The Evolution of the Phisher

gurps_npc writes "An article at CNN discusses the how Phishers have moved beyond the typical email scam. Last month, Secunia (Danish security firm) documented a case where a phisher somehow modified a windows host file so that when you type in the correct url in the address, it redirects you to the phisher site. Worms and spyware are being built for the purpose of phishing, and it is also believed that phishers are attempting to compromise domain name servers. If one of these go down millions could lose their security instantly, even if they themselves have maintened the security of their computers."

The evolution of the Phisher...

[Anonymous Coward]

...took an important turn once Native Americans discovered smoking "cannabis" herb.

Matthew 4:16-19

[Anonymous Coward]

Simon called Peter, and Andrew his brother, casting a net into the sea: for they were phishers. And he saith unto them, Follow me, and I will make you phishers of men.

Jesus p0wns you.

in case the site goes down....

[Anonymous Coward]

mirror here [freeipods.com]

oh, and don't let the lil /. linker helper thingy fool you...it's perfectly legit. just register and you'll see the site in seconds ;)

Phising on Linux

[stecoop]

Email:

Although I could have written a very complex and well written virus that probably wouldn't work on you operating system I am asking you to reply with you account name, password and any other card numbers you might have.

I further ask that you forward this email message to all your friends and for that matter any one you don't know urging them to send me all your information.

Yours Truly,
Mr Phisher

Evolution of the phish?

[drivinghighway61]

Everyone knows phish evolved into amphibians.

DNS? Bah!

[saintp]

it is also believed that phishers are attempting to compromise domain name servers. If one of these go down millions could lose their security instantly, even if they themselves have maintened the security of their computers.

That's why only sissies and noobs use DNS. "Don't have to remember numbers," they cry. "Makes life easier," they whine. Hah! So does Gator! But I've got the upper hand now! My security won't be compromised while posting on 66.35.250.150, bitches.

Re:Certificates changed?

[wertarbyte]

That's why you have all the stuff you need to patch it on a floppy/CD/flash drive, and don't have it connected to the internet right away. Common sense. Okay, maybe not common sense to most people.

No, that's why i don't have that windows stuff on my computers. Common sense. Okay, maybe not common sense to most people. ;-)

Re:DNS? Bah!

[saintp]

Images? What the heck are you talking about? Oh brave new Internet that has such things in it!

I'm confused

[TiggertheMad]

The article was a little vague on this point, but aren't Phisher scams where you pretend to be a slightly paranoid ex-chess geinus hiding out in Japan?

Re:Certificates changed?

[silicon-pyro]

The parents of the slashdot crowd are behind a secure proxy located in the basement. They just call us up and ask us if its ok to procede.

Re:and this is accomplished how?

[dioscaido]

It's very true. But not the fault of Windows. Applications can be written with user priviledges in mind. For example, I was pleasantly surprised recently when I installed Nero v6 and it installed a configurable CD burning service for non-Administrators. Thankfully most of the big ones work (most MS apps, Adobe Apps, Macromedia Apps, Mozilla).

I personally thing it's about time users demand that software makers stop coding applications that require admin access simply to run. That's unheard of in linux/unix.