[EMAIL PROTECTED] writes: > Following on the heels of the "very good looking" microsoft security patch > worm, i am now in posession of an even more convincing "Ebay Request" to > reconfirm your credit card number, PayPal account, password, etc. This > appears to be an excellent fake and we can expect many people to be > tricked. > > To see how good it looks, Checkout this image. (It doesn't look like an > image but it is actually a JPG which hides a link to the attacker's > server.) Many people will be fooled. The url is fake (it is just a > picture after all).
Combine it with a QHosts-1 feature and you get your sensitive data even from users looking for the URL displayed in the address field of the browser. Sebastian -- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
