Microsoft phish

Published: 2013-10-17
Last Updated: 2013-10-17 22:19:09 UTC
by Adrien de Beaupre (Version: 1)
2 comment(s)

What luck! The handlers list just received a really well done phish. No awkward grammar, no typos. The URL points to the following link

hxxp://innovativeair.org/wp-info/microsoft/index.htm

From the format it would appear to be a compromised WordPress site. It has already been reported to the anti-phishing groups and the built in phishing and malware protection in Firefox detects the page as phishing. The only thing that is unusual is how well done the email is, and that it bypassed the anti-spam filter to arrive in my mailbox.

Ask yourself, would your users click?

Let's be careful out there!

Cheers,
Adrien de Beaupré
Intru-shun.ca Inc.
My SANS Teaching Schedule

Keywords: microsoft phish
2 comment(s)

Comments

SPF?
More of same:

- http://blog.dynamoo.com/2013/10/microsoft-windows-update-phish.html
18 Oct 2013

- http://nakedsecurity.sophos.com/2013/10/14/microsoft-failed-update-phish-might-well-sound-believable-watch-out/
Oct 14, 2013
.

Diary Archives