Data Theft (Be Aware) - aka. Clipboard problem

Discussion in 'other security issues & news' started by webster, Sep 2, 2005.

Thread Status:
Not open for further replies.
  1. webster

    webster Registered Member

    Joined:
    Feb 23, 2004
    Posts:
    285
    Location:
    Denmark
    Take a look at the contents of your clipboard here
     
  2. bigbuck

    bigbuck Registered Member

    Joined:
    Jul 7, 2004
    Posts:
    4,877
    Location:
    Qld, Aus
    Re: Clipboard problem

    Mine doesn't show....
     
  3. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
    Re: Clipboard problem

    Nothing here either.


    snowbound
     
  4. SpikeyB

    SpikeyB Registered Member

    Joined:
    Mar 20, 2005
    Posts:
    478
    Last edited by a moderator: Sep 26, 2005
  5. Texcritter

    Texcritter Registered Member

    Joined:
    May 6, 2005
    Posts:
    1,985
    Location:
    Teesside, North East England
    Data Theft (Be Aware)

    I received this as an EMail from a friend in Australia
    Would appreciate any constructive comments on it.

    Check out the following if your not already aware:

    We copy various data by ctrl+c for pasting elsewhere.
    This copied data is stored in clipboard and is
    accessible from the net by a combination of
    java-scripts and ASP.
    Do not keep sensitive data (like creditcard numbers,
    bank login/ passwords, PIN, date of births, etc.) in
    the clipboard while surfing the web.
    Make a practice of typing them always. It is extremely
    easy to extract the text stored in the clipboard to
    steal your sensitive information.

    Just try this and you will see how easily you are
    exposed!!
    (1) Copy any text by Ctrl+C
    (2) Now, click the Link:
    http://www.friendlycanadian.com/applications/clipboard.htm
    (3) You will see the SAME text you copied is accessed
    by this web page.
     
  6. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,875
    Location:
    New England
    Re: Data Theft (Be Aware)

    Well, this has actually been known for a while. It requires javascript to be enabled in your browser. If you are using IE, it's a good idea to heavily secure the Internet zone's security settings, and to use the Trusted zone for sites where you want javascript to be allowed. Or, use alternate browsers which probably won't have the exploit issue.

    See this old IE exploit announcement from back a few years ago.

    News article...
    http://news.com.com/IE holes open up Web booby traps/2100-1001_3-962966.html

    The advisory linked in the above article...
    http://www.greymagic.com/security/advisories/gm012-ie/

    In IE, javascript access to the clipboard itself can be set to disabled or prompt with this setting...
     

    Attached Files:

  7. ----

    ---- Guest

    Re: Data Theft (Be Aware)

    Lowwatermark have you tried it? I thought the same as you. But Even with that option set to prompt or disabled, it still works at least on this test computer.
     
  8. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    Re: Data Theft (Be Aware)

    Well yeah, I had seen it, it works only in Internet Explorer.
     
  9. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,875
    Location:
    New England
    Re: Data Theft (Be Aware)

    Yes, I tried it with IE6 with current patches, active scripting enabled and pasting set to prompt (ie. the setting in my screen shot above) and got the appropriate prompt...
     

    Attached Files:

  10. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,875
    Location:
    New England
    Re: Data Theft (Be Aware)

    If I clicked No, it never found the text...
     

    Attached Files:

  11. ----

    ---- Guest

    Re: Data Theft (Be Aware)

    Hmm I thought so. Something must be broken here...
     
  12. -----

    ----- Guest

    Re: Data Theft (Be Aware)

    Strange business. All patches were already in, but setting paste from clipboard didn't seem to have any effect whether it was set to enable/disable/prompt. Turning off active scripting 100% worked though.

    In the end I reset the internet zone to high. Then moved it down to my old settings. Now it works. My IE works real strange.

    Oh well..
     
  13. Smokey

    Smokey Registered Member

    Joined:
    Apr 1, 2002
    Posts:
    1,513
    Location:
    Annie's Pub
    Re: Data Theft (Be Aware)

    For a lot of people a good remarker to check their settings!:)
     
  14. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,873
    Location:
    SW. Oklahoma
    opera, safe again
     

    Attached Files:

  15. Vikorr

    Vikorr Registered Member

    Joined:
    May 1, 2005
    Posts:
    662
    Mine came up blank, and I'd been cut&pasting just before I came here. But I have most settings in IE set to 'disable' <except for trusted zones anyway>
     
  16. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,697
    Hi,
    Several solutions for that:
    Disable the clipboard service ...
    Use proxomitron (removes the cliboard haversting attempt).
    Surf with NoScript in Firefox (does not allow the exploit in the first place).
    Mrk
     
  17. iceni60

    iceni60 ( ^o^)

    Joined:
    Jun 29, 2004
    Posts:
    5,116
    you could just use Proxomitron, or at least Firefox or Opera. not only do i never see ads, or bad popups, Proxomitron lets me know about these kind of things as they happen.
     

    Attached Files:

  18. Texcritter

    Texcritter Registered Member

    Joined:
    May 6, 2005
    Posts:
    1,985
    Location:
    Teesside, North East England
    Re: Data Theft (Be Aware)

    Thanks LowWaterMark
    This thread has given me the info I was looking for
     
  19. burger

    burger Guest

    It doesn't work on firefox or opera, whatever the settings. Noscript isn't needed.
     
  20. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,697
    Hi,
    Right on, dude.
    One more point for Firefox / Opera vs. IE.
    Mrk
     
Loading...
Thread Status:
Not open for further replies.