Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	ZeuS botnet code keeps getting better… for criminals
•	iPhone apps usage shifts into high gear at night, on weekends
•	AT&T CEO's pay jumps 35% to $20.3 million in 2009
•	MySpace Extends Social Network to Microsoft Outlook
•	Salesforce.com outage has customers tweeting
•	Ethernet switch sales may have forced Brocade product exec out
•
•	Banish Seven Bad Tech Habits
•	Pennsylvania fires CISO over RSA talk
•	Tighter security coming for .org names
•	IE zero-day exploit code goes public
•	After takedown, botnet-linked ISP Troyak resurfaces
•	NASA, cosmos community turn up volume on International Space Station
•	Poor Bill Gates: Mexican telecom tycoon grabs Richest Man title
•	More breaking news

Applications /

Compendium /

Why banks shouldn't use frames on their Web pages

By Adam Gaffin
Network World Fusion 09/29/04

A couple months ago, I started getting phishy messages "warning" me about a problem with my SunTrust ATM card. Even with no sleep, I could tell they were bogus - I don't have a SunTrust account (note to phishers:So cut that out). But obviously, some people do. Netcraft reports the Sun Trust phishers figured out how to use SunTrust's own pages in their social engineering.

SunTrust was using HTML frames to embed stock information from a third-party provider on one of its pages. The phishers amended the URL to have one of the frames pick up their bogus "let us rip you off" forms, then sent out their e-mails. Voila: A URL that looked like it really was from SunTrust, because the important part, i.e., the left side, really was.

TrackBack

Back to Compendium

Comments

Post a comment

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.

HOME

RESEARCH CENTERS

NEWS

EVENTS

Contact us | Terms of Service/Privacy | How to Advertise
Reprints and links | Partnerships | Subscribe to NW
About Network World, Inc.