Scary: Browser Hack lets other see what sites you visit

bigfishfry32 · 01-21-2010, 11:49 PM

READ THE WHOLE THREAD TO LEARN HOW TO PREVENT THIS, BEFORE CLICKING ANY LINKS !

Ok, I found this pretty hard to believe at first, but apprently there is a Internet Browser hack that can allow others to see
your browser history. The hack relies on comparing link color (link color changes after you visit a site usually) against a list of known websites.

If the link color is different than the default, it means you have visited that site. You can read more about it here: http://jeremiahgrossman.blogspot.com...ouve-been.html

Anyway, apparently there is a site that lets you use this hack to find out what porn sites your friends/visitors have been looking at. So if you feel like messing with someone, check this out:

Porn Catcher

http://caughthemwatching.com/

or a youtube video about it http://www.youtube.com/watch?v=3t7-MKVbncw

**JPaul** · 01-21-2010, 11:53 PM

A first post with 4 links is generally a good indication of a cunt, and one is left to wonder why that cunt thinks people would be moronic enough to click any of those links.

Are you a cunt at all.

**JPaul** · 01-21-2010, 11:56 PM

OMG someone has posted something almost identical elsewhere. What's the chances of that.

http://www.tapecity.org/showthread.php?p=199550

Ok, I found this pretty hard to believe at first, but apprently there is a Internet Browser hack that can allow others to see
your browser history. The hack relies on comparing link color (link color changes after you visit a site usually) against a list of known websites.

If the link color is different than the default, it means you have visited that site. You can read more about it here: http://jeremiahgrossman.blogspot.com...ouve-been.html

Anyway, apparently there is a site that lets you use this hack to find out what porn sites your friends/visitors have been looking at. So if you feel like messing with someone, check this out:

Porn Catcher

http://caughthemwatching.com/

or a youtube video about it http://www.youtube.com/watch?v=3t7-MKVbncw
skistar668 is offline Reply With Quote

**JPaul** · 01-21-2010, 11:57 PM

Ban the prick now Cabalo, do something useful ffs.

**IdolEyes787** · 01-22-2010, 12:24 AM

He's also jackflash333 so I'm assuming that he is either getting something for posting links or he's phishing IPs.

**Cabalo** · 01-22-2010, 06:58 AM

Originally Posted by JPaul

Ban the prick now Cabalo, do something useful ffs.

Idol beat me to it

As a bonus, this indeed works and some torrent sites use it in their code, especially the gazelle ones, where it comes installed by default, you just have to add sites to the list.

To avoid this, use noscript to avoid the java attempt, and also change a firefox setting, as described here.

**anon** · 01-22-2010, 04:22 PM

Originally Posted by Cabalo

you just have to add sites to the list.

Famous cheater boards, for example

Or T-I.

To avoid this, use noscript to avoid the java attempt, and also change a firefox setting, as described here.

You're forgetting something... even if you disable JavaScript and HTTP referers, you can still get caught via the CSS flavor of the attack. To prevent that, you need to use an anti-leak custom stylesheet, except on Firefox, where simply disabling history is enough to prevent the attack.

**tesco** · 01-22-2010, 04:36 PM

Originally Posted by Cabalo

Originally Posted by JPaul

Ban the prick now Cabalo, do something useful ffs.

Idol beat me to it

As a bonus, this indeed works and some torrent sites use it in their code, especially the gazelle ones, where it comes installed by default, you just have to add sites to the list.

To avoid this, use noscript to avoid the java attempt, and also change a firefox setting, as described here.

Why are torrent sites using this?

**anon** · 01-22-2010, 04:37 PM

There are certain forums they don't carry on well with.

**Cabalo** · 01-22-2010, 05:32 PM

Originally Posted by tesco

Originally Posted by Cabalo

Idol beat me to it

As a bonus, this indeed works and some torrent sites use it in their code, especially the gazelle ones, where it comes installed by default, you just have to add sites to the list.

To avoid this, use noscript to avoid the java attempt, and also change a firefox setting, as described here.

Why are torrent sites using this?

Some sites want to know if the users visited certain links, and FST is at some of those. It can be used to trace recent trades or even public giveaways. I've discussed this at TC, if you remember.

Originally Posted by anon-sbi

Famous cheater boards, for example

Or T-I.

To avoid this, use noscript to avoid the java attempt, and also change a firefox setting, as described here.

You're forgetting something... even if you disable JavaScript and HTTP referers, you can still get caught via the CSS flavor of the attack. To prevent that, you need to use an anti-leak custom stylesheet, except on Firefox, where simply disabling history is enough to prevent the attack.

Could you post the css stylesheet? I remember reading about that at your forum, but I've no idea where I can find it any more.

Thread: Scary: Browser Hack lets other see what sites you visit

Thread Tools

Bookmarks

Bookmarks

Posting Permissions