stop-phishing.blogspot.com
Stop-Phishing @ IU: 10.2006
http://stop-phishing.blogspot.com/2006_10_01_archive.html
Stop Phishing @ IU. Airport (in)security for the masses. Bruce Schneier coined the term security theatre. To describe security countermeasures that provide the feeling of security while doing little or nothing actually to improve security. The entire airport/TSA experience is a classic example of this. Passengers are frisked, have their nail clippers confiscated, are required to remove their shoes, their belts, to put their toiletries in quart (but NOT! Using this, you can:. The goal of this is to prove ...
stop-phishing.blogspot.com
Stop-Phishing @ IU: 03.2008
http://stop-phishing.blogspot.com/2008_03_01_archive.html
Stop Phishing @ IU. United States Department of the Treasury. After the last annual calculations of your fiscal activity we have determined that you are eligible to receive a tax refund of $270,25 Please submit the tax refund request and allow us 2-6 business days in order to process it. To access the form for your tax refund, please click here. Service@irs.gov [81.25.50.148]. Clicking on the link sent me to a site that forwarded to another server in Amsterdam:. The site that was hosting this phishing ha...
stop-phishing.blogspot.com
Stop-Phishing @ IU: 09.2006
http://stop-phishing.blogspot.com/2006_09_01_archive.html
Stop Phishing @ IU. Google Public Search service. Note: I had been holding back on this entry, but since this flaw has gone public elsewhere, I suppose it's okay to post again. Http:/ www.google.com/u/gplus. If you go to this website, it claims to give you access to a new Google Plus service. Don't believe it (go ahead and try it though). Google Public Service Search. Has taken advantage of lax filtering of. Link to discovery (and details). Google Public Search services. By Sid Stamm @ 4:58 PM.
stop-phishing.blogspot.com
Stop-Phishing @ IU: Airport (in)security for the masses
http://stop-phishing.blogspot.com/2006/10/airport-insecurity-for-masses.html
Stop Phishing @ IU. Airport (in)security for the masses. Bruce Schneier coined the term security theatre. To describe security countermeasures that provide the feeling of security while doing little or nothing actually to improve security. The entire airport/TSA experience is a classic example of this. Passengers are frisked, have their nail clippers confiscated, are required to remove their shoes, their belts, to put their toiletries in quart (but NOT! Using this, you can:. The goal of this is to prove ...
stop-phishing.blogspot.com
Stop-Phishing @ IU: webapp bummers
http://stop-phishing.blogspot.com/2007/07/webapp-bummers.html
Stop Phishing @ IU. I recently gave a talk at Google. Recently entitled "Drive-By Pharming and other WebSec Bummers." I talk about the previously publicized drive-by pharming. Attack, and also other related web 2.0 issues, giving an overview of what we think the problem boils down to. By Sid Stamm @ 1:33 PM. Comments: Post a Comment. Links to this post:.
stop-phishing.blogspot.com
Stop-Phishing @ IU: 04.2007
http://stop-phishing.blogspot.com/2007_04_01_archive.html
Stop Phishing @ IU. A Deceit-Augmented Man In The Middle Attack Against Bank of America's SiteKey Service. See a video of the phishing attack in action (quicktime .mov, 700k):. Also posted to http:/ paranoia.dubfire.net. We present this demonstration of a "deceit-augmented man in the middle attack" against the SiteKey service used by Bank of America. Attacks are not a new threat - they have been known about for a number of years, and phishers have already used them to target Citibank. How a man in the mi...
stop-phishing.blogspot.com
Stop-Phishing @ IU: Tax Phish
http://stop-phishing.blogspot.com/2008/03/tax-phish.html
Stop Phishing @ IU. United States Department of the Treasury. After the last annual calculations of your fiscal activity we have determined that you are eligible to receive a tax refund of $270,25 Please submit the tax refund request and allow us 2-6 business days in order to process it. To access the form for your tax refund, please click here. Service@irs.gov [81.25.50.148]. Clicking on the link sent me to a site that forwarded to another server in Amsterdam:. The site that was hosting this phishing ha...
stop-phishing.blogspot.com
Stop-Phishing @ IU: 07.2007
http://stop-phishing.blogspot.com/2007_07_01_archive.html
Stop Phishing @ IU. I recently gave a talk at Google. Recently entitled "Drive-By Pharming and other WebSec Bummers." I talk about the previously publicized drive-by pharming. Attack, and also other related web 2.0 issues, giving an overview of what we think the problem boils down to. By Sid Stamm @ 1:33 PM. Links to this post.
stop-phishing.blogspot.com
Stop-Phishing @ IU: 11.2006
http://stop-phishing.blogspot.com/2006_11_01_archive.html
Stop Phishing @ IU. A reader of our blog. Recently informed me that Chase is requiring its customers to "update their profiles." Shady enough, this was the first thing he saw when logging into his account yesterday. Isn't this a common phishing ploy? Please come update your account info." This clearly makes recognizing phishers hard, since now they're not the only one directly asking for your private info. Link to a screengrab of the site. By Sid Stamm @ 5:29 PM. Links to this post. This week the APWG.
stop-phishing.blogspot.com
Stop-Phishing @ IU: apwg eCrime summit
http://stop-phishing.blogspot.com/2006/11/apwg-ecrime-summit.html
Stop Phishing @ IU. This week the APWG. Held an eCrime Research Summit. I've taken a few notes from some of the talks I've seen, and posted them on my personal blog. Day 2, law and enforcement (17 Nov 2006 12:00). Sven Karge (16 Nov 2006 13:59). John Brozycki (16 Nov 2006 13:44). Brad Keller(16 Nov 2006 10:12). By Sid Stamm @ 12:05 PM. Mail order brides russian. Links to this post:.