Alert: Yahoo Fake Login Screen is on Yahoo’s Geocities itself!
Few days back, I got a mail from one of my friend saying her yahoo account has been hacked! The Chinese attacker accomplished this by creating a fake-login screen! Actually there is more victims to this yahoo fake-login screen. While this type of attack isn’t new, what makes people vulnerable as this one is uploaded on yahoo’s geocities itself!
Posting here are ways to protect yourself…
1. Trying Wrong Password (Simple)
If you suspect the login-screen next to you is fake, then best way is to enter wrong password. While a genuine login screen will return an error such as “wrong user name or password” the fake one will redirect you to pre-configured page!
2. Checking source code… (Advance)
You can also inspect source-code of login screen…
Look for
tags… (or you can directly search for “action” attribute)
Now original “action” value for yahoo photo’s is,
“https://login.yahoo.com/config/login?“
Its enough to check high-level domain (as shown in red color). Creating a fake-login screen is quite simple so if hacker attacker is really naive, then this will works 99.99999% of the time! There is only one way out for attacker and it depends much more on victims foolishness as well as luck!
A fake login screen will always have different value for action attribute…
few ex:
- https://user.yahooo.com/config/login? (note extra O in yahoo)
- http://myserever.com/fakelogin.cgi
- etc…
For those relying on “forget password” option then there is another bad news…
This guy is smart enough to change PIN and COUNTRY information in all his victims yahoo account so they could not get even security question to answer!!!
If you like this post, you may subscribe to my RSS feed or email alerts to receive automatic updates in future! Thanks for reading... :-)
Related Posts
- ALERT: Beware of these fake ORKUT Links!!!
- Orkut Showing Last Login Info to Secure Users!
- Multiple Yahoo Messenger Hack - Using Many Yahoo Accounts at once!
- ALERT! indiatimes.com is insecure!
- Hacking: Yahoo, Hotmail, Gmail, etc - The Facts
- Check Who is Invisible/Online on Yahoo Messenger Status Hacks!
- View Passwords Stored by Internet Explorer, Yahoo, Google Talk Messengers & Email Clients!
- Finding IP of MSN, Yahoo users!
- Alert – FreePremiumAccounts.com offers contains spywares!
- New Orkut Bug Let Anyone Edit & Delete Photos of Any Orkut user [ALERT]
Loading ...
Demander of Hell said, on March 24, 2008 @7:21 am
there are firefox addons to avoid phishing… :p
Rahul Bansal said, on March 24, 2008 @1:20 pm
@Demander of Hell
Thanks for reminding. I will try to post about such addons soon!
jashen said, on April 9, 2008 @12:41 am
Hi Rahul,
This is the first website i’ve come across which has so many tips and tricks. You’ve put so much effort into presenting this info to ‘normal’ people like me.
This is just a short note to let you know that i think You’re a genius!
Jash
Rahul Bansal said, on April 9, 2008 @11:37 am
@jashen
Thanks for your appreciation buddy!