Phishing Express

Phisher takes advantage of American Express mistake

Earlier this week, Dan Nunes, one of our software engineers, was reviewing a phishing feed when he noticed a link that pointed to At first, Dan was surprised that a financial institution would be so careless as to leave an unprotected redirect on its site.

After all, financial institutions are often the targets of such phishing attacks. Upon closer examination of the link, however, he noticed javascript code present within the URL. The code appeared to load a frame to another site,, which at the time of this writing was mimicking the site of an Italian bank, Banka Intesa McAfee SiteAdvisor Blog: Phishing Express

Linked by shanmuga Sunday, 30th July 2006 2:31AM