Tag Archives: security

A nice way to phish

Warning: there’s a random message from your Facebook friend list with a link to a site with the keyword “picoband” on the url. It’s a phising site that design to steal you account password.

fish hook

Remember how Gmail or Yahoo automatically changes words or transform it into a link if the word resemble an address of a site. Well the idea behind this scheme uses this trick to capture a mass of facebook account to click the message in their email inbox. Well i did click it too :) the message wouldn’t work if it’s open from the facebook itself.
but i didn’t enter my account info though, because when i was trying to unblock noscript in my Firefox, the link doesn’t forbid Facebook but forbid picoband. So lucky me for using noscript :)

Pic by slayer23