Would you fall for www.paypa1.com?

Published 24 April 06 02:17 PM | ianm 

It might be slightly off topic for this blog, but as phishing attacks are such unpleasant things I thought it worth mentioning this really good article that a colleague forwarded to me.

It talks about why people fall for phishing attacks and how we might start to address the problem. How closely do you really look at URLs? Would www.paypa1.com fool you into thinking it was www.paypal.com?

Or that www.bankofthevvest.com was www.bankofthewest.com?

The report also points out how easy it is for spoofers to put false images like padlocks and https refereneces into the status bar, and how many people fall for that.

Well worth a read, and kind of sobering. I like to think I'm wise to these attacks but I'm sure on a bad day I could easily fall for some of these tricks.

Take a look at our anti-phishing site for more info.

It's also worth pointing out that if you use the MSN Toolbar with IE6 there is an add-in for that http://addins.msn.com/phishingfilter/

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

# BlakeHandler said on April 24, 2006 10:44 AM:
Microsoft has a "newerer" program to combat this problem from your Typo-Patrol group.

http://research.microsoft.com/URLTracer/
# ianm said on April 24, 2006 11:55 AM:
Thanks for that, I hadn't seen it before.
# Don Pirie said on June 15, 2006 12:09 PM:
Paypa1 (That is the number 1) has been sending me emails to get my real paypal credit card number by saying that my new email address has been changed to skramer396@yahoo and they need me to sign in with all my infromation to verify the change.  Of course, they are trying to get my credit card info.

Just thought you might to add this to your information on them.
# ianm said on June 21, 2006 5:38 PM:
Thanks for the info Don.
# Alexr said on October 22, 2006 8:26 PM:

or you could get IE7 @   .................

http://www.microsoft.com/windows/ie/downloads/default.mspx

# andrew said on July 8, 2007 12:44 PM:

i've had someone contact me about an ad on the site www.buyandsell.net on my mobile phone then sending me fake paypal fund receipt mails with paypa1. he now texts me every few days demanding i ship the laptop to him, but of course no money was ever sent.

Leave a Comment

(required) 
(optional)
(required) 

Search

Go

This Blog

Syndication

This posting is provided "AS IS" with no warranties, and confers no rights.
Page view tracker