= web/URLphishing = について、ここに記述してください。 http://isc.sans.edu/diary/13996 "Data" URLs used for in-URL phishing The use of "data" URLs in cross site scripting and other attacks isn't exactly new. But the concept is still not widely known, and keeps getting rediscovered. The latest iteration is a paper outlining the use of "data" URLs in "server less phishing" [1]. (thanks to our reader Tor for pointing this paper out) http://klevjers.com/papers/phishing.pdf http://www.jaosecurity.cl probablerootport-5.live にredirectされる。