A New Way to Phish Could Hook Even Wary Users



+ Add a Comment

I Jedi

They just keep finding new and more innovative ways of taking my money and making a run for it. I, too, practice safe web browsing and contiously run anti-spyware, virus, etc, and I've still gotten hit before. 



I'm torn on this one. On the one hand this is useful info. On the other hand this is a pretty big pile of FUD.

Trusteer should give the full details. And it should provide a sample exploit like Secunia has been known to do.

The idea behind the example is to log onto a test Web site provided by the security firm so you can see exactly what the behavior is. That way you know what to look for. And you have not risked your system because there is no payload. 




Dammit, if we can't trust expired logins, what can we trust? If it gets much worse, I may have to become Amish. (No, I don't know if I spelled Amish correctly) 


The quick brown fox jumps over the lazy dog.



Do popup blockers prevent this, like Firefox's? Or how about Noscript? As I use both.

 Also, whenever my bank sessions do time out, I don't get a popup. The website logs me out to a session timed out page.If I suddenly started seeing session timed out popups I'd be pretty suspicious and not only not click em, but immediately run a virus and spyware scan.


Good info to know though, for sites that do use popups to inform you when your session timed out



Thank you, these guys are getting slicker all the time.


Bill the clown


Log in to MaximumPC directly or log in using Facebook

Forgot your username or password?
Click here for help.

Login with Facebook
Log in using Facebook to share comments and articles easily with your Facebook feed.