Internaut often use virtual keyboard while typing their password in order to protect their data from being stolen from Keyloggers. It seems like a new bug in IE makes the virtual keyboard insecure.
A security researcher from Spider.io claimed to have discovered a security flaw in the Internet Explorer versions 6 through 10, could allow hackers to track user's mouse movements , even if the IE window is minimized.
"Internet Explorer’s event model populates the global Event object with some attributes relating to mouse events, even in situations where it should not. " Explained in the Spider.io.
The Demo of the bug can be found here:
http://iedataleak.spider.io/demo
A security researcher from Spider.io claimed to have discovered a security flaw in the Internet Explorer versions 6 through 10, could allow hackers to track user's mouse movements , even if the IE window is minimized.
"Internet Explorer’s event model populates the global Event object with some attributes relating to mouse events, even in situations where it should not. " Explained in the Spider.io.
The Demo of the bug can be found here:
http://iedataleak.spider.io/demo
They have also created a game(iedataleak.spider.io) to illustrate how easily this security vulnerability in Internet Explorer may be exploited to compromise the security of virtual keyboards and virtual keypads.
Source: http://www.ehackingnews.com
.jpg)
Posting Komentar