[clug] New script based Phishing makes Windows even less safe.

clug at james.st clug at james.st
Tue Nov 9 00:12:19 GMT 2004

Is it time for a new push to revive Linux internet banking at St George?

According to 
 it is now possible that simply viewing an email
 could run scripts that re-write your hosts file
 re-directing ALL e-bank connections to a phishing lookalike.
Of course it only works for Windows,
 just like St George internet banking.  8^(  

Alex Shipp, senior anti-virus technologist at MessageLabs, said: "By 
reducing the need for user intervention, the perpetrators are making it 
easier to dupe users into handing over the contents of their bank 
accounts. Most banks have advised their customers to be wary of any 
email asking for personal banking details, but in this case all they 
have to do is open an apparently innocent email and their bank details 
could be silently sabotaged.

"We currently detect between 80 and 100 new phishing websites a day, 
showing just how prolific the threat has become. It is a moving target, 
making it harder to identify and defend against," he added.


More information about the linux mailing list