| View previous topic :: View next topic |
| Author |
Message |
Zigmund555
Joined: 23 Sep 2005
Posts: 3306
|
 Posted: Mon 05/17/10 6:39 pm Post subject: Here phishy phishy |
 |
|
Ooh, a good one (except for the typo)
| Quote: | Helloďź?/P>
This is an automated notification regarding your Battle.net account.We have the evidence to prove that your account involved in the controversial game currency transaction
Our company has to adopt some measures to safeguard our common benefits in order to strengthen the safety of mass players'accounts,so you should immediately verify that you are the original owner of the account.We highly recommend that you take this opportunity to verify your account information.To do so, simply click here:
https://www.battle.net/account/support/login-support.xml
Blizzard staff will verify your account information submitted in two days, please do not modify your account information and password during this time . It will not affect your game uptime.
For more information, click here for answers to Frequently Asked Questions or to contact the Blizzard Billing & Account Services team.
Sincerely,
Account Administration
Blizzard Entertainment
Online Privacy Policy |
Too bad the battle.net link redirects to information-battle.net/ (btw, don't go that site)
_________________
 |
|
| Back to top |
|
 |
Armus
Joined: 09 Jan 2010
Posts: 31
Location: Austin, TX
|
|
| Back to top |
|
|
Platykurtic
Joined: 23 Sep 2005
Posts: 3417
Location: Brussels, Belgium
|
| Posted: Tue 05/18/10 3:59 pm Post subject: |
|
|
It might be some form of x-scripting attack and the code didn't survive the copy & paste. Safari is a bit behind in security (or Brian could be using an older version of IE) so those attacks are still a lot easier to do than say for Chrome (which exposes the ultimate destination as a matter of course). That type of attack vector was very common on say IE6 in the past for example.
All the above is conjecture of course.
_________________
Rg - level 80 Rogue - http://www.wowarmory.com/character-sheet.xml?r=Thunderlord&n=Rg
Dkn - level 80 Death Knight - http://www.wowarmory.com/character-sheet.xml?r=Thunderlord&n=Dkn |
|
| Back to top |
|
|
Zigmund555
Joined: 23 Sep 2005
Posts: 3306
|
| Posted: Tue 05/18/10 5:05 pm Post subject: |
|
|
| Quote: | | Too bad the battle.net link redirects to information-battle.net/ (btw, don't go that site) |
You didn't read that part at the bottom. It's an HTML link. It looks like you're clicking over to battle.net, but it re-directs to you information-battle.net.
| Quote: | | Safari is a bit behind in security (or Brian could be using an older version of IE) so those attacks are still a lot easier to do than say for Chrome (which exposes the ultimate destination as a matter of course). |
Funny how g-mail didn't tell me what link it was really going to but Safari blocked me from even going there in the first place.
_________________
|
|
| Back to top |
|
|
Platykurtic
Joined: 23 Sep 2005
Posts: 3417
Location: Brussels, Belgium
|
|
| Back to top |
|
|
Zigmund555
Joined: 23 Sep 2005
Posts: 3306
|
| Posted: Tue 05/18/10 9:21 pm Post subject: |
|
|
Well, they're smarty-pants enough to parse my email to display an ad for me but not enough to parse if the link target matches the display text.
_________________
|
|
| Back to top |
|
|
Platykurtic
Joined: 23 Sep 2005
Posts: 3417
Location: Brussels, Belgium
|
|
| Back to top |
|
|
Armus
Joined: 09 Jan 2010
Posts: 31
Location: Austin, TX
|
| Posted: Tue 05/25/10 6:19 am Post subject: |
|
|
| Platykurtic wrote: | It might be some form of x-scripting attack and the code didn't survive the copy & paste. Safari is a bit behind in security (or Brian could be using an older version of IE) so those attacks are still a lot easier to do than say for Chrome (which exposes the ultimate destination as a matter of course). That type of attack vector was very common on say IE6 in the past for example.
All the above is conjecture of course. |
Technically, Safari also exposes the destination when mousing over a hyperlink. Safari also obeys all the modern anti-iframe directives - which causes some consternation for those who try to embed google widgets (like calendar) inside their site - google has disallowed that and all modern browsers respect that directive. |
|
| Back to top |
|
|
|
Home
Watched Topics
Calendar
FAQ
Search
Memberlist
Usergroups
Albums
Register
Profile
Log in
Calendar 
