Re: [Owasp-delhi] Fwd: PNB phishing page.

Ashish Khanna Thu, 14 Jan 2010 00:01:43 -0800

Another Nice one guys pnbindia.com which is unsafe as per Norton security http://safeweb.norton.com/report/show?url=""> has pnb logo coming onto the browser addressbar making it more authentic and pnbindia.in which is supposed to be more safer doesn’t even have the same http://safeweb.norton.com/report/show?url=""> weird!!!!

Ashish Khanna

From: [email protected] [mailto:[email protected]] On Behalf Of Soi, Dhruv
Sent: 13 January 2010 16:29
To: 'atul jha'
Cc: [email protected]
Subject: Re: [Owasp-delhi] Fwd: PNB phishing page.

Oops! PNB officials are already on the list. Though I forwarded to him directly with Cc to GM IT. Some action is hopeful.

By the way, The phishing form redirects to pnbindia.com. So it not only collects the credit card numbers but also compromise the victim through drive-by-download method which seems to be taken off at the moment.

From: atul jha [mailto:[email protected]]
Sent: 13 January 2010 16:20
To: [email protected]
Cc: [email protected]
Subject: Re: [Owasp-delhi] Fwd: PNB phishing page.

I wonder how come a government/nationalized bank can have such poor security for online transaction.I was unable to see the pages correctly on firefox as that is the only browser i have apart from this the portal has no secure signing authority like verisign or thawte.

This is simply unacceptable.Lots of poor peoples account are unsafe.We know rthe trick so we are safe what about others.
The worst part is one of the contct-us page mail id bounces back.
#shit #poor #irony

On Wed, Jan 13, 2010 at 4:10 PM, Soi, Dhruv <[email protected]> wrote:

Wow! Just to add further:

Watch for:

pnbindia.com

pnbindia.in

Can you see the difference? Dig and whois can be helpful and this link can add more: http://safeweb.norton.com/report/show?url="">. Though, Infected links seem to have removed.

I have got some good links in PNB, let me help them out with this.

Phish the Fish! ;-)

From: [email protected] [mailto:[email protected]] On Behalf Of atul jha
Sent: 13 January 2010 10:22
To: [email protected]
Subject: [Owasp-delhi] Fwd: PNB phishing page.

Morning all,
Well moments ago saw this mail and its not marked as spam a crafted e-mail.
I tried my best to contact PNB guys but unfortunately there was no link for phishing report on website of PNB.
I am sure more than 100 customers must have been fooled so far submitting there credit card PIN.
I have attached screenshot alongwith.

---------- Forwarded message ----------
From: Punjab National Bank <[email protected]>
Date: 2010/1/13
Subject: Get your Refund Amount
To: [email protected]

You have get a Tax Refund on your Punjab National Bank MasterCard.
Complete the formular, and get your Refund Tax.

(Your Refund Amount Is 3200 rupees)

Complete Formular bellow :
http://lindsaysunley.eu/pnbindia/online.html

Copyright Š 2010 - Punjab National Bank. All rights reserved.

regards,

atul jha

--
www.atuljha.com
9953555890 <-- is my new number.
"Beer is proof that God loves us and wants us to be happy. " - Benjamin Franklin

--
www.atuljha.com
9953555890 <-- is my new number.
"Beer is proof that God loves us and wants us to be happy. " - Benjamin Franklin

IMPORTANT NOTICE
This e-mail, including any attachments contains information which is confidential and/or privileged. If you are not the intended recipient, please notify us immediately and destroy this e-mail without taking any copies or showing it to anyone. Unauthorised use of this e-mail is prohibited. We take no responsibility for misdirection, corruption or unauthorised use of e-mail communications, or for any damage that may be caused as a result of transmitting or receiving an e-mail communication.

_______________________________________________
Owasp-delhi mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-delhi

Re: [Owasp-delhi] Fwd: PNB phishing page.

Reply via email to