Home / WWW/ Yahoo Redirection Used in Phishing Email

November 13, 2006

Yahoo Redirection Used in Phishing Email

by Matnet @ 10:10 pm in WWW

Today, I got a phishing email using a Yahoo redirection. People who claim redirection isn’t a problem read on. Indeed, the URL also uses Dword encoding to further make the URL obfuscated. Here’s the URL:

http://rds.yahoo.com/_ylt=A0LaS
V66fNtDg.kAUoJXNyoA;_ylu=X3oDMTE2ZHVuZ3E3
BGNvbG8DdwRsA1dTMQRwb3MDMwRzZWMDc3IEdnRpZANGNjU1Xzc1/SIG=148vsd1jp/EXP=
1138544186/**http%3a//1115019674/www.paypal.com/us/webscr.php?cmd=_login-run

Notice the Dword there? 1115019674 That translates to 66.117.217.154

How someone could ever figure out what that URL was without clicking on it who wasn’t already familiar with phishing schemes, I’ll never know. Phishing is partly social engineering, and my trust in Yahoo is what makes me think, “Sure, I believe that Yahoo could theoretically have some arrangement with other companies to redirect traffic.” The fact that mega companies with known brands have these holes makes this a big problem.


Comments
* Name


* Email Address (will not be published)


Site



*Image Validation (?)

Comments

HTML: NO

:: Shout Me ::


:: About Me ::



They call me : Yachiru
Name : Yachiru Kusajishi
Birthday : February 12
Working Field : Shinigami lieutenant - 11th Division
E-mail : matnet80 [at] yahoo [dot] com

:: Calendar ::

February 2012
S M T W T F S
1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29