Excitel Broadband is injecting javascript in your browsing sessions. Be careful with this company.
- Thread starter Sushubh
- Start date
- Replies 18
- Views 7,361
-
- Tags
- excitel broadband
The code being injected:
The short link was created 6 hours ago so this was implemented in the past couple of hours.
Google URL Shortener
HTML:
<script type="text/javascript" src="http://web.excitel.in/excitel/popup.js"></script>The short link was created 6 hours ago so this was implemented in the past couple of hours.
Google URL Shortener
this is not about headache. i can surf on a VPN through the day. this is just disappointing and sad. that an isp does not understand the concept of privacy and security. it does not understand the problem with injecting javascript code in user's browsing sessions. it's horrible. further highlights the fact that we really really need privacy laws in this country.
i mean today they are doing this by choice. tomorrow they could get hacked and malware could be injected through their servers. it is clear that they do have the means to do this. and since they do not see the problem today, they probably would do it again.
i mean today they are doing this by choice. tomorrow they could get hacked and malware could be injected through their servers. it is clear that they do have the means to do this. and since they do not see the problem today, they probably would do it again.
Hi Sushubh,
Thanks for pointing out your concern on this matter and really sorry to bring you trouble.
We do understand the tradeoff here and we decided we really need to help our users pay for their Internet Subscription Online, when cash is in shortage.
Unfortunately it appears that all other channels of communication were not efficient enough, to point our users to my.excitel.com portal.
P.S. The javascript is safe. We have done all necessary checks to ensure that we do not compromise the security of our users. Thanks again!
Thanks for pointing out your concern on this matter and really sorry to bring you trouble.
We do understand the tradeoff here and we decided we really need to help our users pay for their Internet Subscription Online, when cash is in shortage.
Unfortunately it appears that all other channels of communication were not efficient enough, to point our users to my.excitel.com portal.
P.S. The javascript is safe. We have done all necessary checks to ensure that we do not compromise the security of our users. Thanks again!
You can ask your LCOs to distribute pamphlets for it the next time they go on collecting payments. They can educate the customers. That should have ensured maximum reach.
But injecting code right in the middle of someone's browsing session shows your disdain for their privacy. Today its the recharge information. Tomorrow you might find an excuse to insert something else entirely.
If nothing else, at least give the users option to opt-out from this.
But injecting code right in the middle of someone's browsing session shows your disdain for their privacy. Today its the recharge information. Tomorrow you might find an excuse to insert something else entirely.
If nothing else, at least give the users option to opt-out from this.
Yup. BSNL and MTNL use the same excuse for their ad injection. It is for the 'benefit of the end user'. We include latest service related updates and also add some consumer benefitting ads.
This is a slippery slope. If the company does not see an issue injecting javascript code in customer's browsing sessions, it really should not be in internet service providing business.
This is a slippery slope. If the company does not see an issue injecting javascript code in customer's browsing sessions, it really should not be in internet service providing business.
TheEvdoUser
*Roaming*
Even though the message behind this is good the implementation is really bad imho. Should have gone with alternatives.
