Why phish myspace?
August 4, 2006
Bear with my geek for a moment if you can stomach it, I just found a soapbox and I’m dying to use it.
First they get your username and password for myspace. Then they start spamming all of us with these ridiculous bulletins. We click on them because we are your friends and we trust you. They, the spammers, do that to get our email addresses. To hock their wares. Basically because there probably isn’t much, if anything, in the way of anti-spam on the myspace servers. Because maybe if they get your email address and they know that your friend didn’t notice that the URL didn’t say myspace.com verbatim when it prompted them with, “oops you must be logged in,” you might not notice if they sent you an email claiming to be from your bank or mobile phone provider or who knows what these days. Even if you are really good and the URL seems to be on the right site, someone could being pulling strings with that site and URL to dupe you.
After researching a bit, the flash worm may not be the cause of the recent wave of bulletin spam, only a symptom of bad security measures and clever social engineering schemes. Hard to say. If the propaganda site pull the “oops” trick who knows how many people doofed and figured myspace had hicupped and that was why the login prompt came up unexpectedly.
So please my friends. Be careful and observant. If you get prompted to login right after clicking on a link in the bulletin stop and think about the fact that you had to be logged in to see the bulletin in the first place. If you get an email that you aren’t expecting don’t click on the links. If you do get clicking, look at that address bar very carefully before you ever enter a username and password on any site.
Google phishing…
March 22, 2006
Well it isn’t the Google phish I predicted, but I am seeing a lot of phishers use Google to perform redirects these days. I think the idea is to try and elude detection by content filters that aren’t smart enough to check for redirects in the URLs. Sure, we know that eventually the browser will issue a GET for the actual URL and a web filter could stop it, but isn’t it better if an email filter knows better than to get lulled into a false sense of security upon initially seeing the almighty Google domain.
Reputation Filtering Ahoy!
March 11, 2006
Alas, I wish it my company had offered this first. I like the idea that it works by transmitting very little information, but the approach is somewhat limited if you ask me, since it sounds like a basic RBL list, which would ideally be employed at the gateway of a network. Hearing Outlook and Lotus kind of screams corporate to me, and any good mail admin should be using a layered approach that includes connection management, analysis for spammy language, and something that protects against any of the nasty spam URLs that might slip through and into an inbox.
The tool will become a lot more powerful when it is hooked into web based email, since a services such as Hotmail or Gmail have such a large user base and it probably is difficult to justify the use of extensive filtering by IP alone.
I predict a google phish
February 11, 2006
So, this whole “Search Across Computers” thing. It disturbs me. I’d feel more comfortable with a hole in my home firewall allowing instant access, hello Remote Desktop, than knowing that my favorite search engine is holding on to my files. Eeegad. What if Google started grabbing images off our hard drives? I know the idea is that nothing short of legal action would get them to release our private information, and I know that they are fighting the whole silly, give us search records so we can fight child porn. Uh, yeah, that will work. Little do they know we can all accidentally stumble across child porn on the web. I’m mortified by some of the things that I find on the Internet in the course of research.
Anyways…
The Kaspersky Lab has predicted that hackers will try to gain access to Google accounts to penetrate the wealth of information that this new “feature” will provide access to. I’m going to keep my eye out for more Google phishing.
Lord knows it wouldn’t be the first time someone tried…
