Andrei Freeman (lordandrei) wrote,
Andrei Freeman

  • Mood:
  • Music:

Duck Season? Wabbit Season? PHISH SEASON!

About 2 years ago I fell prey to a Phishing scam.

I received a link via IM from a friend. It was a web site on Geocities. Geocities is owned by yahoo.

When I got to the GeoCities page I got the customary warning that the web page was adult oriented and I'd have to log in to get access.

Problem was, the log in screen wasn't to Yahoo. It was the phisher. They got my username and password. Promptly logged in and changed it. Then they proceeded to send the link from my IM to anyone on my list.

This little mess too me 5 days to clean and required me phoning names on the corporate executives list until someone realized that their customer support was really lousy.

So to mark nearly 2 yrs... I got an IM on Yahoo from a friend with a link.

Wouldn't you know.. it was Geocities and a Yahoo login page. Well (an unsafe login page)

I've been thru this on a very detailed level. I know what the exploits are that phishers are using and I know how to get them shutdown quickly.

The first step is recognizing them.

SonicWall has put up a really good EMAIL PHISH TEST.

10 pieces of email. Are they legitimate or are they an attempt to get your information?

Here's the test. I got 10/10 the first time thru. How well do you know your phish, from your spam, from your legitimate provider email?
Tags: phishing, scams, test

  • Post a new comment


    Anonymous comments are disabled in this journal

    default userpic

    Your reply will be screened

    Your IP address will be recorded