English
Romana
Home
|
Contact
|
Feedback
SEARCH
Security Development
Company
Careers
Press Center
Virus Info
Security News
Virus Glossary
About Malware
VDF History
External Links
Solutions
Products
Alerts Panel
Support
Register
Paypal 175 - Phishing
See also
Summary
Full description
Target:
Paypal
Date discovered:
30/09/2007
General
The goal is to get the following information:
• Credit card
• Personal data
• Paypal account
Phishing method:
• 'Click here' link
Email Details
From:
secureinfo@account-updates.com
Subject:
Please Update Your Account Records
Visible link:
click here
Actual link:
http://207.252.75.48:8099/bizpartner.paypal.com/cgi-bin/
IP address:
207.252.75.48
The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
• The Body of the email contains HTML content.
This screenshot is how the phishing email looks like:
Page Details
Visible URL:
http://207.252.75.48:8099/bizpartner.paypal.com/cgi-bin/webscrcmd.php
Actual URL:
http://207.252.75.48:8099/bizpartner.paypal.com/cgi-bin/webscrcmd.php
IP address:
207.252.75.48
The phishing page will look like the following:
See a brief description
here
.
Inserted by Dominik Auerbach on Mon, 01 Oct 2007 17:34 (GMT+1)
« Back
Print this page
Security News
Avira protects from PDF Exploit
Infected Firefox Add-on: Avira protects
HEUR/HTML.Malware
HTML/Infected.WebPage.Gen
HTML/Crypted.Gen
TR/Rootkit.Gen
W32/Sality.Y
Worm/Sohaned.BP
TR/Drop.Muha.462027
TR/Silentbanker.BA
TR/Dldr.Zitan.A
EXP/Pidief.axa
Download here
© 2010 Avira Soft SRL
Privacy
|
Site terms
|
Copyright
|
Site map
Print this page
