Test your e-mail program

Does your e-mail program accept hidden JavaScript commands?

My last posting, Defending against a phishing e-mail message , described a JavaScript trick bad guys use to make a link appear to go one place when it really goes somewhere else.

So you can test if your e-mail program (or Webmail system) falls for this type of forgery, I created a test e-mail message.

To receive my test e-mail message, send an e-mail to:


It does not matter what, if anything, is in the subject or the body of your message.

The test e-mail message contains a link that appears to go to CNET, but really goes to my personal Web site. When you move the mouse over the test link, you should see my personal Web site in the status bar. If however, you see the silly message below, then your e-mail program is vulnerable to manipulation with JavaScript.

Hope you pass the test.

Featured Video
This content is rated TV-MA, and is for viewers 18 years or older. Are you of age?
Sorry, you are not old enough to view this content.

A second phone from OnePlus is coming this year

Co-Founder Carl Pei start talking about their next phone before the OnePlus 2 is even available. Samsung's Note 5 and S6 Edge Plus renders are leaked, and Google gives out Waffles.

by Brian Tong