I received a very local-looking phishing email attack lately. I investigated this website in a sandbox environment. This website is based in Hong Kong, and use various tricks to show a gmail logged-out page prompting for password. This is clearly a crime going on. I think we should report this to HK police. Detail: I received an email as follows: ==== 立會擲玻璃杯 特首辦報警 重案組調查 gmail.dynssl.(com)/gmail4.php?account=(my email)@gmail ==== The address traced to a Hong Kong IP address 118.102.8.27 (web address edited and email removed to protect the unwary from entering this malicious website)
Posted on: Thu, 03 Jul 2014 12:44:56 +0000