A phishing attempt to trap customers of Barclays Bank that's just arrived contains a <!--htdig_noindex--> section in the html part of the mail, specifically the part that includes the rogue website address.
I wonder if the noindex section would have been part of Barclays' standard format that the phishers have copied (big win for htdig there!) or if the phishers are using it, or even if an organisation like the Anti-Phishing Working Group use it and the phishers are trying to confuse them. Just a bit of idle curiousity really. Mike -- Mike Causer Email - mailto:[EMAIL PROTECTED] GPG KeyID 1C2DDA07 WWW - http://www.mikecauser.com Flood the fen again! - Wicken Fen enlargement - http://www.wicken.org.uk ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 _______________________________________________ ht://Dig general mailing list: <[email protected]> ht://Dig FAQ: http://htdig.sourceforge.net/FAQ.html List information (subscribe/unsubscribe, etc.) https://lists.sourceforge.net/lists/listinfo/htdig-general
