Our second instance of Address Bar spoofing
No spoof email this time, we came across this bogus Paypal page
(see images below) during our trawl of the net for 'nasties'. This bogus page
also represents our second sighting of this new phishing phenomenon where the
browser address bar is removed and replaced with text and images to give the
appearance of a genuine web page.
Of-course, the whole page is one big con and any information
which is submitted into this form is seemlessly sent on to the perpetrators
using a PHP script.
You will notice from the image below, that parts of the address
bar image are a different colour, but if the browser was set to use Windows Classic
appearance, then you would not notice any difference (see this
other example of Address Bar Spoofing to see
what we mean). The yellow padlock symbol is also absent from the bottom of the
browser frame (something that you would always see at a genuine secure page).
We may well see reports of spoof emails which direct users to
this bogus page over the coming days, but we are more likely to see other examples
of this worrying trend. In the mean time, please help build awareness of this
emerging trend in Phishing Scams by informing friends and colleagues of this
page and the use of Address Bar Spoofing. The more that people know, the
less victims we will see.
bogus web page ...