Potential Phising site
If this is not a clear case of a website phising for id and password then I don’t know what this is. Every now and then my MSN Messenger buddies will pop a url link to this imgeshack.info website. The website is really simple, just a page requesting you to key in your MSN id email and password. It has no relation with another website called imageshack.us. They just created another domain with the same name but using a different extension.
Below is the screenshot of the imgeshack.info website to warn other future people about this potential phising website.
The website terms did put some disclaimer and even have the gall to say that they are not a phising website. Any foolhardy surfer who thinks faster with his fingers than thinking it through with his grey matter would have thought that any info or site passed by your buddy would seem legitimate. Alas, no, it is because your friends MSN Messenger account was already compromise that now as his buddy is also receiving such phising messages.
Sure there are other third party sites like Facebook or Trillian where you can key in your ID and password to access their services. Still one must do so carefully and not just jump headlong without some thought first.
When I queried back my MSN buddy, they have no idea that they send in the link. That meant the website has already harvested his account and could now log in and sent out various kind of spam without their knowledge. Some to lure additional unsuspecting MSN messenger users, and perhaps finally to steal any sensitive information such as credit card details, login details for online banking, or other sensitive information.
A check using whois showed that the website was registered to a person in Panama City for a TST Management company. I wonder how correct is the information, because I did make a whois check for this similar type of website some months ago and it was registered to a person located in China. The registered date for this website was on the 14-June-2008, so I guess the moment they found out somebody was on to them they just re-register a new domain using another server located somewhere in world.
Next time when your online instant messenger friends pass you a link, think carefully whether the origin was actually from your friend or from someone else more sinister.
Here they go again, making similar sounding website, but ending with a login similar with the above picture. if you see image-fly.info, this is a phising website; the difference is with the dash, the correct website is www.imagefly.info.
Here’s another few more of the same:
Just listing them as they come…