XXS Attack and PayPal Phishing Site Dog Consumers
by FaceTime Security Labs
[Source CastleCops] Paul Laudanski reports there is a new PayPal phishing site that is crafty and cunning in attempting to hide its true address from the surfer. Unsuspecting users might fall for this devious trickery. Unfortunately, Google is vulnerable to a XSS attack to which they are aware and are working to resolve. It is this XSS attack that the phishing site uses to begin its lure and deception of the surfer. To view a 1024x768 flash film of the whole visitation is is available at the link below. It shows the whole email delivery, thru the Google exploit, and the execution of the scam sites cunning. To see the exploit in action visit CasteCops.com
Unless otherwise
noted this article is Copyright © 2010
by FaceTime Communications, Inc. This article may not be resold,
reprinted, or redistributed for compensation of any kind without
prior written permission from FaceTime
Communications, Inc. For reprint or media inquires please contact
us with the phrase "Spyware
Guide Articles" in the subject line and we will by happy
to assist you. Links to this article from other websites are appreciated
and encouraged. Users are also encouraged to utilize our RSS
system to provide unique content and extracts for their site.
Read other articles (back to
full list)
|
