Reply to post: Re: Offsite scripts GAH!

Ticketmaster tells customer it's not at fault for site's Magecart malware pwnage

Pen-y-gors Silver badge

Re: Offsite scripts GAH!

@Clanger9

Have a look at the TSB login page. Offsite resources include:

That got me interested. Just looked at the Lloyds login page:

we-stats.com

tiqcn.com

webtrendslive.com

All now blocked by ABP of course.

And looking at the Network info from Webdeveloper in Firefox there are a lot of curious bits - cross-site scripting blocked to other subdomains? XML parsing errors? Some very curious "Firefox can't establish a connection to the server at wss://127.0.0.1:5900/"

And am I the only one who is suspicious of GET requests that have a parameter of 500 bytes of hex?

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019