Page 1 of 2 12 LastLast
Results 1 to 15 of 20
  1. #1
    Super Moderator jscher2000's Avatar
    Join Date
    Feb 2001
    Location
    Silicon Valley, USA
    Posts
    23,112
    Thanks
    5
    Thanked 93 Times in 89 Posts

    Sleazy phishing code du jour

    Obviously it is a good practice, and the default out-of-the-box configuration, to disable JavaScript ("Active Scripting") in the e-mail client. For those who allow script to run, here's an example of how one phishing scam e-mail writes a deceptive URL into the status bar of the viewer window to trick you into believing that you will be visiting a legitimate site:

    Visible text: Login immediately to your account.

    HTML code: Login immediately to your account.

    Outlook 2000 and 2002 don't display a status bar, so this must be targeted at other mail clients.

    (Incidentally, the IP address for "US Bank" is listed under a service provider in Spain.)

  2. #2
    2 Star Lounger
    Join Date
    Feb 2001
    Location
    Brussels, Brussel, Belgium
    Posts
    159
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Sleazy phishing code du jour

    nice! NOT! <img src=/S/smile.gif border=0 alt=smile width=15 height=15>
    here's the most recent phishing scam which in essence exploits bad html design on the server, which allows cross site script injection (for instance mastercard.com is vulnerable)
    http://www.zapthedingbat.com/security/scriptinjection/

    (this is not a browser vulnerability exploit, just bad site design practice)

  3. #3
    Platinum Lounger
    Join Date
    Jan 2001
    Location
    Quedgeley, Gloucester, England
    Posts
    5,333
    Thanks
    0
    Thanked 1 Time in 1 Post

    Re: Sleazy phishing code du jour

    Jefferson

    I had the usual "you must log onto your account and give us all your details" email this morning from "US Bank".

    Do scammers really think that someone from the UK would do this?

    John
    <font face="Script MT Bold"><font color=blue><big><big>John</big></big></font color=blue></font face=script>

    Ita, esto, quidcumque...

  4. #4
    Super Moderator
    Join Date
    Dec 2000
    Location
    Renton, Washington, USA
    Posts
    12,560
    Thanks
    0
    Thanked 4 Times in 4 Posts

    Re: Sleazy phishing code du jour

    <big> <big><big><big><font color=red>Yes</font color=red></big></big></big></big>

    Now running HP Pavilion a6528p, with Win7 64 Bit OS.

  5. #5
    Plutonium Lounger
    Join Date
    Dec 2000
    Location
    Sacramento, California, USA
    Posts
    16,775
    Thanks
    0
    Thanked 1 Time in 1 Post

    Re: Sleazy phishing code du jour

    What I appreciate are the ones from "banks" with which I have no account. <img src=/S/evilgrin.gif border=0 alt=evilgrin width=15 height=15>
    Charlotte

  6. #6
    Super Moderator
    Join Date
    Dec 2000
    Location
    Renton, Washington, USA
    Posts
    12,560
    Thanks
    0
    Thanked 4 Times in 4 Posts

    Re: Sleazy phishing code du jour

    Or like the one that is going around about my account at eBay ( I do NOT have) and there is a balance of $0,01 and it MUST be paid to the account owner.

    Now running HP Pavilion a6528p, with Win7 64 Bit OS.

  7. #7
    Platinum Lounger
    Join Date
    Jan 2001
    Location
    Quedgeley, Gloucester, England
    Posts
    5,333
    Thanks
    0
    Thanked 1 Time in 1 Post

    Re: Sleazy phishing code du jour

    Charlotte

    That was my very point! How many UK customers have even heard of "US Bank" (I certainly haven't), let alone have accounts there!

    John
    <font face="Script MT Bold"><font color=blue><big><big>John</big></big></font color=blue></font face=script>

    Ita, esto, quidcumque...

  8. #8
    Super Moderator jscher2000's Avatar
    Join Date
    Feb 2001
    Location
    Silicon Valley, USA
    Posts
    23,112
    Thanks
    5
    Thanked 93 Times in 89 Posts

    Re: Sleazy phishing code du jour

    John, as long as it's cheaper to send e-mail than to check where it's going, you can expect an endless stream of these.

