«

Yes, the phishers are at it again and have sent out email purporting
to be from Westpac which invites customers to visit a website which
accepts donations for Australia's paraplegic olympics team.

The interesting thing about this phish is that the actual bonafide
donation page is displayed -- not a clone, and if anyone enters there
CC details to make a donation, that information *will* be delivered to
the charity concerned.

However, the original page has been cunningly framed by the phishers
and the other (near invisible) frame in this set attempts to exploit a
vulnerability in unpatched copies of Interent Explorer (of course) to
load a trojan that logs your keystrokes (and goodness knows what
else).

Please tell all your friends and family. Visiting the phisher's
website using a vulnerable browser, even if they don't actually enter
anything into the form, may mean that their keystrokes are logged from
that point on -- thus exposing credit card numbers and banking logins.

There's more info on today's Aardvark.
--
you can contact me via http://aardvark.co.nz/contact/

"Bruce Simpson" <> wrote in message
news:...
> Yes, the phishers are at it again and have sent out email purporting
> to be from Westpac which invites customers to visit a website which
> accepts donations for Australia's paraplegic olympics team.
>
> The interesting thing about this phish is that the actual bonafide
> donation page is displayed -- not a clone, and if anyone enters there
> CC details to make a donation, that information *will* be delivered to
> the charity concerned.
>
> However, the original page has been cunningly framed by the phishers
> and the other (near invisible) frame in this set attempts to exploit a
> vulnerability in unpatched copies of Interent Explorer (of course) to
> load a trojan that logs your keystrokes (and goodness knows what
> else).
>
> Please tell all your friends and family. Visiting the phisher's
> website using a vulnerable browser, even if they don't actually enter
> anything into the form, may mean that their keystrokes are logged from
> that point on -- thus exposing credit card numbers and banking logins.

Absolute bullshit. How can people be so ****ing stupid? And to hell with
your frigging site; go advertise the crap elsewhere!

"Kerry" <> wrote in message
news:%BUuc.74$...
> "Bruce Simpson" <> wrote in message
> news:...
> > Yes, the phishers are at it again and have sent out email purporting
> > to be from Westpac which invites customers to visit a website which
> > accepts donations for Australia's paraplegic olympics team.
> >
> > The interesting thing about this phish is that the actual bonafide
> > donation page is displayed -- not a clone, and if anyone enters there
> > CC details to make a donation, that information *will* be delivered to
> > the charity concerned.
> >
> > However, the original page has been cunningly framed by the phishers
> > and the other (near invisible) frame in this set attempts to exploit a
> > vulnerability in unpatched copies of Interent Explorer (of course) to
> > load a trojan that logs your keystrokes (and goodness knows what
> > else).
> >
> > Please tell all your friends and family. Visiting the phisher's
> > website using a vulnerable browser, even if they don't actually enter
> > anything into the form, may mean that their keystrokes are logged from
> > that point on -- thus exposing credit card numbers and banking logins.
>
> Absolute bullshit. How can people be so ****ing stupid? And to hell with
> your frigging site; go advertise the crap elsewhere!

**** off, Noddy.
One Kerry around here is more than enough.

E. Scrooge

"E. Scrooge" <scrooge@*shot.co.nz (*sling)> wrote in message
news:...
>
> "Kerry" <> wrote in message
> news:%BUuc.74$...
> > "Bruce Simpson" <> wrote in message
> > news:...
> > > Yes, the phishers are at it again and have sent out email purporting
> > > to be from Westpac which invites customers to visit a website which
> > > accepts donations for Australia's paraplegic olympics team.
> > >
> > > The interesting thing about this phish is that the actual bonafide
> > > donation page is displayed -- not a clone, and if anyone enters there
> > > CC details to make a donation, that information *will* be delivered to
> > > the charity concerned.
> > >
> > > However, the original page has been cunningly framed by the phishers
> > > and the other (near invisible) frame in this set attempts to exploit a
> > > vulnerability in unpatched copies of Interent Explorer (of course) to
> > > load a trojan that logs your keystrokes (and goodness knows what
> > > else).
> > >
> > > Please tell all your friends and family. Visiting the phisher's
> > > website using a vulnerable browser, even if they don't actually enter
> > > anything into the form, may mean that their keystrokes are logged from
> > > that point on -- thus exposing credit card numbers and banking logins.
> >
> > Absolute bullshit. How can people be so ****ing stupid? And to hell with
> > your frigging site; go advertise the crap elsewhere!
>
> **** off, Noddy.
> One Kerry around here is more than enough.
>
> E. Scrooge

Bite me, you old coot.

In article <%BUuc.74$>,
says...
> "Bruce Simpson" <> wrote in message
> news:...
> > Yes, the phishers are at it again and have sent out email purporting
> > to be from Westpac which invites customers to visit a website which
> > accepts donations for Australia's paraplegic olympics team.
> >
> > The interesting thing about this phish is that the actual bonafide
> > donation page is displayed -- not a clone, and if anyone enters there
> > CC details to make a donation, that information *will* be delivered to
> > the charity concerned.
> >
> > However, the original page has been cunningly framed by the phishers
> > and the other (near invisible) frame in this set attempts to exploit a
> > vulnerability in unpatched copies of Interent Explorer (of course) to
> > load a trojan that logs your keystrokes (and goodness knows what
> > else).
> >
> > Please tell all your friends and family. Visiting the phisher's
> > website using a vulnerable browser, even if they don't actually enter
> > anything into the form, may mean that their keystrokes are logged from
> > that point on -- thus exposing credit card numbers and banking logins.
>
> Absolute bullshit. How can people be so ****ing stupid? And to hell with
> your frigging site; go advertise the crap elsewhere!

**** off back under whatever rock you crawled out from

Bruce Simpson <> wrote in message news:<>. ..
snip
> Please tell all your friends and family. Visiting the phisher's
> website using a vulnerable browser, even if they don't actually enter
> anything into the form, may mean that their keystrokes are logged from
> that point on -- thus exposing credit card numbers and banking logins.
>
> There's more info on today's Aardvark.

It -could- be that the bank has annoyed some-one who has decided to
get back at that particular bank...
And what better way than this...

On Tue, 01 Jun 2004 23:36:05 +1200, Patrick Dunford wrote:

> **** off back under whatever rock you crawled out from

You first.

In article < >,
says...
> Bruce Simpson <> wrote in message news:<>. ..
> snip
> > Please tell all your friends and family. Visiting the phisher's
> > website using a vulnerable browser, even if they don't actually enter
> > anything into the form, may mean that their keystrokes are logged from
> > that point on -- thus exposing credit card numbers and banking logins.
> >
> > There's more info on today's Aardvark.
>
> It -could- be that the bank has annoyed some-one who has decided to
> get back at that particular bank...
> And what better way than this...

That's the kind of small mindedness you believe in is it?

[spw2000]

Not quite sure what the gripe with the original posting above is - if its "absolute bullshit" tell us why you think/know so.... Lets fight his stuff together.

There will always be clever hackers and regardless of what techniques they use, we have to be on guard. Good communication is probably one effective way.