-=PCTechTalk=- Re: This Spoof Ain't Funny

Thanks for the up date

The = and 20 comes from the copy I am thinking. See it a lot in here.


Life is what happens in between plans.

Virus free email by Norton's
This message is intended for the sole use of the individual and/or entity to
which it is addressed, and may contain information that is privileged,
confidential, and exempt from disclosure under applicable law. If you are
not the addressee, or authorized to receive this on behalf of the addressee,
you are hereby notified that you may not use, copy, disclose, or distribute
to anyone this message or any part thereof. If you have received this in
error, please immediately advise the sender by e-mail and delete this
information. Thank you
----- Original Message ----- 
From: "Glen" <glbbrown@xxxxxxxxx>
To: <pctechtalk@xxxxxxxxxxxxx>
Sent: Tuesday, July 13, 2004 2:18 PM
Subject: -=PCTechTalk=- Re: This Spoof Ain't Funny


> Yes. I got page not found. It looked like the website
> moved the article around with a new address. The new
> address and the one you gave didn't match.
> Since the article was a couple of days old, it was
> probably moved to some type of archive location.
>
> Also, on a side note the article you posted had a lot
> of equal(=) signs followed by the number 20. I do not
> know if it was pctechtalk, yahoo or your forwarding of
> the email......strange...
>
> Glen
>
> --- Bashful Bob <Bashfulbob@xxxxxxx> wrote:
> > Did you take into account a wrap around on the URL?
> >
> > Life is what happens in between plans.
> >
> > Virus free email by Norton's
> > This message is intended for the sole use of the
> > individual and/or entity to
> > which it is addressed, and may contain information
> > that is privileged,
> > confidential, and exempt from disclosure under
> > applicable law. If you are
> > not the addressee, or authorized to receive this on
> > behalf of the addressee,
> > you are hereby notified that you may not use, copy,
> > disclose, or distribute
> > to anyone this message or any part thereof. If you
> > have received this in
> > error, please immediately advise the sender by
> > e-mail and delete this
> > information. Thank you
> > ----- Original Message ----- 
> > From: "Glen" <glbbrown@xxxxxxxxx>
> > To: <pctechtalk@xxxxxxxxxxxxx>
> > Sent: Tuesday, July 13, 2004 12:04 AM
> > Subject: -=PCTechTalk=- Re: This Spoof Ain't Funny
> >
> >
> > > Incase that was difficult to read for others as it
> > was
> > > for me. Also the web address has changed slightly.
> > >
> > > http://tinyurl.com/4oj89
> > >
> > > Glen
> > >
> > > --- Bashful Bob <Bashfulbob@xxxxxxx> wrote:
> > > > Content-Type: text/plain;
> > > > charset="iso-8859-1"
> > > > Content-Transfer-Encoding: quoted-printable
> > > > >From a link in Consumer world
> > > > ******************************************
> > > >
> > >
> >
> http://www.internetweek.com/allStories/showArticle.jhtml?articleID=3D2210=
> > > > 4462
> > > >
> > > >
> > > > This Spoof Ain't Funny=20
> > > >
> > > > By Keith Ferrell, TechWeb=20
> > > >
> > > > A new security flaw allows crooks to place
> > false, or
> > > > "spoofed," =
> > > > information into Web pages displayed by
> > virtually
> > > > any browser, not just =
> > > > Microsoft's Internet Explorer.=20
> > > >
> > > >
> > > > This represents a large--and frightening--step
> > > > beyond the ability to =
> > > > place a counterfeit url in the browser's address
> > > > bar. That scheme =
> > > > involved loading a completely false page while
> > the
> > > > navigation bar =
> > > > displayed a legitimate url.=20
> > > >
> > > >
> > > > The new technique is more insidious, in that it
> > can
> > > > seamlessly insert =
> > > > false information into the browser display of
> > > > legitimate pages.=20
> > > >
> > > >
> > > > The announcement that the new exploitation
> > approach
> > > > crossed browser =
> > > > lines came just as the Department of Homeland
> > > > Security, among others, =
> > > > recommended that users shift to non-Microsoft
> > > > browsers, such as Mozilla =
> > > > or Opera.=20
> > > >
