this note is for anyone using aol...

i'm sure everyone remembers back to the "how to hack hotmail" posts.... well someone posted a possible way (making a fake hotmail login page and mailing the link...) you know the drill and if you don't i am sure you can figure it out. well anyway, to get to the point, someone has adapted it to aol. basically what they do is instant message you a link, the link takes you to a fake log in page for aol. it looks like when you get logged out of aol.com. this then logs your aol user name and password. i have heard from people that this 1337 HaXoR uses many screennames (usually free 1 month trials, or people's accounts he has previously stolen.) aol is currently trying to correct this, but is stumped... just thought i would give those of you with aol a heads up

Thats way too easy.....gawd aol pisses me off........fishing is the oldest trick in the book....but it still works i can see. WARNING AOL USERS Dissconnect your pc, put it in the box and go back to thestore.

i agree... fishing is always a viable trick, but you think people would learn not to fall for that. apparently, the name of the html page was fakelogin.html, that's how someone noticed it and reported it.

good info lord_darkside_x.

Eventually there will be ways to compromise everything out there. I hope it is not too soon.

Fishing is old and lame but it's widely used becouse it works. You'd think people would learn after awhile. :(

Never fails though, the majority of my virused/hacked systems that come into the shop are AOL users. They leave with a different ISP, security and training. :D

My girlfriend and I use AOL version 7.0 we get them IM's all the time espically when you enter a chat room they pop up like crazy... good looking out

I have seen site that look like the AOL login screen to try to get ur name/password long befor this. Most people that use AOL don't know better to do this so itsa good target. oh well they will learn

I have a question for you guy's where the hell have you been this kind of shit has been going on since 1996 hello, please keep all of us informed on the 1996 AOL promblems. Just keep on bashing on AOL this is some old ass news can you pllease find something up to date

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=219772#post468317) by Mr.Dos
I have a question for you guy's where the hell have you been this kind of shit has been going on since 1996 hello, please keep all of us informed on the 1996 AOL promblems. Just keep on bashing on AOL this is some old ass news can you pllease find something up to date

I have a question for you. Since when are dated exploits not worth mentioning? You think everyone that comes to AO knows all the tricks? Not hardly. It's not new to you or others maybe, but it is new for those who just got into security and know nothing. Remember when you were at that point? Yeah...thought so.

And check your spelling. Run-on sentences, misspelled words, lack of punction and incorrect contractions don't make for a 'scathing post'...

HEY! Who set the flame bit to 1? It wasn't me.....

Thats way too easy.....gawd aol pisses me off........fishing is the oldest trick in the book....but it still works i can see. WARNING AOL USERS Dissconnect your pc, put it in the box and go back to thestore.

...and buy an IMac instead, which is a computer especially built for idi... hm... aol users.

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=219772#post468317) by Mr.Dos
I have a question for you guy's where the hell have you been this kind of shit has been going on since 1996 hello, please keep all of us informed on the 1996 AOL promblems. Just keep on bashing on AOL this is some old ass news can you pllease find something up to date


another note..... i am aware that this exploit has been going on since 96, but i was informing people of a single person who is doing it more frquently now. virus's have been around forever, but when a new one comes out, or someone introduces a variant of one, or when someone starts sending it to people, we like to be notified. this is the same instance. yes the exploit existed and people have been using it for some time, but this is a current string of its use. a better example to illustrate my point.... there have always been murders and serial killers. we know they exist. so if there is a new one in your town, would you rather not be told, cause you know that it exists? i was just pointing out that there is someone currently doing it. so i guess it is up-to-date... since this a new person currently in the act of stealling aol accounts...

exactly korpdeath, i thought there was no need to flame as well. (esp since i stand against it)

have fun aol is"t good.

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=219772#post468317) by Mr.Dos
I have a question for you guy's where the hell have you been this kind of shit has been going on since 1996 hello, please keep all of us informed on the 1996 AOL promblems. Just keep on bashing on AOL this is some old ass news can you pllease find something up to date

MR. Dos, to most of us these are old, outdated and very tired exploits. What makes an exploit succesful? Lack of knowledge. I explain to my new clients what to watch for and encourage their phone calls so they don't get hooked by something this stupid and obvious. You must remember that not everyone here is responsible for the security of a lone box connecting to the internet, most of us have a host of endusers either in a corporate or home environment and we can't "forget" about the old stuff. Just like history, exploits repeat themselvs and we must keep on top of everything that could possibly comprimise our endusers regardless of how "lame" they may sound to you.

apparently, the name of the html page was fakelogin.html
the stupidity of some people never fails to amaze me :rolleyes:

v_Ln

Its is good to mention old exploites. Also its true that virus have been around for pretty much for ever but they keep changing its not like 5 yrs from now people will be saying watch out for nimba virus well.... not inless it starts going around again...damnit alright that was a bad example... any way what I'm trying to say is that hummm... well that AOL xploite isn't really a exploute all it is basicly is if I made a site and told people to put in there s/n password they would get a cool e-mail. Its more of a scam that anything...

thanx for the info

I may be setting myself up here but.......Several years ago when I got my first computer, I fell for a scam very similar to this one, also on AOL. I got an email, seemingly from AOL, that said there was a problem with my billing info, please click on this site, and we will take care of it for you....
Well I didn't want to lose my account with them (at that point a chat room addict!!) and so I clicked, and very happily re-sent my credit card number, and exp date, and all sorts of stuff they "needed." Well....I think you can see where this is going...lol
Fool me once--shame on you. Fool me twice--shame on me!

Well at least you learned from your mistake as long as u never let something like that happen to u again, the shame of that incident will fade with time.

That "trick" has been around for the past few years .... the latest I have seen is a message that says "You have Recieved an AOL InstaKiss!" and you click and it sends you to that "AOL Anywhere SignOn" screen and you enter your info and boom, it emails them...

there's a new one born every minute.