Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

RE: US Bank scam
From: wszumera () borgwarner com
Date: Wed, 16 Jun 2004 00:37:54 -0400



-----Original Message-----
From: David Lederman [mailto:delphi4pro () yahoo com]
Sent: Tuesday, June 15, 2004 12:30 PM
To: full-disclosure () lists netsys com
Subject: [Full-disclosure] US Bank scam


This is the best phishing scam I've seen yet:
http://www.bis1bp.com/a12/index.html

I have Windows Server 2003 fully patched and this works. The 
program fakes an address bar so this
would pass through most people's safety check, after all the 
address bar clearly has the correct
address. 

There are bugs in the code, for example, all your Internet 
Explorer windows will now have this
address, but again for most people would only have one window open.



If you drag the explorer window around a bit, the address bar lags behind.
W 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]