Phishing & BotNets
Hi all Nov 29 2005 05:12PM
Lance James (phishing securescience net)
This came in on the wire -
The problem url is:

http://www.govbenefits.gov/govbenefits/externalLink.jhtml?url=h%74t%70:%
2F%2F%77%77%77%2Eporterfam%2E%6F%72%67%2F2005%2F%3F_cmd=/cgibin/2005/tre
fund/id=96596,00

http://www.porterfam.org/2005/?_cmd=/cgibin/2005/trefund/id=96596,00

It's accompanied with an email from the "IRS" saying there is a refund.
Notice the arbitrary redirect technique. Cross-User attacks are going to
start coming out of the woodwork very soon and creating "misplaced trust".

--
Best Regards,
Lance James
Secure Science Corporation
www.securescience.net
Author of 'Phishing Exposed'
http://www.securescience.net/amazon/
Find out how malware is affecting your company: Get a DIA account today!
https://slam.securescience.com/signup.cgi - it's free!

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus