[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Same old phishing link manipulation or new?

To: Kristian Hermansen <khermansen@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Same old phishing link manipulation or new?
From: Valdis.Kletnieks@xxxxxx
Date: Mon, 14 Jun 2004 12:49:27 -0400

On Sun, 13 Jun 2004 22:06:57 EDT, Kristian Hermansen 
<khermansen@xxxxxxxxxxxxxxxxx>  said:
> I recently received a spoofed email from USbank.com, and the link is encoded
> like this to fool the browser:
> 
> http://www.usbank.com%01@xxxxxxxxxxxxxx/www/us/verify.html
> 
> Is this the same old trick or something new?

Same old trick.  Remember that just because *we* have known about it
for months and months doesn't matter.  The people most likely to fall
for the scam in the first place are the same people who don't have enough
clue to hit windowsupdate.microsoft.com on a regular basis.  As a result,
it still works on enough victims that it's worth trying.

You'll know that it's no longer worth trying when you stop seeing spam
that uses it.... ;)

Attachment: pgp00028.pgp
Description: PGP signature

References:
- [Full-Disclosure] Same old phishing link manipulation or new?
  - From: Kristian Hermansen

Prev by Date: [Full-Disclosure] repost: linux kernel local crash seen on slashdot
Next by Date: Re: [Full-Disclosure] FOUND: COELACANTH: Phreak Phishing Expedition
Previous by thread: Re: [Full-Disclosure] Same old phishing link manipulation or new?
Next by thread: [Full-Disclosure] Multiple Antivirus Scanners DoS attack. [summery]
Index(es):
- Date
- Thread