Today I have problem with the ADSL in office and I have to connect the HTC Hero provided by T-mobile to browse the Internet and SSH onto our servers for urgent maintenance.
I notice one of our clients’ website got some Javascript injected, right in the html header:
src="http://1.2.3.8/bmi-int-js/bmi.js"
My heart sinks and I thought that account is hacked. It turns out that T-Mobile (and Vodafone UK) thinks it is appropriate to insert their own Javascript into each page which I visit, which pipes all images through a proxy to degrade their quality. This will save bandwidth but the images look horrible on a 27″ PC screen. On a HTC hero tiny screen I am sure I will not notice a thing. But there you ago, a false alarm…