Another AOL trick

From: Meritt James (meritt_jamesat_private)
Date: Thu Jun 21 2001 - 08:25:14 PDT

Next message: Justin Lintz: "RE: Another AOL trick"

Previous message: Chris Ess: "Re: New maniac rootkit"
Next in thread: Justin Lintz: "RE: Another AOL trick"
Reply: Justin Lintz: "RE: Another AOL trick"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've received two mailings at my AOL account requesting credit card
numbers and directing users to a web page that APPEARS (good use of
graphics,...) to be an AOL web page.  An investigation of the web page 
source code reveals that the information is emailed to Hotmail email
accounts.

Hard to avoid someone who is an AOL member, paranoid, and technically
capable of reading email header information (track the spoof) and web
page source (using POST to collect the data...)

AOL said "We didn't do it, would NEVER do it" and is trying to get them
now...

Thought you would like to know...


-- 
James W. Meritt, CISSP, CISA
Booz, Allen & Hamilton
phone: (410) 684-6566

Next message: Justin Lintz: "RE: Another AOL trick"
Previous message: Chris Ess: "Re: New maniac rootkit"
Next in thread: Justin Lintz: "RE: Another AOL trick"
Reply: Justin Lintz: "RE: Another AOL trick"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jun 21 2001 - 10:49:33 PDT