{"id":1256,"date":"2006-11-16T08:16:07","date_gmt":"2006-11-16T07:16:07","guid":{"rendered":"http:\/\/bloggingtom.ch\/?p=1256"},"modified":"2006-11-16T10:49:15","modified_gmt":"2006-11-16T09:49:15","slug":"unsichere-website-der-tkb","status":"publish","type":"post","link":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/","title":{"rendered":"Unsichere Website der TKB"},"content":{"rendered":"<p>Kaum gr\u00fcnden vier Provider die Interessengemeinschaft &#8222;<a href=\"http:\/\/www.stopspam.ch\" target=\"_blank\" >Swiss ISPs Against Spam<\/a>&#8220; (S.I.A.S), die unter anderem die Kunden vor den Gefahren von Spam und Phishing warnen will, <a href=\"http:\/\/blog.benbit.ch\/thurgauer-kantonalbank-schutzt-sich-nicht-gegen-phishing\/\" target=\"_blank\" >zeigt Beni<\/a>, dass die <a href=\"http:\/\/www.tkb.ch\" target=\"_blank\" >Thurgauer Kantonalbank<\/a> (TKB) ein Problem auf Ihrer Webseite hat. So lassen sich derzeit ungehindert fremde Seiten mittels iframe in das Layout der TKB-Seiten einbinden, wie auch das OMC-Blog <a href=\"http:\/\/blog.omc.ch\/2006\/11\/16\/bei-der-thurgauer-kantonalbank-kann-man-scripte-ausfuhren-hallo\/\" target=\"_blank\" >aufzeigt<\/a>.<\/p>\n<p>Ich hab&#8216; zu Demonstration mal das Login des TKB eBankings eingebunden:<br \/>\n<img decoding=\"async\" src=\"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg\" alt=\"Thurgauer Kantonalbank - Fake Formular im Layout\"  class=\"centered\" \/><\/p>\n<p>Okok, noch nicht ganz perfekt, denn noch prangt &#8222;Suchergebnis&#8220; als Titel da, aber doch erstaunlich, dass eine Bank wie die Thurgauer Kantonalbank noch nicht einmal Suchformular-Eingaben auf Ihre Plausibilit\u00e4t \u00fcberpr\u00fcft.<\/p>\n<p>Vielleicht sollte sich die Bank mal bei &#8222;Swiss ISPs Against Spam&#8220; beraten lassen&#8230;<\/p>\n<p><strong>[Update] 10:47 Uhr<\/strong><br \/>\nSoeben wurde die L\u00fccke geschlossen und obige Spielchen sind nicht mehr m\u00f6glich&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kaum gr\u00fcnden vier Provider die Interessengemeinschaft &#8222;Swiss ISPs Against Spam&#8220; (S.I.A.S), die unter anderem die Kunden vor den Gefahren von Spam und Phishing warnen will, zeigt Beni, dass die Thurgauer Kantonalbank (TKB) ein Problem auf Ihrer Webseite hat. So lassen sich derzeit ungehindert fremde Seiten mittels iframe in das Layout der TKB-Seiten einbinden, wie auch [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"twitterCardType":"","cardImageID":0,"cardImage":"","cardTitle":"","cardDesc":"","cardImageAlt":"","cardPlayer":"","cardPlayerWidth":0,"cardPlayerHeight":0,"cardPlayerStream":"","cardPlayerCodec":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[2],"tags":[],"class_list":["post-1256","post","type-post","status-publish","format-standard","hentry","category-internet"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Unsichere Website der TKB - BloggingTom<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/\" \/>\n<meta name=\"twitter:label1\" content=\"Verfasst von\" \/>\n\t<meta name=\"twitter:data1\" content=\"BloggingTom\" \/>\n\t<meta name=\"twitter:label2\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data2\" content=\"1\u00a0Minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/\"},\"author\":{\"name\":\"BloggingTom\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c\"},\"headline\":\"Unsichere Website der TKB\",\"datePublished\":\"2006-11-16T07:16:07+00:00\",\"dateModified\":\"2006-11-16T09:49:15+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/\"},\"wordCount\":138,\"commentCount\":3,\"publisher\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c\"},\"image\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg\",\"articleSection\":[\"Internet\"],\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/\",\"url\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/\",\"name\":\"Unsichere Website der TKB - BloggingTom\",\"isPartOf\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage\"},\"thumbnailUrl\":\"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg\",\"datePublished\":\"2006-11-16T07:16:07+00:00\",\"dateModified\":\"2006-11-16T09:49:15+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#breadcrumb\"},\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage\",\"url\":\"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg\",\"contentUrl\":\"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/bloggingtom.ch\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Unsichere Website der TKB\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#website\",\"url\":\"https:\/\/bloggingtom.ch\/blog\/\",\"name\":\"BloggingTom\",\"description\":\"Die t\u00e4glichen Abenteuer im Cyberspace...