Recently researches were able to find a loop hole in SSL certificate implementation which could could make any secure website (relying on md5 hashing of CA certificates) vulnerable to nearly undetectable phishing attack.
To brief the attack:
Cryptography, Cybercrime, Information Security, Network Security, Phishing | w0lf | January 1, 2009 | 
Comments (2)
Cryptography, Encryption, netbanking, phishing, PKI, spoofing, SSL certificates
Well Here I will not be providing some PoC to hack into these mailing accounts. I will be telling you the methodology that can be used to hack into any of these mailing accounts. The real effort will be yours. 
Lets start without any more disclaimer speech and sort.
Frustrated with phishing attack, we may try bursting back at phisher on the fake login page by inputting bad words in the input fields. (And I guess we have already done it many times 
) This has now hurt the emotions of attackers (after all they are also humans ). Now a new twist in phishing trend is that they use Neosploit to attack those user’s unpatched systems who swear back at them or if few other conditions are met. But they will not attack if we fill all the details honestly.
Details can be found here
Phishing | w0lf | September 15, 2008 | Comments (0)
