Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow

From: Jasper Bryant-Greene <jasper () album co nz>
Date: Fri, 31 Mar 2006 20:11:25 +1200
Marcos Agüero wrote:

Michal Zalewski escribió:

On Fri, 31 Mar 2006 michaelslists () gmail com wrote:


If the website then presents you with the "Logon failed" page, you are
possibly on a legitimate website, so you may proceed with logging in
using your correct credentials. If it gets you right through - it is
definitely a phishing attempt.

Note to self: design my next phishing website to always display "logon
failed".

Just as most of the phishing sites already do.
Really? I thought they somehow magically knew enough about you to sign you in properly and display all the correct details ;)
Seriously though, it wouldn't be that hard to forward the POST on to the real bank website, would it? 

--
Jasper Bryant-Greene
General Manager
Album Limited

http://www.album.co.nz/     0800 4 ALBUM
jasper () album co nz          021 708 334

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: