I received a link via IM from a friend. It was a web site on Geocities. Geocities is owned by yahoo.
When I got to the GeoCities page I got the customary warning that the web page was adult oriented and I'd have to log in to get access.
Problem was, the log in screen wasn't to Yahoo. It was the phisher. They got my username and password. Promptly logged in and changed it. Then they proceeded to send the link from my IM to anyone on my list.
This little mess too me 5 days to clean and required me phoning names on the corporate executives list until someone realized that their customer support was really lousy.
So to mark nearly 2 yrs... I got an IM on Yahoo from a friend with a link.
Wouldn't you know.. it was Geocities and a Yahoo login page. Well (an unsafe login page)
I've been thru this on a very detailed level. I know what the exploits are that phishers are using and I know how to get them shutdown quickly.
The first step is recognizing them.
SonicWall has put up a really good EMAIL PHISH TEST.
10 pieces of email. Are they legitimate or are they an attempt to get your information?
Here's the test. I got 10/10 the first time thru. How well do you know your phish, from your spam, from your legitimate provider email?