Identifying (spoofed) Web sites (IE)
Results 1 to 5 of 5

Thread: Identifying (spoofed) Web sites (IE)

  1. #1
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    New Jersey
    Posts
    718

    Identifying (spoofed) Web sites (IE)

    I noticed that fake links and website spoofing are on the rise lately. These types of threats are in my opinion, the most dangerous as these attacks tend to retrieve the most amount of personal information possible in one easy attack. Usually the standard is some kind of 'your account will be closed immediately if you don't fill out this form...." yadda yadda. I feel bad for people who are just trying to do the right thing and 3 months later get a credit card statement in the mail accusing them of purchasing 12 round trip tickets to the North Pole. In any event, I found this link on M$ database that provides some javascript in order to test validity of the web site's address. There are other helpful things on this site as well. Check it out, let me know what you think.

    http://support.microsoft.com/default...#91;ln];833786

    Note - I believe this is only designed to be used in conjunction with Internet Explorer.
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  2. #2
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    I believe this is only designed to be used in conjunction with Internet Explorer.

    Yup. That's because MSIE is the browser that is affected by it the most. URL Obfuscation is what the term is and what we're seeing a rise on is "phishing" using that obfuscation. Making URLs "neat" and "clean" isn't always the best.

    In addition, MS needs to have an option to remove HTML from incoming (not just outbound) emails and have it set as default rather than having HTML emails set as default.

    Interesting in that link I found another article and it stated the following:

    To turn on the Read all standard mail in plain text option, follow these steps:

    1. Start Outlook 2003.
    2. On the Tools menu, click Options.
    3. On the Preferences tab, in the E-mail area, click E-mail Options.
    4. In the Message handling area, click to select the Read all standard mail in plain text check box.

    Note By default, the Read all standard mail in plain text option is turned off.
    This is, of course, for Outlook 2003 ONLY. Although IIRC the default of HTML email is turn on for all Outlooks.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  3. #3
    Yes, that's my CC number! 576869746568617's Avatar
    Join Date
    Dec 2003
    Location
    Earth
    Posts
    397
    That's the way the new breed phish. It's genius (evil genus, but genius nonetheless)
    Windows 9x: n. A collection of 32 bit extensions and a graphical shell for a 16 bit patch to an 8 bit operating system originally coded for a 4 bit microprocessor. Written by a 2 bit company that can\'t stand 1 bit of competition.


  4. #4
    Macht Nicht Aus moxnix's Avatar
    Join Date
    May 2002
    Location
    Huson Mt.
    Posts
    1,752
    Actually this info works with Mozilla Firebird also. Good find.
    \"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
    Author Unknown

  5. #5
    Banned
    Join Date
    Jun 2002
    Posts
    289
    yes.. and opera will give you a warning .. if you use that browser..

    heh.. one of ms's fixes is to type in the url.. ok.. uh huh..

    it's a pain to do this, but what I'd suggest for folks who might suspect a link is..

    right click, copy shortcut, paste into new browser url window.. you'll be able to see the odd characters inbetween the two addresses..


    edit 2: I put up a small site the other day and I'm trying to get Ted to help me with it.
    If I can convince him that it's worth the effort, that is..

    it's not complete (only two pages so far).. and it's really my first serious venture into creating a site to help out newbies to the net.. If you want to check it out and pm me comments/suggestions.. (or if you think you want to help by putting in content...)

    it's here.. http://www.freepgs.com/jen_ted/

    heh.. it's best viewed in IE.. LOL.. I have a neat little clock on page two but it won't show up in either opera or mozilla for me.. but these two browsers haven't been updated by me, so maybe it does work.. let me know if it does or doesn't, thanks..

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •