Who on here was it... Who on here was it...
Posts 1 to 6 of 6
  1. #1

    My post count is Majestic

    AtW is always on top

    AtW's Avatar
    Join Date
    Jul 2005
    Posts
    58,781

    Default Who on here was it...

    “ Companies House has forced a company to change its name after it belatedly realised it could pose a security risk.

    The company now legally known as “THAT COMPANY WHOSE NAME USED TO CONTAIN HTML SCRIPT TAGS LTD” was set up by a British software engineer, who says he did it purely because he thought it would be “a fun playful name” for his consulting business.

    He now says he didn’t realise that Companies House was actually vulnerable to the extremely simple technique he used, known as “cross-site scripting”, which allows an attacker to run code from one website on another.

    The original name of the company was ““><SCRIPT SRC=HTTPS://MJT.XSS.HT> LTD”. By beginning the name with a quotation mark and chevron, any site which failed to properly handle the HTML code would have mistakenly thought the company name was blank, and then loaded and executed a script from the site XSS Hunter, which helps developers find cross-site scripting errors.”

    Company forced to change name that could be used to hack websites | UK news | The Guardian

    That looks so Brilloant...

  2. #2

    More fingers than teeth

    xoggoth is a fount of knowledge

    xoggoth's Avatar
    Join Date
    Jul 2005
    Location
    xoggoth towers
    Posts
    14,296

    Default

    Nick Fitz is the obvious suspect.
    bloggoth

    If everything isn't black and white, I say, 'Why the hell not?'
    John Wayne (My guru, not to be confused with my beloved prophet Jeremy Clarkson)

  3. #3

    My post count is Majestic

    AtW is always on top

    AtW's Avatar
    Join Date
    Jul 2005
    Posts
    58,781

    Default

    Nah, he got an alibi - he was under lock down...

  4. #4

    Banned

    BR14 is always on top


    Join Date
    Jun 2017
    Location
    Under your kitchen sink
    Posts
    12,052

    Default

    Quote Originally Posted by xoggoth View Post
    Nick Fitz is the obvious suspect.
    Grass.

  5. #5

    Super poster

    Andy2 's job has never been outsourced


    Join Date
    Jul 2007
    Posts
    2,171

    Default

    how did he even register the company name.
    I would expect it would have crashed companies house or hmrc database

  6. #6

    Double Godlike!

    LondonManc is a fount of knowledge


    Join Date
    Sep 2014
    Location
    Work-life balance nirvana
    Posts
    12,286

    Default

    Was he called Bobby Tables?

    The greatest trick the devil ever pulled was convincing the world that he didn't exist

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •