Full Disclosure mailing list archives
Re: US Bank scam
From: "Hamby, Charles D." <pfcdh1 () matsu alaska edu>
Date: Tue, 15 Jun 2004 13:54:57 -0800
This is a slick phishing scam, I have to admit. One thing I noticed though; I printed the various pages of the website out with IE to use as an example and I noticed that the real URL appeared at the bottom of each page as opposed to the bogus one. I thought that was interesting. Has anyone else noticed that this occurs with other phishing sites or is it just unique to this case? Charles Hamby -----Original Message----- From: full-disclosure-admin () lists netsys com [mailto:full-disclosure-admin () lists netsys com] On Behalf Of Eric LeBlanc Sent: Tuesday, June 15, 2004 9:59 AM To: full-disclosure () lists netsys com Subject: [SPAM] - Re: [Full-disclosure] US Bank scam - Email found in subject On Tue, 15 Jun 2004, David Lederman wrote:
This is the best phishing scam I've seen yet: http://www.bis1bp.com/a12/index.html I have Windows Server 2003 fully patched and this works. The program
fakes an address bar so this
would pass through most people's safety check, after all the address
bar clearly has the correct
address. There are bugs in the code, for example, all your Internet Explorer
windows will now have this
address, but again for most people would only have one window open.
If you have google's toolbar or something similar, it will overwrite this toolbar and not the address bar. But, I must admit that this thing is ingenious ! E. -- Eric LeBlanc inouk () igt net -------------------------------------------------- UNIX is user friendly. It's just selective about who its friends are. ================================================== _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- US Bank scam David Lederman (Jun 15)
- Re: US Bank scam Eric LeBlanc (Jun 15)
- RE: US Bank scam Scott Dodson (Jun 15)
- RE: US Bank scam Nick FitzGerald (Jun 15)
- <Possible follow-ups>
- Re: US Bank scam Hamby, Charles D. (Jun 15)
- Re: US Bank scam Nick FitzGerald (Jun 15)
- RE: US Bank scam Peter B. Harvey (Information Security) (Jun 15)
- RE: US Bank scam wszumera (Jun 15)