<body><script type="text/javascript"> function setAttributeOnload(object, attribute, val) { if(window.addEventListener) { window.addEventListener('load', function(){ object[attribute] = val; }, false); } else { window.attachEvent('onload', function(){ object[attribute] = val; }); } } </script> <div id="navbar-iframe-container"></div> <script type="text/javascript" src="https://apis.google.com/js/platform.js"></script> <script type="text/javascript"> gapi.load("gapi.iframes:gapi.iframes.style.bubble", function() { if (gapi.iframes && gapi.iframes.getContext) { gapi.iframes.getContext().openChild({ url: 'https://www.blogger.com/navbar.g?targetBlogID\x3d19328670\x26blogName\x3dRob+%26+The+Blogosphere\x26publishMode\x3dPUBLISH_MODE_BLOGSPOT\x26navbarType\x3dSILVER\x26layoutType\x3dCLASSIC\x26searchRoot\x3dhttps://andwalkaway.blogspot.com/search\x26blogLocale\x3den_US\x26v\x3d2\x26homepageUrl\x3dhttp://andwalkaway.blogspot.com/\x26vt\x3d6989461412476977988', where: document.getElementById("navbar-iframe-container"), id: "navbar-iframe", messageHandlersFilter: gapi.iframes.CROSS_ORIGIN_IFRAMES_FILTER, messageHandlers: { 'blogger-ping': function() {} } }); } }); </script>

Rob & The Blogosphere

People | Tech | Health | Pop Culture

Beware of Friendster Phishing Site!

Thursday, October 18, 2007

This evening I discovered a possible phishing site.

Fake Log-in page: http://www.yenikoylu.com/components/com_galleria/upload_tmp/

Fake Adobe Flash security warning: http://www.yenikoylu.com/components/com_galleria/upload_tmp/security.html

NOTE: YOU MAY VISIT THE SITE BUT DO NOT LOG-IN OR DOWNLOAD ANYTHING FROM THAT SITE.

I think that is a phishing site, meaning it harvest your username and password and send it to yenikoylu.com's server.

I was tricked, yeah, but I i mmeadiately changed my password after i had safely removed it from my computer.

I downloaded the program and run it, but it does nothing! It only runs at the task manager. An exact characteristic of a key logger or someform of malware. Once the file i downloaded, you cannot delete it, unless you end the task at the task manager.

And how did I discovered this page? I was browsing my friend's profile (http://profiles.friendster.com/21441322) and decideto leave a comment, but insteadit redirected me to the fake log-in page.

I already emailed Friendster about this and I hope they will do something about it. It concerns our security and of course their site's integrity.

Please tell all your friends about this and always pay attention at what you are clicking and downloading.

Labels: , , , , ,


► Read more!