Phishers Build Deceptive Links with DNS Wildcards 245
1sockchuck writes "In the continuing evolution of the phisher, the latest scams are crafting deceptive email links that include a bank's URL, but send victims to a phishing spoof site. The phishers are combining wildcard DNS, URL encoding and redirection services to construct the URLs. Netcraft has examples of emails that presented barclays.co.uk in the URL but sent clicks to a spoofed page at a server in Moscow. A DNS cache poisoning attack over the weekend also highlights the potential use of DNS tricks in 'pharming' (phishing using redirection rather than bait emails)."
Help on the horizon for Windows users! (Score:5, Funny)
That's it (Score:5, Funny)
Who has money any more? (Score:5, Funny)
Re:That's it (Score:5, Funny)
Re:FYI: (Score:2, Funny)
Re:Help on the horizon for Windows users! (Score:5, Funny)
</homestar>
Re:Help on the horizon for Windows users! (Score:1, Funny)
In other news.. (Score:4, Funny)
I can sell you attractive hand made table of domain to IP mappings for the top 25 sites on the internet for just $5!
Re:dns? links? (Score:4, Funny)
Re:Paypal got it right (Score:3, Funny)
Re:In other news.. (Score:2, Funny)
Oh shoot, I hope IPv6 doesn't catch on soon, or I'll get carpal tunnel for sure.
Re:Phishing? Pharming? (Score:5, Funny)
Re:Its very simple... (Score:3, Funny)
I wonder how that affects https connection. Even if they steal the DNS, they shouldn't be able to get their certificate.
Well, verisign.com could be poisoned, too, you know...
Re:Just don't read emails from the bank-Digital Fa (Score:5, Funny)
Check the evil bit [faqs.org] in the TCP/IP header.
Slashdotting "name" change? (Score:2, Funny)
Re:Just don't read emails from the bank (Score:3, Funny)