[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    Re: [Full-disclosure] Re: [HV-PAPER] Anti-Phishing Tips You Should
From:       "ad () heapoverflow ! com" <ad () heapoverflow ! com>
Date:       2006-03-31 14:08:31
Message-ID: 442D37DF.6020302 () heapoverflow ! com
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
btw someone maybe know the fastest way to report a phish to yahoo ?
Because I have identified & forwarded some phish to them via
http://add.yahoo.com/fast/help/abuse/cgi_abuse but it took them around
3-4 days to stop them , so is this the correct link to report a "from
yahoo"
phish  or if anyone has the correct email address , thank you.

ADovi


Dave Korn wrote:
> Jasper Bryant-Greene wrote:
>> Marcos Agüero wrote:
>>> Jasper Bryant-Greene escribió:
>>>> Seriously though, it wouldn't be that hard to forward the POST on
>>>> to the real bank website, would it?
>>> I think so, but would be very easy to detect. Logs would show lots of
>>> diferent user logging in from the same IP Address.
>> Phishing scams are public in nature. They aren't trying to avoid
>> detection :) and the IP address would of course be spoofed.
>
>   No it wouldn't.  IP address spoofing is easy over UDP but incredibly
> difficult over TCP.
>
>     cheers,
>       DaveK

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.1 (MingW32)
 
iD8DBQFELTffFJS99fNfR+YRAg0tAKDHIleVWUM+eSj3TNfoC0AjgJsqCACfZ2TE
6LflUqoU7HwXf7+37Hug+7s=
=h+0A
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[prev in list] [next in list] [prev in thread] [next in thread]