How Random Babbling Becomes Corporate Policy (t3knomanser) wrote,
How Random Babbling Becomes Corporate Policy
t3knomanser

New Phishing Technique

I just received an email claiming to be from Washington Mutual Online, doing the standard "you need to log in". Instead of giving me a domain name made to look like one that could possibly be for a banking firm, the phisher supplied a case number: "0xD2.0x8D.0xDF.0x4B". They then used that case number in the URL, like so: "0xD2.0x8D.0xDF.0x4B/online.wamu.com/"

Reading that URL, it's going to a folder called "online.wamu.com" and the hex numbers are an IP address. This struck me as being a bit more clever than "http://thesiteyouthinkthisisreallyreallyreally.com" or a very long URL. It also shows a better than average technical competency- the phisher knows what an IP address is and knows how to convert it into hex.
Tags: idiots, security, technology
Subscribe

  • Strange Things People Say About Me (to my face)

    Recently, I've been at the center of a trend. That trend is complete strangers asking me "Are you ____?" A quick summary. For example: Are you…

  • Writer's Block: If I could find my way

    -10,000 years, at minimum. Tomorrow is always better than today, especially when you can't fact-check.

  • Bob Morlang

    When I was working at Tri-Mount, we had these camp trucks. They were army surplus, and while they could take a beating, they only sort of worked. And…

  • Post a new comment

    Error

    Comments allowed for friends only

    Anonymous comments are disabled in this journal

    default userpic

    Your IP address will be recorded 

  • 2 comments