Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Microsoft phish - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft phish

What luck! The handlers list just received a really well done phish. No awkward grammar, no typos. The URL points to the following link

hxxp://innovativeair.org/wp-info/microsoft/index.htm

From the format it would appear to be a compromised WordPress site. It has already been reported to the anti-phishing groups and the built in phishing and malware protection in Firefox detects the page as phishing. The only thing that is unusual is how well done the email is, and that it bypassed the anti-spam filter to arrive in my mailbox.

Ask yourself, would your users click?

Let's be careful out there!

Cheers,
Adrien de Beaupré
Intru-shun.ca Inc.
My SANS Teaching Schedule

Adrien de Beaupre

353 Posts
ISC Handler
SPF?
techhelplist.com

9 Posts
More of same:

- http://blog.dynamoo.com/2013/10/microsoft-windows-update-phish.html
18 Oct 2013

- http://nakedsecurity.sophos.com/2013/10/14/microsoft-failed-update-phish-might-well-sound-believable-watch-out/
Oct 14, 2013
.
PC.Tech

34 Posts

Sign Up for Free or Log In to start participating in the conversation!