Sunday, April 2, 2006

Fried Phish & French Phries

Well, I just submitted my first Phishing attack to PIRT (Phishing Incident Reporting and Termination Squad.

The site was being hosted at a US company website, looked like a third-party hosted site. Third party hosted is even worse, since that means that other sites are could be open to whatever attack vector was used.

It was using advanced javascript URL-bar spoofing tricks, stuff I have on a couple of sites in Korea before. It is a paypal phishing tool that is dropped on an open site as a ZIP or a RAR, then unzipped - bang - up and going. This allows for very fast delivery and fast phishing.

Report phishing sites to the PIRT via their Fried Phish website.

No comments:

Post a Comment