|
Description:
This is Trend Micro's detection for an HTML-coded Web page that prompts the user to input various Visa account credentials.
The following is a screenshot of the Web page:
The spoofed Web page, like the one above, is actually one of the two main components of a typical Phishing attack. The other component is a spammed email that contains a link to the malicious Web page. Here is a sample of the email that redirects users to the Web page shown previously:
This HTML script exploits an Internet Explorer (IE) vulnerability, enabling a malicious user to spoof a Web page to obtain Citibank ATM/Debit card and PIN numbers of target users. It runs on systems supporting the IE environment.
The vulnerability exploited by this malicious HTML script affects Internet Explorer 5.01, 5.5, and 6.0. More information on the vulnerability is available at Microsoft Knowledge Base Article - 833786.
For additional information about this threat, see:
Solution
Technical Details
Description created: Jan. 21, 2004 8:52:48 PM GMT -0800
Description updated: Jan. 21, 2004 9:33:14 PM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