> > > >
> > > > The timing of the recommendation turned out to
> > be
> > > > ironic, of course, but =
> > > > irony is cold comfort in an environment in which
> > > > we're almost daily =
> > > > being forced to distrust the content that
> > appears in
> > > > our browsers and =
> > > > mail programs.=20
> > > >
> > > >
> > > > So far this year we've seen a stunning increase
> > in
> > > > the number of =
> > > > spoof-based e-mail phishing scams that guide
> > users
> > > > to false, but =
> > > > official-looking, sites. Phishing, awful as it
> > is,
> > > > at least requires =
> > > > that the victim do something, however foolish,
> > such
> > > > as responding with =
> > > > credit-card information to an e-mail.=20
> > > >
> > > >
> > > > That's precisely the sort of bait-and-switch con
> > > > than can at least be =
> > > > approached through education and behavioral
> > change.
> > > > Anti-phishing tips =
> > > > basically come down to common-sense advice about
> > > > verifying financial =
> > > > communications before responding to them.=20
> > > >
> > > >
> > > > The latest spoofing scam takes bait-and-switch
> > to a
> > > > new level, hiding =
> > > > the switched information in plain sight--right
> > there
> > > > on the page in =
> > > > front of us.=20
> > > >
> > > >
> > > > This new area of uncertainty will doubtless
> > compound
> > > > existing worries =
> > > > over data breaches and incidents like last
> > week's
> > > > coordinated attack on =
> > > > financial sites.=20
> > > >
> > > >
> > > > The result is an environment that may cause
> > serious,
> > > > and perhaps =
> > > > crippling, damage to already substantial
> > concerns
> > > > about the =
> > > > trustworthiness of online transactions.=20
> > > >
> > > >
> > > > Is there a point at which all of the levels of
> > > > patches, verifications, =
> > > > firewalls, ant-virus definitions, and the rest
> > will
> > > > become simply too =
> > > > much for many people to bother with? If so, the
> > > > browser-spoofing =
> > > > vulnerability is likely to move many people one
> > step
> > > > closer to giving =
> > > > up. Let's hope not.=20
> > > >
> > > >
> > > > Test Your Browser's Spoofing Vulnerability
> > > >
> > > >
> > > > a.. Secunia Browser Vulnerability Test=20
> > > >
> > > > Search The TechWeb Network=20
> > > >
> > > > a.. Phish=20
> > > > a.. Spoof=20
> > > >
> > > > Get TechEncyclopedia Definitions=20
> > > >
> > > > a.. Spoofing=20
> > > >
> > > > Get White Papers=20
> > > >
> > > > a.. A Service-based Approach to the Email Fraud
> > > > Problem=20
> > > > a.. Security at the Next Level: Are Your Web
> > > > Applications Vulnerable?=20
> > > > Life is what happens in between plans.
> > > >
> > > > Virus free email by Norton's
> > > > This message is intended for the sole use of the
> > > > individual and/or =
> > > > entity to which it is addressed, and may contain
> > > > information that is =
> > > > privileged, confidential, and exempt from
> > disclosure
> > > > under applicable =
> > > > law. If you are not the addressee, or authorized
> > to
> > > > receive this on =
> > > > behalf of the addressee, you are hereby notified
> > > > that you may not use, =
> > > > copy, disclose, or distribute to anyone this
> > message
> > > > or any part =
> >
> === message truncated ===
>
>
>
>
> __________________________________
> Do you Yahoo!?
> Yahoo! Mail - 50x more storage than other providers!
> http://promotions.yahoo.com/new_mail
> To unsub or change your email settings:
> http://www.freelists.org/webpage/pctechtalk
>
> To access our Archives:
> http://groups.yahoo.com/group/PCTechTalk/messages/
> http://www.freelists.org/archives/pctechtalk/
>
> For more info:
> http://www.freelists.org/cgi-bin/list?list_id=pctechtalk
>
>
>


To unsub or change your email settings:
http://www.freelists.org/webpage/pctechtalk

To access our Archives:
http://groups.yahoo.com/group/PCTechTalk/messages/
http://www.freelists.org/archives/pctechtalk/

For more info:
http://www.freelists.org/cgi-bin/list?list_id=pctechtalk

Other related posts: