Issue metadata
Sign in to add a comment
|
Security: chrome browser on iphone loaded scam webpage instead of cnn.com |
||||||||||||||||||||
Issue descriptionThis template is ONLY for reporting security bugs. Please use a different template for other types of bug reports. Please see the following link for instructions on filing security bugs: http://www.chromium.org/Home/chromium-security/reporting-security-bugs VULNERABILITY DETAILS Please provide a brief explanation of the security issue. I am guessing this was a network-based attack, probably with dns, but my husband and I both tried to load a valid webpage (cnn.com for me) and instead got a very suspicious looking page about winning an iphone, mac or other hardware from Google. We were both on cellular, not wifi. I also have a screenshot of the page if you want me to provide that. VERSION Chrome Version: [x.x.x.x] + [stable, beta, or dev] Operating System: [Please indicate OS, version, and service pack level] I can't get to any chrome version info at the moment, if there is a way to do it without clicking the popup box, please let me know. iPhone 6 - 8.1 (12B411) REPRODUCTION CASE Please include a demonstration of the security bug, such as an attached HTML or binary file that reproduces the bug when loaded in Chrome. PLEASE make the file as small as possible and remove any content not required to demonstrate the bug. I still have my phone in this state (for now). I will leave it like this until tomorrow sometime. I can bring it to someone if they want to look at it. All I did was attempt to visit cnn.com while out at dinner. The same thing happened to my husband's phone. Instead of cnn.com, a very suspicious page was loaded on both of our phones. FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION Type of crash: [tab, browser, etc.] Crash State: [see link above: stack trace, registers, exception record] Client ID (if relevant): [see link above]
,
Mar 10 2016
Agreed with inferno, this likely isn't a Chrome security issue specifically. A couple questions for the reporter: * What version of Chrome are you running? (Version 48 switched to using WkWebView) * www.cnn.com is an HTTP (not HTTPS) page and is trivial to man-in-the-middle. If you are on a public network this could be as simple as redirecting the DNS, or having an HTTP proxy serve up content.... Although from the bug report you say you are on cellular not wifi - who is your carrier? * Do you see scam webpages for any other site? Are any of these sites being served over https:// ? (If you only see scam sites that are on http:// URLs it is fairly likely this hijacking is coming from the network level). * Do you see the same scam webpage when loading www.cnn.com from Safari?
,
Mar 10 2016
> All I did was attempt to visit cnn.com while out at dinner. The same thing happened to my husband's phone. Is your husband also using an iPhone? I wonder if it is possible that while at the restaurant your phones connected to a malicious wifi. Do you still get the wrong cnn.com when force reloading now?
,
Mar 10 2016
Thanks for looking in to this. Yes, he is using an iphone - we were both using chrome. Neither one of us was connected to wifi, we were both on cell (at&t). I can load cnn.com just fine now after restarting the phone and then I did end up clicking on the popup. (It would be nice to be able to get around those popups without clicking on them. The tab close button was not clickable.) The chrome version is: 47.0.2526.107 I didn't see it for any other pages at the time, but I stopped trying when it happened. I was able to load other pages in safari at the time. I can try going over near that location this weekend to see if I can repro. I wasn't exactly sure where to report this, since it was saying google was providing the "prize" and it happened in chrome, I just wanted to make sure it was at least reported somewhere. I have a screenshot if you want that. Or if you know of a team that is interested in trademark infringement, please let me know. Thank you!
,
Mar 10 2016
Hmm I don't know then. Certainly I wouldn't put it past a problem with www.cnn.com either. Could have also been that everything here was working as intended, and you hit a particularly egregious advertisement being "legitimately" served off their site. It managed to popup and steal focus. Perhaps targetted specifically at Chrome User-Agent. +rsleevi fyi in case he has ideas.
,
Mar 16 2016
Quick update: We went back to eat at the same place. No issues this time. Even if it was an attack on cnn, would it be possible to allow users to close the tab/window instead of being forced to click on their popup?
,
Jun 17 2016
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 1 2016
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 2 2016
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 2 2016
|
|||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||
Comment 1 by infe...@chromium.org
, Mar 10 2016Status: WontFix (was: Unconfirmed)