  9. #9
    3 Star Lounger
    Join Date
    Dec 2001
    Location
    Schenectady, New York, USA
    Posts
    273
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Sleazy phishing code du jour

    John,
    I never heard of them either until I got a phishing message last week.
    Don
    <img src=/S/flags/USA.gif border=0 alt=USA width=30 height=18> <img src=/S/flags/NewYork.gif border=0 alt=NewYork width=30 height=18> "Life on Earth is expensive, but at least it includes a free trip around the Sun."

  10. #10
    Uranium Lounger
    Join Date
    Mar 2001
    Location
    New Jersey
    Posts
    6,684
    Thanks
    1
    Thanked 11 Times in 11 Posts

    Re: Sleazy phishing code du jour

    <center>
    <hr>Do scammers really think that someone from the UK would do this?<hr>
    </center>
    Scammers don't think much about what you might do or where you are located and they hope you don't either. As long as you do something it increases their chances of success. Remember, they work on volume output and low percentage responses. But 1% of 1,000,000 is still a substantial number, be it dollars or people who respond.
    <IMG SRC=http://www.wopr.com/w3tuserpics/DocWatson_sig.gif>

  11. #11
    Super Moderator
    Join Date
    Dec 2000
    Location
    Salt Lake City, Utah, USA
    Posts
    9,507
    Thanks
    0
    Thanked 4 Times in 4 Posts

    Re: Sleazy phishing code du jour

    The scary part is when they hit someone who DOES bank at the phishing scam bank. My wife has been hit with a phish masquerading as her actual bank, leading to a conversation something like this:

    Me, in absolute hysterical panic: "Mother of God, that's a SCAM, you didn't reply or even click on it or anything did you?"
    Wife, calmly: "You don't think I'm that stupid, do you?"
    Me: <very long silence> "Um, no, of course not, honey. Say, I think we're out of lettuce ..."
    -John ... I float in liquid gardens
    [acronym title="Gday mate!"][/acronym] [acronym title="What up Dude?"][/acronym] UTC -7±DS

  12. #12
    Plutonium Lounger
    Join Date
    Dec 2000
    Location
    Sacramento, California, USA
    Posts
    16,775
    Thanks
    0
    Thanked 1 Time in 1 Post

    Re: Sleazy phishing code du jour

    I got a phone call like that once, claiming to be from my mortgage holder. They definitely had some of my information, name, address, etc., but I became suspicious when they wanted a credit card number and other confidential information and became belligerent when I refused to give it to them. They threatened me with a rate hike in my mortgage if I didn't give them the information. I told them to go ahead! <img src=/S/laugh.gif border=0 alt=laugh width=15 height=15>
    Charlotte

  13. #13
    Super Moderator
    Join Date
    Dec 2000
    Location
    Salt Lake City, Utah, USA
    Posts
    9,507
    Thanks
    0
    Thanked 4 Times in 4 Posts

    Re: Sleazy phishing code du jour

    The problem with e-mail is you can't say: "What is your <company name> general office number? I'll call back and ask for you."
    -John ... I float in liquid gardens
    [acronym title="Gday mate!"][/acronym] [acronym title="What up Dude?"][/acronym] UTC -7±DS

  14. #14
    Platinum Lounger
    Join Date
    Nov 2001
    Location
    Melbourne, Victoria, Australia
    Posts
    5,016
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Re: Sleazy phishing code du jour

    <hr>Say, I think we're out of lettuce ...<hr>Not bad. I'll put that one in the database, under the "Might work sometimes" category.

    Alan

  15. #15
    Super Moderator
    Join Date
    Dec 2000
    Location
    Salt Lake City, Utah, USA
    Posts
    9,507
    Thanks
    0
    Thanked 4 Times in 4 Posts

    Re: Sleazy phishing code du jour

    It didn't save me from "the raised eyebrow of death". <img src=/S/laugh.gif border=0 alt=laugh width=15 height=15>
    -John ... I float in liquid gardens
    [acronym title="Gday mate!"][/acronym] [acronym title="What up Dude?"][/acronym] UTC -7±DS

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •