StealMyLogin.com – exposing the dangers of insecure login forms
This issue has been bugging me for a long time, and finally I decided to do something about it – check out StealMyLogin.com.
You might not be aware of this, but many of the biggest sites on the web implemented their login forms incorrectly, and this potentially allows malicious attackers to steal your login information, which could then lead to them stealing your social security numbers, bank information or your identity.
Among sites that have this security problem are Twitter, Facebook, AT&T, Netflix, GoDaddy, Progressive, Tivo and UPS.
StealMylLogin.com has the full story, background and technical details.