[Dshield] New phishing redirect?

Tom dshield at oitc.com
Tue Feb 14 00:37:24 GMT 2006


At 5:25 PM -0500 2/13/06, Jon R. Kibler wrote:
>Greetings all,
>
>Maybe I just haven't been paying close enough attention to the small 
>amount of phishing that gets past ClamAV, but this seems to be a new 
>way of doing phishing redirects. Anyone seen it before and/or know 
>what Google hack they are taking advantage of?
>
> 
>	href="http://www.google.com/url?sa=U&q=http://81.196.204.130:82/webscr/index.php"

Jon,

I have seen these since ~ Christmas. (They are not just used by 
phishers btw) I have tried contacting google to let them know but 
communicating to google makes exiting a black hole seem easy.

Tom
-- 

Tom Shaw - Chief Engineer, OITC
<tshaw at oitc.com>, http://www.oitc.com/
US Phone Numbers: 321-984-3714, 321-729-6258(fax), 
321-258-2475(cell/voice mail,pager)
Text Paging: http://www.oitc.com/Pager/sendmessage.html
AIM/iChat: trshaw at mac.com
Google Talk: trshaw at gmail.com
skype: trshaw


More information about the list mailing list