MySpace Phishing Attack Appears on 3000 Pages
Mashable is reporting a phishing attack on MySpace users:
Earlier this week I detected many fake MySpace login pages setup for phishing login credentials. I thought there was something important to report but after further investigation I found that these pages did absolutely nothing because the HTML missed an important attribute in the post form. This is the “action” attribute which tells the form what to do when you click login. “They’ve been neutralized by my MySpace”, I thought. But I was wrong.
A proportion of these pages are today active and will steal your email and password if you give it to them. The fake login pages are very convincing and even fooled Firefox into automatically filling in my credentials. Even cautious Internet users could get caught off guard by this trick.
Once a user account has been compromised, personal data can be harvested. The Washington Post recently published an article ( http://www.washingtonpo...
6 votes
