๐ Attack With WPAD Protocol and PAC Files Can Leak HTTPS Traffic
๐ก Newskategorie: IT Security
๐ Quelle: news.softpedia.com
Alex Chapman and Paul Stone from Context, a UK cyber security consultancy firm, have discovered a new attack method using the WPAD protocol and PAC files to leak information about the HTTPS sites a user is visiting. Their discovery is yet another drop in the lake of exploits that use the widely insecure WPAD protocol. WPAD stands for Web Proxy Auto-Discovery and is a protocol used to broadcast proxy configurations across a network. This "broadcasting" operation is done using proxy configurations called PAC files, or proxy auto-configs, which browsers or other Internet-connecting apps receives before being routed to their destination. Attack leaks full URL path for HTTPS websites Chapman and Stone say that an attacker already on a compromised network can sniff for transiting PAC files and inject their content with malicious code. This is possible wh... ...