Simon Willison’s Weblog

The code injected to steal passwords in Tunisia. Here’s the JavaScript that (presumably) the Tunisian government were injecting in to login pages that were served over HTTP.

Posted 24th January 2011 at 6:45 pm

Recent articles

Claude can write complete Datasette plugins now - 8th October 2025
Vibe engineering - 7th October 2025
OpenAI DevDay 2025 live blog - 6th October 2025

javascript 722 security 552 recovered 213 tunisia 3

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe