Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Amazon phishing scam on Yahoo servers

from [Geoff Vass] Network Security [Permanent Link]
Subject: RE: Amazon phishing scam on Yahoo servers
Date: Wed, 22 Feb 2006 17:32:13 +1030 
Other domains used for phishing I have seen are paypal-unlocking.net,
secure.commonwealth-banking.com and
citibusinessonline.da-us.citybizcorp.com.

Surely someone, somewhere, has to take some responsibility for allowing
domains to be created which are clearly and obviously bogus. Who could
possibly have a reason to register paypal-unlocking.net?

It's also interesting to "Google" the names of the people registering
some of these domains, I have seen a few who were famous for one reason
or another. I wonder if it's possible to register a domain with the name
George W Bush or F. Castro..

Cheers
Geoff Vass

-----Original Message-----
From: Paul Laudanski [mailto:zx@castlecops.com] 
Sent: Tuesday, 21 February 2006 18:11
To: bugtraq@securityfocus.com
Subject: Amazon phishing scam on Yahoo servers


We just got some emails for amazon phishing scams.  Turns out the scam 
domain was registered just today (same day).  Internic and others aren't

reporting it, but Melbourne IT does.  Phishing site resides on Yahoo's 
servers, but their Abuse department closed at 5pm.  A full 6 or so hours

to run before they open back up.


Assessment:
http://castlecops.com/a6531-Amazon_phishing_scam_on_Yahoo_servers.html

-- 
Paul Laudanski, Microsoft MVP Windows-Security
[de] http://de.castlecops.com
[en] http://castlecops.com
[wiki] http://wiki.castlecops.com
[family] http://cuddlesnkisses.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: H&R Block contact, Fixer
Next by Date:  Re: Amazon phishing scam on Yahoo servers, Paul Laudanski
Previous by Thread:  Re: Amazon phishing scam on Yahoo servers, Paul Laudanski
Next by Thread:  RE: Amazon phishing scam on Yahoo servers, Paul Laudanski
Indexes:  [Date] [Thread] [Top] [All Lists]