[Web4lib] Phishing exploits in emails

Drew, Bill drewwe at MORRISVILLE.EDU
Wed Feb 7 17:55:01 EST 2007


I have been getting a lot of phishing emails supposedly from Amazon.
It is quite irritating since I do a lot of business on Amazon.  I looked
at the source code for one of the messages and found this web address:
//www.holyspirit-indy.org/pack46/.support/www.amazon.com/flex/sign-out.h
tml/2Fhomepage=protocol=httpsaction=sign-out/exec.php?cmd=sign-in
 
I went to the website www.holyspirit-indy.org and found the website for
the Holy Spirit Catholic Church of Indianapolis.  I called them to tell
them that their webserver was being used for phishing exploits.  The
priest I talked to was quite happy to have my phone call.  He was going
to talk to their website administrator.  Is this type of hack common and
how do idiots get this type of access?  I am curious since most of the
phish e-mails I get come from places like China, South Korea, or Russia.
 

Wilfred (Bill) Drew 
Associate Librarian, Systems and Reference
Morrisville State College Library
E-mail: mailto:drewwe at morrisville.edu
AOL Instant Messenger:BillDrew4
Facebook me <http://www.facebook.com/p/Bill_Drew/202201900> 
BillDrew.Net: http://billdrew.net/
Wireless Librarian: http://people.morrisville.edu/~drewwe/wireless/
Library: http://library.morrisville.edu/
SUNYConnect: http://www.sunyconnect.suny.edu/
My Blog:http://babyboomerlibrarian.blogspot.com

"They that can give up essential liberty for a little temporary safety
deserve neither liberty nor safety." Ben Franklin, 1759



More information about the Web4lib mailing list