CreateCSS injection

My clients were faced with following CreateCSS injection.

User (whos password was stolen and used for the attack)  says ( but it is not proven and unlikely) that password was stolen not from FTP client (FileZilla) but from saved VPN credentials.

Interesting.

Posted in Uncategorized | Leave a comment