\",\"publisher\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/bloggingtom.ch\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"de\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c\",\"name\":\"BloggingTom\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/17c2b6a2966fc102465cf177587d359e4dac41adfaab355352baee5d5d46f277?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/17c2b6a2966fc102465cf177587d359e4dac41adfaab355352baee5d5d46f277?s=96&d=mm&r=g\",\"caption\":\"BloggingTom\"},\"logo\":{\"@id\":\"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/image\/\"},\"sameAs\":[\"http:\/\/bloggingtom.ch\"],\"url\":\"https:\/\/bloggingtom.ch\/blog\/archives\/author\/bloggingtom\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Unsichere Website der TKB - BloggingTom","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/","twitter_misc":{"Verfasst von":"BloggingTom","Gesch\u00e4tzte Lesezeit":"1\u00a0Minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#article","isPartOf":{"@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/"},"author":{"name":"BloggingTom","@id":"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c"},"headline":"Unsichere Website der TKB","datePublished":"2006-11-16T07:16:07+00:00","dateModified":"2006-11-16T09:49:15+00:00","mainEntityOfPage":{"@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/"},"wordCount":138,"commentCount":3,"publisher":{"@id":"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c"},"image":{"@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage"},"thumbnailUrl":"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg","articleSection":["Internet"],"inLanguage":"de","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/","url":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/","name":"Unsichere Website der TKB - BloggingTom","isPartOf":{"@id":"https:\/\/bloggingtom.ch\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage"},"image":{"@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage"},"thumbnailUrl":"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg","datePublished":"2006-11-16T07:16:07+00:00","dateModified":"2006-11-16T09:49:15+00:00","breadcrumb":{"@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/"]}]},{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#primaryimage","url":"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg","contentUrl":"http:\/\/bloggingtom.ch\/wp-images\/ownimg\/articles\/20061115-tkbphishing.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/bloggingtom.ch\/blog\/archives\/2006\/11\/16\/unsichere-website-der-tkb\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/bloggingtom.ch\/blog\/"},{"@type":"ListItem","position":2,"name":"Unsichere Website der TKB"}]},{"@type":"WebSite","@id":"https:\/\/bloggingtom.ch\/blog\/#website","url":"https:\/\/bloggingtom.ch\/blog\/","name":"BloggingTom","description":"Die t\u00e4glichen Abenteuer im Cyberspace...","publisher":{"@id":"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/bloggingtom.ch\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de"},{"@type":["Person","Organization"],"@id":"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/f6c8d3d5f30c10217b69ac72723e9d1c","name":"BloggingTom","image":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/17c2b6a2966fc102465cf177587d359e4dac41adfaab355352baee5d5d46f277?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/17c2b6a2966fc102465cf177587d359e4dac41adfaab355352baee5d5d46f277?s=96&d=mm&r=g","caption":"BloggingTom"},"logo":{"@id":"https:\/\/bloggingtom.ch\/blog\/#\/schema\/person\/image\/"},"sameAs":["http:\/\/bloggingtom.ch"],"url":"https:\/\/bloggingtom.ch\/blog\/archives\/author\/bloggingtom\/"}]}},"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/pa6Ev-kg","jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/posts\/1256","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/comments?post=1256"}],"version-history":[{"count":0,"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/posts\/1256\/revisions"}],"wp:attachment":[{"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/media?parent=1256"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/categories?post=1256"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bloggingtom.ch\/blog\/wp-json\/wp\/v2\/tags?post=1256"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}