 SnowymIRC unix.ro UnderNetPremium
join:2003-04-05
Kailua, HI
kudos:5
 ·RoadRunner Cable
 ·Clearwire Wireless
| reply to aefstoggaflm
Re: Can You Identify Phishing? said by aefstoggaflm:Is there a way to get the right answers, without taking the test again? Rob  posted this in the news
»cache01.ae1.net/8c985935a22567f0···8fcc.jpg |
|
 IllIlIlllIllEliteDataPremium
join:2003-07-06
Lindenhurst, NY
kudos:7 | reply to Dude111
i had no problem answering the questions in less than 5 minutes. |
|
 slash616Premium
join:2002-05-16
Holland, MI | reply to twcx95
said by twcx95 :
10 out of 10. It wasn't hard at all. It would have been even easier if we had some context. That is, how the user arrived at the webpage. That is all not to mention, except for the first question, we never get to see any info regarding the url of the webpage.
I think they were trying to point out that you shouldn't even rely on the URL alone. IIRC, there have been URL encoding/XSS vulnerabilities in the past that even comes from a valid URL, but the arguments passed in the URL allow injection or worse, a retrieval of a third party site. (10/10 btw) |
|
 Link LoggerPremium,MVM
join:2001-03-29
Calgary, AB
kudos:3
·Shaw
| reply to aefstoggaflm
Both of the Amazon sites are fake and I posted the reasons earlier in the discussion.
Blake
--
Vendor: Author of Link Logger which is a traffic analysis and firewall logging tool |
|
| 
Security |
Personally, I think PayPal itself is a scam.
Anyone sending me email with weird stuff, I delete. The Nigerian one has been around forever.
MySpace has made it difficult to check scams since everything starts with a "mslinks..." url. Their ads have all kinds of scams themselves. 
The tip: never login to a site unless you personally typed the URL yourself. I do have a personal page with all my finance links on my computer (a local webpage) so it's done for me.
--
Saving the world keeps me busy. However, I find Earth very primitive from my home planet of Krypton.
-Supergirl |
|
 PeeWeePremium
join:2001-10-21
Madera, CA | reply to Dude111
9/10 |
|
 jabarnutLight Years AwayPremium,MVM
join:2005-01-22
Galaxy M31
kudos:2 | reply to Dude111
I still get a big kick out of the fact that even when you're an amazing "Safety Guru" who can "answer 10 out of 10 questions correctly", and have a "practically clairvoyant knowledge of the Web", that they still follow it up by telling you to not let scammers fool you.
Furthermore, SiteAdvisor can help protect your identity by warning you before you visit a risky site.
All of this amazing protection for the low, low, price of $49.99.
Of course, for someone as knowledgeable as a Safety Guru, the obvious and most logical thing to do would be to get the "3-user family pack" for a mere $19.99.
Heck, not only do you "save" an incredible $30.00, but those poor unsuspecting family members who aren't gifted enough to have that same "clairvoyant knowledge of the Web" that you do, will finally have a wonderful sense of security and piece of mind.
Like I said earlier, there are a lot of different ways to scam people....some are just a lot better at it than others. 
--
I had a life once.....now I have a Computer and a Modem. |
|
|
|
 rolandeCertifiablePremium,Mod
join:2002-05-24
Columbus, OH
Linksys
AT&T Midwest
| reply to russotto
said by russotto:Umm, how are you going to do that? I could probably get a few suckers to install my root CA into their browser, but no one with any security savvy is going to do it. Not difficult at all to do. All you need is a script to execute that drops the file and makes the registry update.
said by russotto:If you can get a trojan in, you don't need a proxy or a root certificate or any such thing. Your trojan can just pull the data out in the clear before encryption or after decryption, and send it wherever you like. Doesn't work that way easily if you need real-time activity recorded. Much easier and incriminating to see the traffic on the wire.
--
Ignorance is temporary...stupidity lasts forever!
»www.thewaystation.com/
»blog.thewaystation.com/ |
|
 Blue2Premium
join:2004-04-14
France
kudos:1 | reply to jabarnut
said by jabarnut:Like I said earlier, there are a lot of different ways to scam people....some are just a lot better at it than others. Well said.
"Yes, as through this world I've wandered
I've seen lots of funny men;
Some will rob you with a six-gun,
And some with a fountain pen."
PRETTY BOY FLOYD (Woody Guthrie, 1939)
Instilling insecurity is big business with a capital "B", and the unsuspecting are just as likely to fall for those licensed scams as they do for phishes. |
|
 MarkMPremium
join:2004-03-22
Saint Peters, MO
kudos:1 | reply to Dude111
YOU ANSWERED 8 OF 10 QUESTIONS CORRECTLY
Rating: Safety Guru
I missed the Bank of America and paypal questions 3 and 6 on their list. Thankfully I do not not use their services. . . |
|
 Dude111An Awesome DudePremium
join:2003-08-04
USA
kudos:10 | reply to Dude111
Congrats on getting 8 right!
Im kinda sad i only got 5  (I thought i was IDing stuff well) |
|
| reply to Dude111
The phishing quiz seems to have disappeared. I wonder why.... I can still access some of the images, but the quiz appears to be vapor. |
|
jabarnutLight Years AwayPremium,MVM
join:2005-01-22
Galaxy M31
kudos:2 | Hmmm.....maybe you downloaded SiteAdvisor and it's blocking it's own quiz? (j/k)
I don't see it in the original link anymore either.
--
I had a life once.....now I have a Computer and a Modem. |
|
Blue2Premium
join:2004-04-14
France
kudos:1 | reply to vircotto
said by vircotto:The phishing quiz seems to have disappeared. I wonder why.... You mean like putting up two fake Amazon sites and two fake Chase sites and asking you to choose which one is the real one?
That sound you hear is them tripping over the tail between their legs as they head for cover. |
|
| reply to vircotto
It does seem to be gone. Wonder why? They still have a page up about the quiz here: »blog.siteadvisor.com/2007/07/phi···in.shtml
but the links on it to the actual quiz just auto-forward to the home page with no explanation.
Kind of strange...... |
|
