Jim Salter on Nostr: This was a new technique on me: this (spear?) phisher used a t-dot-co redirect to a ...
This was a new technique on me: this (spear?) phisher used a t-dot-co redirect to a blob: protocol URL, which in turn results in Chrome displaying an insecure site WITHOUT the broken lock icon. You only see that the URL is insecure if you manually click the cert info button!
Published at
2024-12-04 00:00:08Event JSON
{
"id": "81991506483931089e7313bc0426d83765aed2a39afa76b6c3ed98ebcbc78538",
"pubkey": "2a34e4a82ad7fa53cffad2b8078e6281d1516b75644389e3c06efd5d5baba053",
"created_at": 1733270408,
"kind": 1,
"tags": [
[
"imeta",
"url https://cdn.fosstodon.org/media_attachments/files/113/591/603/293/064/727/original/aed8ce82dd8a703e.png",
"m image/png",
"dim 823x695",
"blurhash USQJl.xZNHbb9Ga$WBWD0LxZRlWC4:ofWBWB"
],
[
"proxy",
"https://fosstodon.org/users/jimsalter/statuses/113591609469674132",
"activitypub"
]
],
"content": "This was a new technique on me: this (spear?) phisher used a t-dot-co redirect to a blob: protocol URL, which in turn results in Chrome displaying an insecure site WITHOUT the broken lock icon. You only see that the URL is insecure if you manually click the cert info button!\n\nhttps://cdn.fosstodon.org/media_attachments/files/113/591/603/293/064/727/original/aed8ce82dd8a703e.png",
"sig": "f44cd60ad32d44598f865cd4dc2a53220b6a8cae6d8a9a88a18c4ab3a54e6a0d07827643f55793ecfc080d86c49751b25fb08e400cca02f35ba4d119187b6af0"
}
