OT: phishing for fun and ZERO profit

Fairlight fairlite at fairlite.com
Tue Aug 24 18:27:49 PDT 2004 

Oh, this was too good not to share.  :)

I read an article the other day on phishing kits.  Most of you are probably
familiar with the term phishing by now, but for those few that aren't, it
refers to the email that purports to come from reputable (or at least
legal) businesses, contains links to a bogus web site that looks just like
the real one, and asks you to update your membership information so they
can harvest sensitive personal data.  (Hell, I've gotten ones purporting to
be from Citi, and I don't even have a Citi card or account!)

Recently, there has been a trend towards making this kind of nonsense
accessible to those not willing to make the effort to replicate a site.
There are kits being distributed that have a full eBay or PayPal or Yahoo
or whatever, all set up and ready to go, complete with graphics web pages,
layouts, etc.  They include mass-mailing software and the like.  Basically,
it's become phishing for script-kiddies now.

But apparently it hasn't been dumbed down -quite- enough.  I just got one a
minute ago that purported to be from memberupdate at ebay.com, but originated
in the Ukraine and was then routed through France.  

The -truly- funny part--the part that tells me it hasn't been AOL-ified
quite enough yet to be truly hazardous--is that the message was
-completely- blank!  No HTML page.  No text page.  It had only headers,
including a subject that had "Please Read" as the last two words (a warning
bell chimes here at the very sight of these words in a subject).  But
it was a completely blank message.  No multipart anything...no content.
Nothing I could have missed.

That was truly one of the funnier things I've seen today.  Someone was
apparently too stupid to be able to use a -kit- to perpetrate this kind of
activity, when it's probably all laid out nicely and neatly.

Truly amazing.

mark->
-- 
Bring the web-enabling power of OneGate to -your- filePro applications today!

Try the live filePro-based, OneGate-enabled demo at the following URL:
               http://www2.onnik.com/~fairlite/flfssindex.html

More information about the Filepro-list mailing list