__/ [ nessuno@xxxxxxxxxxxxxxxxxxx ] on Tuesday 04 April 2006 00:23 \__
> "In a new form of phishing, hackers have cracked the computers hosting
> the web sites of three Florida banks, redirecting banking customers to
> a bogus homepage in order to steal account information and other
> personal data...
> "The hackers entered two servers running Microsoft Internet Information
> Services and planted the script needed to redirect people from the
> banks' legitimate sites to a bogus one..."
,----[ Further Quote ]
| "This new scam is like phishing without the intervening electronic
| mail step," Quarterman said. "Because it is the bank's own web
| (hosted, in this and no doubt many other cases) server that is
| compromised, the customer has even less reason to suspect anything amiss."
When you cannot (be bothered to) use compromised machines to send billions of
fraudulent messages with bad URL's, just have the bank pWned. If that's not
an embarrassment, I don't know what is. The article does not revolve around
liability. The bank was held accountable and compensated the customers who
surely suffered from an ordeal or time drain at the least.
Speaking from experience, the bank managers will not blame Windows. Never!
Windows is golden! Nothing else exists.
Roy S. Schestowitz | Windows O/S: who ownZ you tod4y?
http://Schestowitz.com | SuSE Linux ¦ PGP-Key: 0x74572E8E
12:25am up 26 days 14:08, 11 users, load average: 0.36, 0.36, 0.42
http://iuron.com - next generation of search paradigms