August 24, 2006 - 09:37 UTC - Tags: security phishing password
The clever people at Stanford University has developed a browser plugin to avoid or limit the effect of certain phishing attacks.
Quote:
The Common Password Problem. Users tend to use a single password at many different web sites. By now there are several reported cases where attackers breaks into a low security site to retrieve thousands of username/password pairs and directly try them one by one at a high security e-commerce site such as eBay. As expected, this attack is remarkably effective.Quote:
A Simple Solution. PwdHash is an browser extension that transparently converts a user's password into a domain-specific password.Links:
Thanks to
Vidar, for pointing me to this one.