Sunday, January 21, 2007

Another Myspace Phish with HTMLCrypt

Hacked accounts are used to send bulletins and leave spam comments on friend's profiles.

In this phishing example, you see a bulletin that claims to point to a Myspace video of a drunk girl at a party. Guys think "Girl Gone Wild" and they click the link.











Following the link, takes you to vidspace9.com








Which then pushes you to a AOL member page that is hosting the Myspace phishing site.











I wonder if the AOL account was hacked as well. The Phishers must know that AOL will most likely kill the site very quickly, once reported and maybe even the account......however, it might be a free limited time trial account as well.

Looking at the source of the phishing site, shows something more interesting. The phishers are using a beta version of HTMLCrypt to help protect their phishing code.




I reported this site to PIRT this morning.

No comments:

Post a Comment