Security News > 2020 > May > Websites Conducting Port Scans
Security researcher Charlie Belmer is reporting that commercial websites such as eBay are conducting port scans of their visitors.
Looking at the list of ports they are scanning, they are looking for VNC services being run on the host, which is the same thing that was reported for bank sites.
I further see, at least across ebay.com and citibank.com the same ports, in the same sequence getting scanned.
That implies there may be a library in use across both sites that is doing this.
Is this port scanning "a thing" built into some standard fingerprinting or security library? Is there a plugin for firefox that can block such behavior??
News URL
https://www.schneier.com/blog/archives/2020/05/websites_conduc.html