Da-Chief
04-21-2008, 07:21
http://i.dslr.net/urls/41/2041.gif (http://www.dslreports.com/shownews/1-Of-Internet-Traffic-Being-Fiddled-With-By-ISPs-93735)
A new report (http://www.cs.washington.edu/research/security/web-tripwire/nsdi-2008.pdf) (pdf) by researchers at the University of Washington states that roughly one percent of web pages delivered to usersare being manipulated in some way (http://www.pcworld.com/businesscenter/article/144682/isps_meddled_with_their_customers_web_traffic_stud y_finds.html) by ISPs. After studying some 50,000 computers, the researchers found that a select few ISPs were injecting ads into Web pages on their networks. The study found that the most frequent culprits are small ISPs like Texas's Redmoon, who used NebuAD technology to inject ads (http://www.corpsman.com/shownews/85222) over existing ad relationships (NebuAD's CEO tells us they've since stopped the practice). From the research:These changes often have negative consequences for publishers and users: agents may inject or remove ads, spread exploits, or introduce bugs into working pages. Worse, page rewriting software may introduce vulnerabilities into otherwise safe web sites, showing that such software must be carefully scrutinized to ensure the benefits outweigh the risks. Overall, page modifications can present a significant threat to publishers and users when pages are transferred over HTTP.
The researchers have subsequently developed a web page tripwire system (http://www.cs.washington.edu/research/security/webtripwires.html) to detect ISP manipulation of web content they say is "more flexible and less costly" than switching to HTTPS for all traffic.
More...
A new report (http://www.cs.washington.edu/research/security/web-tripwire/nsdi-2008.pdf) (pdf) by researchers at the University of Washington states that roughly one percent of web pages delivered to usersare being manipulated in some way (http://www.pcworld.com/businesscenter/article/144682/isps_meddled_with_their_customers_web_traffic_stud y_finds.html) by ISPs. After studying some 50,000 computers, the researchers found that a select few ISPs were injecting ads into Web pages on their networks. The study found that the most frequent culprits are small ISPs like Texas's Redmoon, who used NebuAD technology to inject ads (http://www.corpsman.com/shownews/85222) over existing ad relationships (NebuAD's CEO tells us they've since stopped the practice). From the research:These changes often have negative consequences for publishers and users: agents may inject or remove ads, spread exploits, or introduce bugs into working pages. Worse, page rewriting software may introduce vulnerabilities into otherwise safe web sites, showing that such software must be carefully scrutinized to ensure the benefits outweigh the risks. Overall, page modifications can present a significant threat to publishers and users when pages are transferred over HTTP.
The researchers have subsequently developed a web page tripwire system (http://www.cs.washington.edu/research/security/webtripwires.html) to detect ISP manipulation of web content they say is "more flexible and less costly" than switching to HTTPS for all traffic.
More...