English
Romana
Home
|
Contact
|
Feedback
SEARCH
Security Development
Company
Careers
Press Center
Virus Info
Security News
Virus Glossary
About Malware
VDF History
External Links
Solutions
Products
Alerts Panel
Support
Register
Paypal 171 - Phishing
See also
Summary
Full description
Target:
Paypal
Date discovered:
30/08/2007
General
The goal is to get the following information:
• Credit card
• Personal data
• Paypal account
Phishing methods:
• URL link
• 'text' link
Email Details
From:
accounts@paypal.us
Subject:
Notification from Billing Department
Visible link:
https://www.paypal.com/us/cgi-bin/webscr?cmd=_login-run
Actual link:
http://www.dforce.sk/sitemap/cgi-bin/webscrcmd=_login-run/update.php
IP address:
62.176.161.22
The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
• The Body of the email contains HTML content.
This screenshot is how the phishing email looks like:
Page Details
Visible URL:
http://www.dforce.sk/sitemap/cgi-bin/webscrcmd=_login-run/update.php
Actual URL:
http://www.dforce.sk/sitemap/cgi-bin/webscrcmd=_login-run/update.php
IP address:
62.176.161.22
The phishing page will look like the following:
See a brief description
here
.
Inserted by Dominik Auerbach on Thu, 30 Aug 2007 19:59 (GMT+1)
« Back
Print this page
Latest News
Avira survey shows 1 in 3 people think all websites pose security threat
Avira warns of Windows vulnerability
HEUR/HTML.Malware
TR/Crypt.XPACK.Gen2
W32/Sality.Y
Java/Agent.M.1
HTML/Crypted.Gen
TR/Renos.AB.4
TR/Renos.AT
TR/Fakealert.MA.591
TR/Agent.321536
TR/Agent2.loa
Download here
© 2010 Avira Soft SRL
Privacy
|
Site terms
|
Copyright
|
Site map
Print this page
