[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

There's something I don't understand well. How could

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. There's something I don't understand well. How could
Thread replies: 12
Thread images: 2

Anonymous
2016-07-15 13:34:01 Post No. 55587122
[Report] Image search: [Google]
File: javascript-malware-150x150.jpg (10KB, 150x150px) Image search: [Google]
javascript-malware-150x150.jpg
10KB, 150x150px
Anonymous 2016-07-15 13:34:01 Post No. 55587122 [Report]
There's something I don't understand well.

How could a malicious website, without using some security holes from Flash, Java..., infect an user ? I understand how Javascript can open an invisible iframe that'll make the user download a binary file (the malware), but he would still have to run it himself to infect his system, no ?

Also, talking about Javascript malwares. Why are some malicious email attachments written in JS and named something like "document.doc.js" ? Why not just send directly the malware as "document.doc.exe" ? Why would you send a dropper rather than the malware itself directly ?
>>
Anonymous 2016-07-15 13:35:38 Post No.55587135
[Report]
Anonymous 2016-07-15 13:35:38 Post No.55587135 [Report]
>>55587122

Because javascript was intentionally made to infect the biggest amount of users. Jews wanted it this way
>>
Anonymous 2016-07-15 13:36:43 Post No.55587155
[Report]
Anonymous 2016-07-15 13:36:43 Post No.55587155 [Report]
>>55587135
You're not even responding to my questions, faggot. Please stop shitposting, it's kike-level.
>>
Anonymous 2016-07-15 13:44:08 Post No.55587233
[Report]
Anonymous 2016-07-15 13:44:08 Post No.55587233 [Report]
>>55587122

Think about it... You answered yourself.

>How could a malicious website, without using some security holes from Flash, Java..., infect an user ?

Maybe it really was intentionally. Think about it. How can things like Adobe Flash that is closed source and javascript be so flawed from the beginning? When there are way better alternatives. Maybe someone filled their pockets with copious amounts of money
>>
Anonymous 2016-07-15 13:48:21 Post No.55587273
[Report]
Anonymous 2016-07-15 13:48:21 Post No.55587273 [Report]
>>55587233
I said "how" to ask how it works, not "how" as in "How is that possible in $CURRENT_YEAR ?!"
>>
Anonymous 2016-07-15 14:09:40 Post No.55587466
[Report] Image search: [Google]
Anonymous 2016-07-15 14:09:40 Post No.55587466 [Report]
File: 1463331633332.jpg (30KB, 720x960px) Image search: [Google]
1463331633332.jpg
30KB, 720x960px
> pre-college me is on /g/ everyday
> fall for the noscript meme
> never use js
> go to school for IT
> webdev class
> ask teacher how js is malicious
> he says it's not malicious for users, but users can maliciously use it to break your sites/dbs
> tfw memed on by /g/
>>
Anonymous 2016-07-15 14:31:52 Post No.55587728
[Report]
Anonymous 2016-07-15 14:31:52 Post No.55587728 [Report]
>>55587466
What the fuck is wrong with your teacher
>>
Anonymous 2016-07-15 14:37:32 Post No.55587785
[Report]
Anonymous 2016-07-15 14:37:32 Post No.55587785 [Report]
>>55587122
>Why are some malicious email attachments written in JS and named something like "document.doc.js" ?
Windows can execute javascript files
>>
Anonymous 2016-07-15 15:45:43 Post No.55588522
[Report]
Anonymous 2016-07-15 15:45:43 Post No.55588522 [Report]
>>55587122
The javascript interpreter can have bugs in it that let malicious javascript directly run code on your PC.
>>
Anonymous 2016-07-15 15:47:06 Post No.55588534
[Report]
Anonymous 2016-07-15 15:47:06 Post No.55588534 [Report]
just think of it this way, little johnny:

javascript and flash aren't the only programs on your computer with addressable ports.
>>
Anonymous 2016-07-15 15:50:49 Post No.55588567
[Report]
Anonymous 2016-07-15 15:50:49 Post No.55588567 [Report]
>>55587466
>listening to /g/
>>
Anonymous 2016-07-15 17:42:44 Post No.55589715
[Report]
Anonymous 2016-07-15 17:42:44 Post No.55589715 [Report]
>>55587785
I understand, but why not just send directly the malware rather than writing a dropper for it in JS ?

I've seen malicious examples with a JS file inside a .zip. That's even more stupid, I know some normies who don't even know how to open one.
Thread posts: 12
Thread images: 2
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.