I’ve come across a rather interesting MySpace phishing technique. Hijacked profiles will send you a link or post a link on your wall telling you to go look at some user’s profile (it’ll usually be done by a friend of your’s). For example, they may say Joe is dead and display the following link to his profile:<\/p>\n
http:\/\/profile.myspace.com\/index.cfmfuseaction=user.viewprofile= 1890000<\/a><\/p>\n However, when you click the link, you’ll really be taken to a website like the following:<\/p>\n http:\/\/profile.myspace.com.fuseaction.id.user.viewprofile. 1890000.cn\/<\/a><\/p>\n Notice the “.cn” extension. That site ain’t MySpace. If you follow the above link you’ll see that it takes you to a site that looks just like the MySpace homepage, and it’ll be asking you to log in – even though you should already be logged in. MySpace is kind of crappy in that you have to log in to see certain things, and sometimes you get logged out for various reasons, so most users will gladly re-enter their information.<\/p>\n After you’ve given this phishing site your log in info, it’ll save it and then use it to re-log you in to the real MySpace web site. So you’ll end up back at MySpace, but that interesting thing you were told about isn’t anywhere to be found. I’d assume most users would just shrug this off and move on – totally unaware that they’ve just given their log in information to a phisher\/spammer\/identity theif\/whatever.<\/p>\n This really isn’t anything new, phishing has been around a long time. However, it actually works really well in this scenario, since MySpace used to take you to it’s home page after asking you to log in (even if you just wanted to look at someone’s pictures), and you were sent the link by one of your friends (not by some random dude you know is probably a phisher), so the environment leads to it being a pretty transparent attack. Anyway, it’s important to keep a look out for these kinds of things. A couple of my friends have had their accounts hijacked recently and they weren’t sure how it happened (I haven’t mentioned the above scenario since I just witnessed it recently). You don’t want to get your account or any accounts that may use the same password deleted because some jackass stole your log in info and then spammed a bunch of people.<\/p>\n","protected":false},"excerpt":{"rendered":" I’ve come across a rather interesting MySpace phishing technique. Hijacked profiles will send you a link or post a link on your wall telling you to go look at some user’s profile (it’ll usually be done by a friend of your’s). For example, they may say Joe is dead and display the following link to … Continue reading MySpace Phishing<\/span>