Full Disclosure mailing list archives

Re: Paypal Phishing Again

From: Valdis.Kletnieks () vt edu
Date: Thu, 05 May 2005 11:01:56 -0400

On Fri, 06 May 2005 00:43:39 +1200, Nick FitzGerald said:

netfirms.com via a triple redirection (Yahoo! to Google to Yahoo! to 
netfirms) cleverly constructed with HTML form submission logic so that 
the full URL is not actually present in one piece in the HTML code.


OOH.  Devious and nasty. ;)

(It also uses some further obfuscation of parts of the URL by inserting 
entity-encoded HTML white-space characters.)


Discussing the fact somebody is phishing is pretty off-topic.  But sounds
like critiquing it for style might be good for a go. ;)

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Paypal Phishing Again Jason Weisberger (May 04)
- Re: Paypal Phishing Again Nick FitzGerald (May 05)
- Re: Paypal Phishing Again Jeremy Heslop (May 05)
  - Re: Paypal Phishing Again Nick FitzGerald (May 05)
    - Re: Paypal Phishing Again Valdis . Kletnieks (May 05)
- Re: Paypal Phishing Again Mike Mohr (May 07)
- <Possible follow-ups>
- RE: Paypal Phishing Again Todd Towles (May 05)
- RE: Paypal Phishing Again Todd Towles (May 05)