Posts: 199
Threads: 102
Joined: Jul 2006
07-20-2006, 03:45 PM
(This post was last modified: 07-20-2006, 05:04 PM by llegent.)
Hello, wonder if anyone come across phising activities on fraudulent sites which are displaying "recognizable" domain names? Beofre this, numerical IP address were use for phishing activities, now it seems that those people are moving toward using domain names in their spoof activities.
As a surfer, it appear less suspicious if a site is displaying a recognizable domain name versus numerical IP address. Well, when we do see numerical IP display in browser, we will definitely be much alert. But what about domain name?? Would you be less alert and not suspicious if you were to reach a site that display a domain in your broswer??
Posts: 943
Threads: 138
Joined: Jun 2006
Yes, but I think that anyone would be. If it weren't for GMail displaying phising warnings, I would probably have given my paypal password out countless times.
IDNs are a major source of phishing scams like this.
Posts: 374
Threads: 35
Joined: Jul 2006
I know one time I almost got tricked by one of those bank schemes because they sent me one that was actually my bank at the time. However I have a long habit of glancing at urls when I hover and I caught it in time.
Posts: 943
Threads: 138
Joined: Jun 2006
Lucky!
But sometimes you can't see any difference because they look exactly the same (like when they mix scripts with the same characters). I think that the Google toolbar displays a notification if this is the case.
Posts: 171
Threads: 9
Joined: Jul 2006
if in doubt, you can always view page source?
Posts: 39
Threads: 7
Joined: Aug 2006
I get notices once in a while that look like they are from pay pal. I reported them right way but it was really convicing.
Posts: 92
Threads: 0
Joined: Aug 2006
I just don't fall in it; since forever, we've been told that no one will ask for password confirmation and all. Plus, if you just look at the status bar of where the links are from and go...you should be fine.
Posts: 105
Threads: 15
Joined: Aug 2006
I have gotten several of those bank notices recently, very real sounding. My trick is to always go to the bank website itself (or paypal). If the problem really exists, then it would be either posted on the webpage or you would get a notice when you try to log in to your own account. So I ignore any links int eh email and go straight to the website.