Danger - Phishing ahead > One way to be more careful

One way to be more careful

The status bar is my best friend.
--
"The Stars Win The Stanley Cup, The Stars Win The Stanley Cup", Ralph Strangis.

said by wheelzoff:

---

The status bar is my best friend.

---

said by justin:

---

said by wheelzoff:

---

The status bar is my best friend.

---

How does your status bar look on

»i.dslr.net/symantec/worse2.html

then?

---

reply to justin

said by justin:

---

said by wheelzoff:

---

The status bar is my best friend.

---

How does your status bar look on

»i.dslr.net/symantec/worse2.html

then?

---

reply to 2kmaro
There is an onMouseOver that sets the status bar if javascript is enabled (as it is, on 99.9999% of the worlds MSIE browsers). Do you have javascript disabled for 'untrusted' sites or something? (i.dslr.net)?

reply to wheelzoff

reply to 2kmaro

said by 2kmaro:

---

said by justin:

---

said by wheelzoff:

---

The status bar is my best friend.

---

How does your status bar look on

»i.dslr.net/symantec/worse2.html

then?

---

Status bar is hosed with bogus address, but the address bar shows the url you posted (as I'm sure you expected it to). Another way to detect the bogus link in either an email or on a site page is to right-click, choose "Copy Shortcut" and paste into the address bar - the entire address will appear as opposed to just the bogus portion. But as noted in all of this discussion: the targets for this kind of fraud are probably not going to do anything other than click the links. It will be interesting to see how long it takes to come up with a fix to this one and get it on the street.

I suppose the one advantage to using IE is that as each hole is found the word does get around pretty well - whereas if the same type problem(s) were in another less used browser, the discovered exploits might not get as much publicity. I think this attitude is called sour grapes? For me reality says that the company I work for will continue to use IE as their browser and Outlook as their email client. For the moment I simply put out the word not to trust ANY link sent to them or that they just "stumble upon" on some website they're unsure of, recommending they use the right-click/copy shortcut method to double-check them.

Thanks for writing up the story - as you said, the low key on this story might have left the exploit exploitable against me much longer!

---

reply to justin

reply to novaflare

said by novaflare:

---

well so far its going on about 5 years this is nothing new this trick is what some satire sites use to use to make their funny news stories look real

---

reply to 2kmaro

said by 2kmaro:

---

Scripting disabled on untrusted sites - security for those is set to High to match my paranoia of M$ products. Screen shot to show difference between address bar and status bar displays.

---

reply to novaflare

said by novaflare:

---

well so far its going on about 5 years this is nothing new this trick is what some satire sites use to use to make their funny news stories look real

---

reply to cmhbob

said by cmhbob:

---

In IE, make sure "Show friendly URLs" is not checked. Then just watch your status bar to see where you're really going.

---

reply to justin
Well it seems to show up in my status bar, and if i right click the properties it shows the true url. The address bar is not your friend.