- Impact
- 16,250
Ok, listen carefully. I share these because our Email PW's are the root access to our domains and at all costs they must be guarded.
My niece sent this to me because it was getting spammed through YIM.
It is a geocities signup, but from the looks of it could be modified to look like any Y sign in page.
Close to the best phishing page I've ever seen.
My neice sent this because it is getting spammed through YIM
Someone posing as a girl sends this saying she and her friend have just posted some pix.
http://www.geocities.com/tamira18_-/ smith/index.html
This opens to a geocities signin page.
It is almost perfect, although we can spot the mistakes looking
for them, if I dont tell you first, and you are chasing this promised
pics on the site.
Every link on the page is legitamite, however there is an error on the page.
(popup warning is suppressed, but the error icon bottom left is there)
You dont see it, but its right above start.
So signed in or not, you click the link offered and it goes to the above form page.
New window, maybe the cookie doesnt carry over so you put in your YID
and PW and hit Sign in. Thats when the beauty unfoldes. A page follows saying you have sent a ecard, you go wtf... click out or back. If back its to the same page, if out it is to the real sign in page where perhaps you try again. Anyone not really knowing how this sh!t works, has just given full access to all yahoo services they are subscribed to.
Now just for fun, type in gibberish and hit sign in.
Next just hit it without filling anything out.
I know -Bill- and a few others will appreciate whats inside the source....
How can the address bar read geocities? Which it clearly does.
Here are the cuties...
The form? This error....
Line: 1
Char: 1
Error: 'document.login_form.login' is null or not an object
Code: 0
URL: http://www.geocities.com/tamira18_s.<>...dex.html?200074
The AddressBar?
http://themis.geocities.yahoo.com/t...bb29><7bcc8219d0f
And thats enuff lesson... Dont try this at home
Peace,
Cyberian
My niece sent this to me because it was getting spammed through YIM.
It is a geocities signup, but from the looks of it could be modified to look like any Y sign in page.
Close to the best phishing page I've ever seen.
My neice sent this because it is getting spammed through YIM
Someone posing as a girl sends this saying she and her friend have just posted some pix.
http://www.geocities.com/tamira18_-/ smith/index.html
This opens to a geocities signin page.
It is almost perfect, although we can spot the mistakes looking
for them, if I dont tell you first, and you are chasing this promised
pics on the site.
Every link on the page is legitamite, however there is an error on the page.
(popup warning is suppressed, but the error icon bottom left is there)
You dont see it, but its right above start.
So signed in or not, you click the link offered and it goes to the above form page.
New window, maybe the cookie doesnt carry over so you put in your YID
and PW and hit Sign in. Thats when the beauty unfoldes. A page follows saying you have sent a ecard, you go wtf... click out or back. If back its to the same page, if out it is to the real sign in page where perhaps you try again. Anyone not really knowing how this sh!t works, has just given full access to all yahoo services they are subscribed to.
Now just for fun, type in gibberish and hit sign in.
Next just hit it without filling anything out.
I know -Bill- and a few others will appreciate whats inside the source....
How can the address bar read geocities? Which it clearly does.
Here are the cuties...
The form? This error....
Line: 1
Char: 1
Error: 'document.login_form.login' is null or not an object
Code: 0
URL: http://www.geocities.com/tamira18_s.<>...dex.html?200074
The AddressBar?
http://themis.geocities.yahoo.com/t...bb29><7bcc8219d0f
And thats enuff lesson... Dont try this at home
Peace,
Cyberian
Last edited:
