Third Party Javascripts
By Miles Baska on Wed, 11/21/07 - 12:25pm.WellsFargo.com has begun using javascript hosted by akamai.net on their sensitive pages. Since the javascripts will then have access to any of the form data used on that page, I wonder just how good an idea this is. Wells Fargo has out-sourced their security to akamai; trust by proxy.
On Nov. 17 Wells Fargo was informed of this -- their reply: the padlock icon on the browser means everything is just fine.
View the discussion on SecurityFocus.
-
Network World, Inc
The Connected Enterprise