Wednesday, January 12, 2011

Work of Genius!

Have a look at this link : Duplicate Site

Now have a look at this site : Original Site

Did you spot any difference? The duplicate site is a duplicate site because it is a Pishing Site.
Pishing Sites are duplicate sites that are designed and developed to fool ignorant people. Online Banking is not a new thing but it is always a new thing for those who use it for the first time. Moreover, those who work in a hurry or have over confidence also fall prey to the Pishing Sites. Lastly, luck plays an important role in getting robbed or winning a lottery, which simply is beyond the scope of human beings. However, precautionary measures can be taken to avoid problems.

The Duplicate Site mentioned here is work of genius. It does not allow right click, it looks like the Original SBI site and it makes you feel that you are going in the right direction.


नकली साईट


असली साईट , Look at the green security certificate

Have a look at the two snapshots and you will understand the difference between an original and duplicate site. An original site will always provide a security certificate, which is usually green in color. Secondly, when you try to login the URL changes from http to https, where 's' stands for secure. However, the duplicate site here is designed skillfully and you do not feel that it is duplicate or fraud. It can reach you like Online SBI or Online SBI Demat or Pay Online SBI.

When you move ahead with this duplicate site, there are high chances that your Anti Virus or Mozilla [Browser] itself will detect the phishing site and warn you. If you dont have any anti virus or intelligent browser then things can take bad shape.

However, if you want to admire and see how these hackers work, have a look at the snapshots ;)


You get a waring if browser is intelligent




Replica of OnlineSBI login page

Look at the top message and then enter your details. I entered random details and the website said that I had some limit fuck up with my account, so I should enter my card details.

Make sure you don't get fucked up because of such sites.
However, if you already know about Phishing Attacks you can spread the word and admire this Work of Genius ;)
Cheers!

This is what one user has to say and it does make sense.


The green bar at the top(which you have shown as a prominent difference) is only visible in Firefox. The more fool-proof way of authenticating a website is looking for the 'padlock' symbol in the lower right corner of your browser. Before you enter your password anywhere (google, gmail,irctc,SBI,billdesk,paypal), make sure the padlock symbol appears without any exclamation mark. The padlock symbol indicates that the security certificate presented by the site is authentic and belongs to the openend site only. And as a spin off Facebook does not as yet use security certificates, hence its passwords can be intercepted by attackers. SO PLEASE DON'T GIVE THE SAME PASSWORD TO YOUR FACEBOOK AND MAIL ACCOUNTS.

7 comments:

Deepak Bagga said...

very informative..

Sharma, Nishit said...

Thanks bro for the info...tum IT main aa jao as a security analyst ;)

Anonymous said...

The green bar at the top(which you have shown as a prominent difference) is only visible in Firefox. The more fool-proof way of authenticating a website is looking for the 'padlock' symbol in the lower right corner of your browser. Before you enter your password anywhere (google, gmail,irctc,SBI,billdesk,paypal), make sure the padlock symbol appears without any exclamation mark. The padlock symbol indicates that the security certificate presented by the site is authentic and belongs to the openend site only. And as a spin off Facebook does not as yet use security certificates, hence its passwords can be intercepted by attackers. SO PLEASE DON'T GIVE THE SAME PASSWORD TO YOUR FACEBOOK AND MAIL ACCOUNTS

vicious said...

thanks ..dint know all of these ..
as always m in the ignorant lot ..

Tarun Goel said...

Thanks XYZ. I missed that, i was so overwhelmed by the beauty of phishing site :)
Thanks for the info.

Madhuri Kunisetty said...

hey....nice of u...there u stand!now -a-days u r doing some useful and productive things rather than ur usual nonsense :P like u..keep it up :)

Unknown said...

very useful, thanks...