Simon Willison’s Weblog

The code injected to steal passwords in Tunisia. Here’s the JavaScript that (presumably) the Tunisian government were injecting in to login pages that were served over HTTP.

Posted 24th January 2011 at 6:45 pm

Recent articles

Introducing gisthost.github.io - 1st January 2026
2025: The year in LLMs - 31st December 2025
How Rob Pike got spammed with an AI slop "act of kindness" - 26th December 2025

javascript 732 security 571 recovered 213 tunisia 3

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe