2 April 2009
I previously wrote about how CommSec uses a non-SSL frameset to deliver sensitive financial data. It turns out that you can use the NoScript add-on for Firefox to force CommSec to use HTTPS.
Read the full post
20 March 2009
CommSec uses a non-SSL frameset to deliver sensitive financial data. You never know (without some digging) whether the content frame is at the www.comsec.com.au domain and whether it’s using SSL, so you’ll never know whether it’s safe to enter your details there.
Read the full post
