes iFrames look like they are bad... That's not right.
As long as you control your own iFrames, you're fine... Otherwise, in Russia, iFrames control you. - irriadin, on 12/03/2008, -0/+1It's annoying, yes, but it is very useful. And after you add enough things to your whitelist, it becomes almost transparent.
- TheWindBlows, on 12/03/2008, -0/+1Why i use it but disable it so that all that is running is the XSS filter something firefox should have built in.
- Tonkatsu, on 12/03/2008, -0/+1Hack the Gibson?
- MartinMGeorge, on 03/22/2009, -0/+0How comes a big company like CBS don't have better security measures on there site. That's surprising. Anyway if it's work dem Russian looking for tell them there are lots of jobs in the Caribbean in IT, computer and other stuff.... I hope they don't mess up one of the small company dem website; anyway they can find jobs in the Caribbean at one of these sites http://www.caribbeanjobsonline.com http://livejobs.wordpress.com http://canouanisland.wordpress.com http://intjb.wordpress.com http://www.caribbeanjobs.blogspot.com http://monsterjobs.wordpress.com http://caribbeancareers.wordpress.com http://vickigreenaway.wordpress.com
- inactive, on 12/03/2008, -2/+2It's a cross-site scripting bug not an actual "hack". The malware was actually hosted on a russian server. The CBS site wasn't hacked in any way, it was just used to trick users into visiting the malicious russian site.
More fearmongering from FinJan - they are always making ***** up and sensationalizing security issues to promote their ***** AV products that everyone hates. - DarkredDragon, on 07/07/2009, -1/+1Glad I dont ever go to CBS.com but I use firefox so no worrys!
- kurough, on 12/03/2008, -1/+0Perhaps since it's CBS, the IT department does manage the website.
- DIGGADEEP, on 12/03/2008, -4/+1marco
- KDX200rider, on 12/03/2008, -8/+5The CBS IT department must be busy trying to figure out a way to fabricate false documents about George Bush without getting caught.
- teemingvoid, on 12/03/2008, -4/+0its undeniable that the next generation of superpower struggles will at the very least have a significant focus on the internet. Media sources like CBS are our primary sources of information and are already being targeted by other countries, to distribute destructive malware. Does anyone else smell Cold War 2 brewing, in light of all the other ***** thats already gone down?? I'm watching ya, Russia
- 6oo63D, on 12/03/2008, -4/+0Все ваши базы принадлежат США. AHAHAHA!!!
- conradtjbass, on 12/02/2008, -11/+2It really sucks how we have to worry about sites so big and common as CBS carrying malware. I personally don't have virus software, because I'm firewalled. However, after long enough, that won't be enough, and we're all going to be in a bit of trouble; assuming that things keep going on this way, of course. (what, you think they won't?)
- TapTapper, on 12/02/2008, -13/+3 ^ ^ you're killing me, bub ^ ^
© Digg Inc. 2009
— Content created and posted by Digg users is