STEAM GROUP
TF2 Outpost by Fanbyte
Membership by invitation only
STEAM GROUP
TF2 Outpost by Fanbyte
160,717
MEMBERS
4,007
IN-GAME
30,486
ONLINE
Founded
7 August, 2011
Language
English
Overview Announcements Discussions Events Members Comments Curator
By: AK87
< 1  2  3  >
Showing 31-31 of 31 entries
In forum "TF2 Outpost General Discussions"
64
Phishing links
you dont get infected by pressing a link :)

A: one has to click the link fill out the information (steam username & steam password & email & password) once a victim does this, this information is sent to the email specified by the hijacker/Phisher.
if a victim provided these information the hijacker is most likely gonna repost his phishing link using his or hers steam account on various groups pages etc.
(so no by clicking the link doesnt make u infected, u can always chose not to fill out any details.)

B: java drive by attack on the other hand is different, java drive by works like this;
hijacker sets up an webpage, he then in the index.hmtl adds a piece of coding with a url to his .exe (which can be a stealer / rat / keylogger whatever he wants as long as it is executeable.

then what happens is that he just needs to post this link ;
http://www.Hijacker.JavaDriveByAttack.com/index.html <----- fake link dont know if it exist :P

normally u would be prompted to run this Java Script, if u accept and click "run" then the java drive by downloads the .exe from the html and executes it without the victim even knowing what hit him and the site would either redirect or just stay on that specific site "keep loading"

if the hijacker also codes and is pretty decent he can remove the the prompt for run and then u pretty much fucked if u press the link :)


so basically its 2 different attacks ;) so maybe u should post the "phishing link" in any case i could easily find the email of the hijacker and then u could report that email :)
(if it is java drive by i could use sandboxie to check the files that gets downloaded and then decompile his .exe and find his ftp login details " method known as whale"


btw whitelist ?
i see alot writing its a good idea but that would only stop it on tf2outpost, so the hijacker would just post the link on youtube imageshack whatever is whitelisted and people would press the links anyway..
if they are stupid enough to press the links on tf2 outpost they are also stupid enough to press it on youtube or whatever whitelisted site :)
< 1  2  3  >
Showing 31-31 of 31 entries

Discussions Rules and Guidelines