funsec mailing list archives
RE: Should phishing termination be only in the real of the for-profit?
From: "Alex Eckelberry" <AlexE () sunbelt-software com>
Date: Fri, 14 Dec 2007 14:24:49 -0500
I strongly agree that no one should visit these sites unless they know what they're doing (and running in a vmware, etc.). -----Original Message----- From: Dude VanWinkle [mailto:dudevanwinkle () gmail com] Sent: Friday, December 14, 2007 2:16 PM To: Alex Eckelberry Cc: funsec () linuxbox org Subject: Re: [funsec] Should phishing termination be only in the real of the for-profit? On Dec 14, 2007 11:02 AM, Alex Eckelberry <AlexE () sunbelt-software com> wrote:
http://weblog.infoworld.com/zeroday/archives/2007/12/dont_be_a_phish.h tml While there have been some funny examples of people who have gone to great lengths to hoodwink phishers and other online fraudsters -- and some people have even turned the pursuit into a [full-time hobby] (link to http://www.castlecops.com/), new research shows that playing games with the cyber-thieves just might not be a good idea." My response: http://sunbeltblog.blogspot.com/2007/12/this-is-not-cool.html
-------------------------------------------- I actually think that you should only visit those sites from a secure isolated VM/VLAN running FF and NoScript (unless you want to get infect for analysis purposes, then do it from ff or ie in a private vlan, but I digress. On to my point: Putting in swearwords is stupid. If you are going to try and piss off phishers, but in semi-legitimate information so that they have to spend the time finding out which cards are real or not. The best thing I have done is had a card canceled for fraud (alerts will sound if this card is used) and plugged that into phishing scammers pages. This way, they may actually get caught... -JP
Alex Eckelberry _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Should phishing termination be only in the real of the for-profit? Alex Eckelberry (Dec 14)
- RE: Should phishing termination be only in the real of thefor-profit? Alex Eckelberry (Dec 14)
- Re: Should phishing termination be only in the real of the for-profit? Dude VanWinkle (Dec 14)
- RE: Should phishing termination be only in the real of the for-profit? Alex Eckelberry (Dec 14)
- RE: Should phishing termination be only in the real of thefor-profit? Avery Buffington (Dec 14)