This is a slick phishing scam, I have to admit. One thing I noticed though; I printed the various pages of the website out with IE to use as an example and I noticed that the real URL appeared at the bottom of each page as opposed to the bogus one. I thought that was interesting. Has anyone else noticed that this occurs with other phishing sites or is it just unique to this case?
Charles Hamby -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric LeBlanc Sent: Tuesday, June 15, 2004 9:59 AM To: [EMAIL PROTECTED] Subject: [SPAM] - Re: [Full-Disclosure] US Bank scam - Email found in subject On Tue, 15 Jun 2004, David Lederman wrote: > This is the best phishing scam I've seen yet: > http://www.bis1bp.com/a12/index.html > > I have Windows Server 2003 fully patched and this works. The program fakes an address bar so this > would pass through most people's safety check, after all the address bar clearly has the correct > address. > > There are bugs in the code, for example, all your Internet Explorer windows will now have this > address, but again for most people would only have one window open. > If you have google's toolbar or something similar, it will overwrite this toolbar and not the address bar. But, I must admit that this thing is ingenious ! E. -- Eric LeBlanc [EMAIL PROTECTED] -------------------------------------------------- UNIX is user friendly. It's just selective about who its friends are. ================================================== _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
