Thursday, March 12, 2009

Clipboard Hack:

Shocking News about CTRL + C :

Ctrl + C may be the most important and frequent work we do everyday. But it’s not very safe thing to do. Read on to know why? What happens when you press Ctrl + C while you are online?

We do copy various data by Ctrl + C for pasting elsewhere. This data is stored in clipboard and accessible from the net by anyone by using JavaScript and ASP. This is called clipboard Hack.

Just Try this:

1. Copy any text by Ctrl + C
2. Click on the link : http://www.sourcecodesworld.com/special/clipboard.asp
3. You will see the text you copied will be accessed by this web site.

Surprise!

Don’t you? It is extremely easy to extract the data stored in your clipboard to steal your sensitive information. So do not keep sensitive data (like Password, Credit card No, Pin No etc.) in the clipboard while you are connecting to net.

It’s true that the data last copied for paste operation can be stolen when you visit such web site which uses these scripting languages and your sensitive data will be saved on the database of others server.

How it works :

It can be done by using this simple JavaScript:
/*
var content = clipboardData.Getdata(“Text”);
alert (content) ;

*/
How to Overcome this hack :

To avoid this hack use following settings in your browser (IE):
1. Tools ->Internet options ->security ->Internet ->custom level
2. Scripting -> Allows paste operation via script ->disable.

Now the content of your clipboard is safe.

In latest versions of IE, this issue has been fixed :)

2 comments:

  1. Yeah,,,, its really good thing that we all ignore during day to day job. It's really surprising for me also that our text can be hacked in this way also.. nice info dude..

    ReplyDelete
  2. what about other browsers?????
    I don't use IE.

    ReplyDelete