hosts file manipulation

Printable View

11-05-2004, 07:44 AM
[AK]Choozoo

hosts file manipulation

The latest phishing attacks only require you to open the email. By doing so, a windows script runs, changing the IP of your favorite bank to a url somewhere else. Guess what happens to your username and password?

PayPal and CitiBank customers are getting hit hard...

Moral of the story -- Turn of WSH and check your hosts file!
11-05-2004, 01:45 PM
[AK]Clay

Is this a MS Outlook flaw? I'm using Thunderbird.
11-05-2004, 03:39 PM
[AK]Choozoo

Its for the Windows platform (unfortunately)
11-05-2004, 03:50 PM
[AK]Choozoo

Its for the Windows platform (unfortunately), utilizing Windows Script Host.

I'd make a backup of our hosts file, and turn off html emails, I use text only emails. Since I've been working in security, I've become borderline paranoid.... where's my thorazine :)

An artice that covers it:
http://www.computershopper.co.uk/sho...ing-sites.html

All times are GMT -8. The time now is 06:22 AM.