[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PayPal Phishing Site Exploits Google XSS Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx, <vuln@xxxxxxxxxxx>, <webappsec@xxxxxxxxxxxxxxxxx>
Subject: PayPal Phishing Site Exploits Google XSS Vulnerability
From: Paul Laudanski <zx@xxxxxxxxxxxxxx>
Date: Wed, 11 Jan 2006 00:51:44 -0500 (EST)

There is a new PayPal phishing site that is crafty and cunning in
attempting to hide its true address from the surfer. Unsuspecting users
might fall for this devious trickery. It is thru a Google XSS attack that
the phishing site uses to begin its lure and deception of the surfer. Read
full details and watch the entire captured video of this scam here:

http://castlecops.com/a6460-PayPal_Phishing_Site_Exploits_Google_XSS_Vulnerability.html

( short: http://castlecops.com/article-6460-nested-0-0.html )

-- 
Paul Laudanski, Microsoft MVP Windows-Security
[de] http://de.castlecops.com
[en] http://castlecops.com
[wiki] http://wiki.castlecops.com
[family] http://cuddlesnkisses.com

Prev by Date: FreeBSD Security Advisory FreeBSD-SA-06:04.ipfw
Next by Date: [eVuln] MyPhPim Multiple SQL Injection and XSS Vulnerabilities
Previous by thread: FreeBSD Security Advisory FreeBSD-SA-06:04.ipfw
Next by thread: [eVuln] MyPhPim Multiple SQL Injection and XSS Vulnerabilities
Index(es):
- Date
- Thread