Hacker Infiltrates Phishing Site for Creating Awareness among Victims
According to security specialists from GFI Labs, a well-intentioned Internet hacker recently broke into a phishing website, which possibly stole many people's digital assets, with an aim to make aware those whom the cyber-criminals ensnared.
The company notes that the original phishing scam begins with a typical kind of spam mail, which warns recipients about an account problem that's actually false.
It (spam mail) tells the reader that his mailbox's storage capacity has exceeded therefore he requires upgrading his account to continue getting and sending fresh e-mails. Thereafter, it directs him to click on a given web-link for filling out an online form for upgrading his e-mail.
But, when clicked, the user is led onto a website that shows a form, actually meant for phishing, since it asks him to provide his e-mail id, username and password, GFI Labs outlines within the company blog.
Meanwhile, according to GFI Labs, somebody knowing computer programming decently well, noticed the malicious e-mail campaign and thought of paying it back to the con men via making a replacement of the online phishing form by posting an alert regarding the Internet's dangers.
Thus the hacker, who changed the content of the web-page meant for phishing, writes that there's nothing as an update for an e-mail service. A foolish crook crafted the page for filching users' e-mail accounts. Subsequently, the hacker writes that he has modified the page for educating users of Internet-crime who can submit the current modified online form for watching a useful movie regarding phishing and then never allow foolish crooks to compromise their accounts.
So users, who hit on "Submit Form," are led onto a movie that elaborates on phishing scams.
Christopher Boyd Senior Threat Researcher remarks that no hint appears regarding the way the individual presently having hold over the website acquired its login credentials. Maybe, by phishing off information from the phishers, Boyd contends. Help Net Security reported this on October 20, 2011.
Eventually, the security company advises users never to follow doubtful web-links, always set hard-to-crack passwords for protecting their e-mail accounts as well as ensure that their security software is enabled.
Related article: Hacker & Virus in MySpace
» SPAMfighter News - 28-10-2011