Wednesday, November 8, 2006

Myspace Phish - Currently Active

I noticed a strange message from a friend on myspace, so I decided to look into it. It has all the classic signs of a phish.

As you can see from the picture below, the link redirects you to a third-party site.







Once this link is clicked, you are directed to the third party site, which thens loads another page into an IFRAME.









The page loaded into the IFRAME is the real phish attack. As you can see from this screenshot.















The phish is being hosted in China and the DNS name was created 2 days ago.

















No comments:

Post a Comment