{"id":131,"date":"2008-06-12T16:17:36","date_gmt":"2008-06-12T08:17:36","guid":{"rendered":"http:\/\/www.janleow.com\/life\/potential-phising-website-imgeshack-info.html"},"modified":"2008-06-12T16:17:36","modified_gmt":"2008-06-12T08:17:36","slug":"potential-phising-website-imgeshack-info","status":"publish","type":"post","link":"https:\/\/www.janleow.com\/life\/potential-phising-website-imgeshack-info.html","title":{"rendered":"Potential phising site &#8211; imgeshack.info"},"content":{"rendered":"<p>Potential Phising site<\/p>\n<p>If this is not a clear case of a website phising for id and password then I don&#8217;t know what this is. Every now and then my MSN Messenger buddies will pop a url link to this imgeshack.info website. The website is really simple, just a page requesting you to key in your MSN id email and password. It has no relation with another website called imageshack.us.<!--more--> They just created another domain with the same name but using a different extension.<\/p>\n<p>Below is the screenshot of the imgeshack.info website to warn other future people about this potential phising website. <\/p>\n<p><center><img src='http:\/\/www.janleow.com\/imgs\/wp\/imgeshackinfo.jpg' alt='Don't be fooled! Do not, I repeat, DO NOT enter your ID and password for this kind of phising websites!' \/><br \/>\n<script type=\"text\/javascript\"><!--\ngoogle_ad_client = \"pub-5685769204706262\";\ngoogle_alternate_color = \"eeeecc\";\ngoogle_ad_width = 468;\ngoogle_ad_height = 60;\ngoogle_ad_format = \"468x60_as\";\ngoogle_ad_type = \"text\";\n\/\/2007-08-06: JanLeow.com Blogs\ngoogle_ad_channel = \"5832813811\";\ngoogle_color_border = \"FFFFFF\";\ngoogle_color_bg = \"FFFFFF\";\ngoogle_color_link = \"CC0000\";\ngoogle_color_text = \"000000\";\ngoogle_color_url = \"808080\";\ngoogle_ui_features = \"rc:0\";\n\/\/--><\/script><br \/>\n<script type=\"text\/javascript\"\n  src=\"http:\/\/pagead2.googlesyndication.com\/pagead\/show_ads.js\">\n<\/script><br \/>\n<\/center><br clear=\"all\"><\/p>\n<p>The website terms did put some disclaimer and even have the gall to say that they are not a phising website. Any foolhardy surfer who thinks faster with his fingers than thinking it through with his grey matter would have thought that any info or site passed by your buddy would seem legitimate. Alas, no, it is because your friends MSN Messenger account was already compromise that now as his buddy is also receiving such phising messages.<\/p>\n<p>Sure there are other third party sites like Facebook or Trillian where you can key in your ID and password to access their services. Still one must do so carefully and not just jump headlong without some thought first.<\/p>\n<p>When I queried back my MSN buddy, they have no idea that they send in the link. That meant the website has already harvested his account and could now log in and sent out various kind of spam without their knowledge. Some to lure additional unsuspecting MSN messenger users, and perhaps finally to steal any sensitive information such as credit card details, login details for online banking, or other sensitive information.<\/p>\n<p>A check using whois showed that the website was registered to a person in Panama City for a TST Management company. I wonder how correct is the information, because I did make a whois check for this similar type of website some months ago and it was registered to a person located in China. The registered date for this website was on the 14-June-2008, so I guess the moment they found out somebody was on to them they just re-register a new domain using another server located somewhere in world.<\/p>\n<p>Next time when your online instant messenger friends pass you a link, think carefully whether the origin was actually from your friend or from someone else more sinister.<\/p>\n<hr>\n<p>Update 18-June-2008<\/p>\n<p>Here they go again, making similar sounding website, but ending with a login similar with the above picture. if you see image-fly.info, this is a phising website; the difference is with the dash, the correct website is www.imagefly.info.<\/p>\n<p>Sigh&#8230;!<\/p>\n<hr>\n<p>update 11-July-2008<\/p>\n<p>Here&#8217;s another few more of the same:<br \/>\nwww.coooool.info\/<br \/>\nwww.imagrshak.info\/<\/p>\n<hr>\n<p>update 4-Aug-2008<br \/>\nJust listing them as they come&#8230;<\/p>\n<p>www.datsyou.com<br \/>\nwww.youpichost.com:88<br \/>\nwww.summarypic.com:88<br \/>\nwww.frieendz.com<\/p>\n<p>Related post:<\/p>\n<ul>\n<ul>\n<li><a href=\"http:\/\/www.janleow.com\/life\/credit-card-phising.html\">Credit Card Phising Scam<\/a>\n<li><a href=\"http:\/\/www.janleow.com\/life\/potential-phising-website-imgeshack-info.html\">Image Shack Phising site scam<\/a>\n<li><a href=\"http:\/\/www.janleow.com\/life\/phising-website-msn-block-delete-checker.html\">MSN Block Delete Checker Scam<\/a>\n<li><a href=\"http:\/\/www.janleow.com\/life\/jhoos-dating-messenger-scam-site.html\">Jhoos Dating Messenger Scam<\/a>\n<li><a href=\"http:\/\/www.janleow.com\/life\/tsuen-wan-international-hong-kong-scam.html\">Tsuen Wan International HK Investment Scam<\/a>\n<\/ul>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Potential Phising site If this is not a clear case of a website phising for id and password then I don&#8217;t know what this is. Every now and then my MSN Messenger buddies will pop a url link to this imgeshack.info website. The website is really simple, just a page