Pop-up vulnerability in major browsers, including Safari

Security company Secunia issued a warning today of a flaw that could allow a malicious JavaScript pop-up window to appear in front of a trusted Web site, tricking a user into divulging information like a personal password or something similar. This type of attack is called "phishing." Secunia states that, since a javascript window does not reveal its origin, it could appear to have been generated from the trusted site, and that Internet Explorer for Mac, Safari, iCab, Mozilla, and Camino are all vulnerable. Opera 7 and 8 are affected, but not 8.01, according to Opera.

Suddenly I'm rethinking my postion on Opera 8.01.

[via CNET]