After Twitter Scam, Phishers Targeting Digg
Following the much known Twitter phishing scam very recently, a fresh scam has emerged that targets Digg.com, a website to post stories as well as to vote or remark on already posted stories and links.
The reports said that a replica of the Digg website, http://567gu.com/, has been found behaving exactly like Digg.com in appearance and performance. However, one difference exists - when anyone logs into Digg to submit a story, the password of that user is transmitted to a remote hacker who manipulates the account.
According to reports, when anyone posts a story on Digg, users might get messages through Instant Messaging or through Digg itself, whereby the messages carry a link leading to that story. Sometimes, as per the security specialists, users receive such a large number of links pointing to the stories that they skip examining the story's URL. Then, it is possible that instead of the real digg.com, the link would redirect users to somewhere else.
Security specialists also said that the phishing scam with Digg is more harmful than the phishing scam with Twitter as the social news website like Digg includes many links to share. For a member who is active on Digg, there could be many friends for him in IM (AIM Google Talk) Out of so many friends, one might be a phisher who passes the user a bogus Digg page.
If the user is unwary and tries to submit a story into Digg by logging in, then the fraudster could gain access to the actual Digg account and subsequently, manipulate it for his own advantage.
However, the second Digg site isn't a phishing website since both the actual and the counterfeit sites have the same Internet Protocol, according to some people. But both domain names i.e. digg.com and 567gu.com are on separate servers. Therefore, even though the requests are redirected to Digg's server at the moment, the case might not remain the same after sometime.
Hence, Digg users are suggested that they avoid following the links that are not digg.com.
Related article: After HD DVD, Hacker Similarly Unlocks Blu-Ray Protection
» SPAMfighter News - 17-01-2009