Saturday, March 24, 2007

Tool turns unsuspecting surfers into hacking help / news.com.com, 20 March 2007
http://news.com.com/2100-1002_3-6169034.html
Joris Evers
"With Jikto, JavaScript on a Web site can turn PCs into a bug-hunting tool, thus doing a hacker's dirty work. A security researcher has found a way hackers can make PCs of unsuspecting Web surfers do their dirty work, without having to actually commandeer the systems.
That's possible with a new security tool called Jikto. The tool is written in JavaScript and can make PCs of unknowing Web surfers hunt for flaws in Web sites, said Jikto creator Billy Hoffman, a researcher at Web security firm SPI Dynamics. Hoffman, who developed the tool as a way to advance Web security, plans to release Jikto publicly at the ShmooCon hacker event in Washington, DC."