Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
Thread Rating:
  • 0 Vote(s) - 0 Average


Beware of Phishing Attacks filter_list
Author
Message
Skullmeat Offline
"It's cute! Can I kill it?"
*******
Registered (Diamond)
Twelve Years of Service
Posts: 2,641
Threads: 281
Reputation: 72

Points: 411.85NSP
SocialTech SavvyCookieSanta HatGamerAkaneNinjaGoldJack-O-Lantern
Beware of Phishing Attacks 04-20-2016, 10:56 PM #1
A user had a rigged signature that would bring a popup asking for mybb credentials. If you see one of these popups, DO NOT enter your login details. If you have entered your login details to one of these popups, change your password as soon as possible.

[Image: VaCOBRz.jpg]
[Image: skullsigirys.png]

[+] 3 users Like Skullmeat's post

Blue Offline
yo'
Registered (Legends)
Eleven Years of Service
Posts: 1,925
Threads: 238
Reputation: 22

Points: 309.99NSP
Jack-O-LanternEliteStonerGold
RE: Beware of Phishing Attacks 04-20-2016, 11:00 PM #2
wtf.

Someone find this lil pussy bitch.

Thanks for letting us know tho @Skullmeat luckily I have yet to see this!
[Image: xlbdwZT.png]

[+] 1 user Likes Blue's post

OnlyTheFewWillSurvive Away
Registered (Legends)
Registered (Legends)
Ten Years of Service
Posts: 79
Threads: 13
Reputation: 5

Points: 68.75NSP
Elite
RE: Beware of Phishing Attacks 04-20-2016, 11:00 PM #3
Thanks never knew this could happen.


Inori Offline
Money is fake
 *******
Registered (Diamond)
Eleven Years of Service
Posts: 3,513
Threads: 830
Reputation: 99

Points: 429NSP
GoldReputableBunnyFireworksAgelessSanta HatTurkeyDonator (Rank II)BitcoinPower PosterAward WhoreOver 9000Hoarder
RE: Beware of Phishing Attacks 04-20-2016, 11:14 PM #4
Didn't think inserting scripts was possible with MyCode.. Will look out for this.

On a sidenote, do you have a list of threads that this has happened in? Might be able to deduce who it is.
It's often the outcasts, the iconoclasts ... those who have the least to lose because they
don't have much in the first place, who feel the new currents and ride them the farthest.


Dismas Offline
Retired (02/25)
 ********
Twelve Years of Service
Posts: 18,156
Threads: 1,994
Reputation: 204

Points: 876NSP
StaffNight OwlBirthdayReputableGold
RE: Beware of Phishing Attacks 04-20-2016, 11:16 PM #5
(04-20-2016, 11:14 PM)Inori Wrote: Didn't think inserting scripts was possible with MyCode.. Will look out for this.

On a sidenote, do you have a list of threads that this has happened in? Might be able to deduce who it is.

It's just htaccess/htpasswd. But yeah, don't be a dumbass and enter your info.
[Image: fSEZXPs.png]


Customer Offline
VR Enthusiast
Otaku
Eleven Years of Service
Posts: 4,105
Threads: 124
Reputation: 40

Points: 43.24NSP
Member of the MonthNight OwlJack-O-LanternNinjaLovedStaffSuper EliteLegendaryPower PosterAward WhoreYouTubeReputableStonerGoldAgelessCookieHoarderOver 9000Birthday
RE: Beware of Phishing Attacks 04-20-2016, 11:36 PM #6
I wouldn't have anyways hah..

Thanks for the heads up!
[Image: tenor.gif]

🍫  🍬 🎀


m0dem Offline
Oni 2.0
 *******
Registered (Diamond)
Ten Years of Service
Posts: 1,310
Threads: 66
Reputation: 103

Points: 433NSP
CookieGoldReputable
RE: Beware of Phishing Attacks 04-20-2016, 11:42 PM #7
(04-20-2016, 11:16 PM)Oni Wrote: It's just htaccess/htpasswd. But yeah, don't be a dumbass and enter your info.

I don't really understand what you mean by htaccess/htpasswd.
But anyway, that's scary.
If someone falls for it though... idk what to say. xD


MLP Offline
Junior Member
Eight Years of Service
Posts: 18
Threads: 4
Reputation: 0

Points: 29NSP
RE: Beware of Phishing Attacks 04-20-2016, 11:45 PM #8
(04-20-2016, 11:42 PM)m0dem Wrote: I don't really understand what you mean by htaccess/htpasswd.
But anyway, that's scary.
If someone falls for it though... idk what to say. xD

He is basically saying that by using a HTPASSWD (http://www.colostate.edu/~ric/htpass.html)
the guy was able to lock down his image with a valid .png so therefore it bypassed the image filters,
But due to the bypass working he could throw a custom message in attempt to gain failed HTACCESS attempts storing user creds,
Its quit a smart attack actually but poorly managed and I assume not very organised by not even using a domain.

[+] 1 user Likes MLP's post

PLX-2M Offline
Registered (Bronze)
 ***
Registered (Bronze)
Eight Years of Service
Posts: 117
Threads: 29
Reputation: 0

Points: 71.5NSP
RE: Beware of Phishing Attacks 04-21-2016, 12:16 AM #9
...or run NoScript plugin
PLX-2M
~ Dead Enough For Life ~


Shadow.walker Offline
"Got Needles?"
Eight Years of Service
Posts: 62
Threads: 15
Reputation: 0

Points: 126.5NSP
RE: Beware of Phishing Attacks 04-21-2016, 12:23 AM #10
I've didn't get it! ..isn't this attack progressed by someone who is already at your own wife Network or maybe your own ISP which trying to Sniff/inject Your Browser Cookies with old Fake phishing kiddy script!?
I just didn't get what's this had to do with us or sinister site!!?...it's all progressed by your own network if you have seen this script running!.

[+] 1 user Likes Shadow.walker's post







Users browsing this thread: 1 Guest(s)