Phishing Alert: Escrow.com


WebsenseŽ Security Labs has received reports of a new phishing attack that targets potential customers of Escrow.com. This phishing attack begins with the attacker posting a fake auction listing on one of several popular online auction sites. In response to any inquiries about the listing, victims are sent an email response that directs them to the phishing website. This phishing website captures personal information of victims when they attempt to send payment for the auction. The phishing site also spoofs the Escrow.com new account registration page. Users who do not currently have a valid Escrow.com account are walked through the registration process to set up a fake account that will be used on the phishing site. The phishing site is hosted in the United States and was up at the time of this alert. WebsenseŽ - Security Labs Alert: Escrow.com

Linked by shanmuga Thursday, 6th October 2005 2:01AM