requesting you to key in &hellip;<\/p>\n<p class=\"read-more\"> <a class=\"\" href=\"https:\/\/www.janleow.com\/life\/potential-phising-website-imgeshack-info.html\"> <span class=\"screen-reader-text\">Potential phising site &#8211; imgeshack.info<\/span> Read More &raquo;<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_newsletter_tier_id":0,"footnotes":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false,"jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[13],"tags":[119],"jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p1bS5F-27","jetpack-related-posts":[{"id":214,"url":"https:\/\/www.janleow.com\/life\/phising-website-msn-block-delete-checker.html","url_meta":{"origin":131,"position":0},"title":"Phising website &#8211; MSN block delete checker &#8211; different look, same modus operandi","author":"Jan","date":"19 August 2008","format":false,"excerpt":"Whoa, so they try to change their look to trick unsuspecting MSN instant messenger user into giving up their user id and password, no? The phising trick is still the same, enter your MSN login id and password and that's it. You are hacked! This is what the website looked\u2026","rel":"","context":"In &quot;Opinions&quot;","block_context":{"text":"Opinions","link":"https:\/\/www.janleow.com\/life\/category\/opinions"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1590,"url":"https:\/\/www.janleow.com\/life\/jhoos-dating-messenger-scam-site.html","url_meta":{"origin":131,"position":1},"title":"Jhoos dating messenger scam site","author":"Jan","date":"9 July 2010","format":false,"excerpt":"I have been getting Jhoos dating messenger invite from friends. All the while I just ignored it. But this time I got curious and decided to click the \"Yes\" button. But what I see looks awfully suspicious. Instead of a sign up page it asked you to key in your\u2026","rel":"","context":"In &quot;General&quot;","block_context":{"text":"General","link":"https:\/\/www.janleow.com\/life\/category\/general"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1606,"url":"https:\/\/www.janleow.com\/life\/careful-about-email-spoofing.html","url_meta":{"origin":131,"position":2},"title":"Careful about Email Spoofing","author":"Jan","date":"15 July 2010","format":false,"excerpt":"Received this message that supposedly came from Facebook. But turn out the URLs do not point to Facebook at all. If the link were to be clicked it would redirect you to a Pharmacy website selling fake medicine. This is considered spam. Fortunately it wasn't a phising website. Losing your\u2026","rel":"","context":"In &quot;General&quot;","block_context":{"text":"General","link":"https:\/\/www.janleow.com\/life\/category\/general"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":79,"url":"https:\/\/www.janleow.com\/life\/credit-card-phising.html","url_meta":{"origin":131,"position":3},"title":"How crooks do their phising for credit card details","author":"Jan","date":"4 March 2008","format":false,"excerpt":"I received a suspicious phone call. A man claimed to be calling from HSBC saying that as a prompt paymaster I will receive a platinum card and a welcome booklet that will enhance my credit card experience. So I said ok. And he proceeded to ask for my HSBC number\u2026","rel":"","context":"In &quot;Opinions&quot;","block_context":{"text":"Opinions","link":"https:\/\/www.janleow.com\/life\/category\/opinions"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":3092,"url":"https:\/\/www.janleow.com\/life\/tsuen-wan-international-hong-kong-scam.html","url_meta":{"origin":131,"position":4},"title":"Tsuen Wan International Hong Kong &#8211; Scam?","author":"Jan","date":"5 July 2011","format":false,"excerpt":"Could this Tsuen Wan International investment company be a fraud or scam? No idea. However I didn\u2019t want to risk it. It all started with some calls coming in via the office and mobile phone. I didn\u2019t think too much about the phishing tactic and gave some information when the\u2026","rel":"","context":"In &quot;General&quot;","block_context":{"text":"General","link":"https:\/\/www.janleow.com\/life\/category\/general"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1269,"url":"https:\/\/www.janleow.com\/life\/social-websites-you-are-who-you-know.html","url_meta":{"origin":131,"position":5},"title":"Social Websites: You are who you know","author":"Jan","date":"13 March 2010","format":false,"excerpt":"When using social websites like Facebook, Twitter, etc, usually we try not to divulge too much information. After all there are unscrupulous shenanigans out to phish information that you publicly display. Identity theft is pretty dangerous for you. You may try to protect yourself by limiting the number of information\u2026","rel":"","context":"In &quot;General&quot;","block_context":{"text":"General","link":"https:\/\/www.janleow.com\/life\/category\/general"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/posts\/131"}],"collection":[{"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/comments?post=131"}],"version-history":[{"count":0,"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/posts\/131\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/media?parent=131"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/categories?post=131"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.janleow.com\/life\/wp-json\/wp\/v2\/tags?post=131"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}