Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Adblock Plus Filters Can Be Exploited to Run Malicious Code

Ad-blocker

Anexploit has been discovered that could allow ad blocking filter maintainers for the Adblock Plus, AdBlock, and uBlocker ad blockers to create rules that inject remote scripts into web sites.

With a user base of over 10million users, injecting malicious scripts would have a huge impact as the scripts would be able to perform a variety of malicious functions such as stealingcookies, login credentials, causingpage redirects, or other unwanted behavior.

This is possible through the $rewrite filter option that was added to Adblocker Plus 3.2 in 2018 and then subsequently added to the AdBlockand uBlockextensions.

The $rewrite rule allows you replace a web request that matches a particular regular expression with another URL. The only caveat is that the replacement string must be a relative URL, which means it does not contain a hostname, and when rewritten must be in the same origin domain as the original request.

For example, the following filter rulewill cause all requests for...(continued)

View All Trending Stories