Re: US Bank scam

["Hamby, Charles D." <pfcdh1 () matsu alaska edu>]

This is a slick phishing scam, I have to admit.  One thing I noticed
though; 
I printed the various pages of the website out with IE to use as an
example and I noticed that the real URL appeared at the bottom of each
page as opposed to the bogus one.  I thought that was interesting.  Has
anyone else 
noticed that this occurs with other phishing sites or is it just unique
to this case?

Charles Hamby

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Eric
LeBlanc
Sent: Tuesday, June 15, 2004 9:59 AM
To: full-disclosure () lists netsys com
Subject: [SPAM] - Re: [Full-disclosure] US Bank scam - Email found in
subject

On Tue, 15 Jun 2004, David Lederman wrote:

> This is the best phishing scam I've seen yet:
> http://www.bis1bp.com/a12/index.html
>
> I have Windows Server 2003 fully patched and this works. The program
fakes an address bar so this
> would pass through most people's safety check, after all the address
bar clearly has the correct
> address.
>
> There are bugs in the code, for example, all your Internet Explorer
windows will now have this
> address, but again for most people would only have one window open.

If you have google's toolbar or something similar, it will overwrite
this
toolbar and not the address bar.

But, I must admit that this thing is ingenious !

E.
--
Eric LeBlanc
inouk () igt net
--------------------------------------------------
UNIX is user friendly.
It's just selective about who its friends are.
==================================================

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html