[Owasp-leaders] Fwd: Termination Request

Munir Njiru munir.njiru at owasp.org
Wed Jan 28 06:22:58 UTC 2015


its a phish that goes to:

http://coneecta.com.mx/wp-content/plugins/general/index.html


seems it was a hacked wordpress site that had a phishing page added. It's
been happening alot lately you can read more about that and similar attacks
here:

http://munir.skilledsoft.com/the-phish-lives/

its actually a poorly done phishing page this is what it looks like:


​when you fill in the information it;s posted to a page blaze.php which
sends the information you filled to the attacker's email

Munir Njenga,
OWASP Chapter Leader (Kenya) || Information Security Consultant || Developer
Mob   (KE) +254 (0) 734960670

=============================
Chapter Page: www.owasp.org/index.php/Kenya
Email: munir.njiru at owasp.org
Facebook: https://www.facebook.com/OWASP.Kenya
Mailing List: https://lists.owasp.org/mailman/listinfo/owasp-Kenya


On Wed, Jan 28, 2015 at 6:32 AM, Robert Shullich <robert.shullich at owasp.org>
wrote:

> This is a phishing attack to get you to give up your cress
>
> Sent from my iPhone
> Robert Shullich, CPP, CISSP, CISM, GSEC, CIPP/US
> Enterprise Security Architect
> Tower Group Companies
> Pro Box 026156
> Brooklyn NY 11202
> (201) 291-7432 (Direct)
> (201) 221-8767 (Fax)
> (908) 419-5417 (Mobile)
>
>
> On Jan 27, 2015, at 10:17 PM, Venkatesh Jagannathan <venki at owasp.org>
> wrote:
>
> Is this valid? I did not raise any such request.
>
> T&R,
> Venki
> ---------- Forwarded message ----------
> From: "Email Admin" <frankbeverly at ymail.com>
> Date: 28-Jan-2015 8:28 am
> Subject: Termination Request
> To:
> Cc:
>
> [image: img]
> Dear Email User,
> You started the process to terminate your email account,
>
> If this was you follow the link below to speed termination
> Сlісk ---> Yes this was me
> <http://coneecta.com.mx/wp-content/plugins/general/index.html>.
> otherwise;
> Сlісk ---> Νο thіѕ wаѕn't mе
> <http://coneecta.com.mx/wp-content/plugins/general/index.html>
> *NOTE*: Ρhοnе numЬег аnd аltегnаtе еmаіl
> linked to you email account will be required
> for identity validation purposes.
>
>
>
> *Mail Service Team.*
> ©1998 - 2015 Powered by Google
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150128/4b5fe5da/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: phish.png
Type: image/png
Size: 50713 bytes
Desc: not available
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150128/4b5fe5da/attachment-0001.png>


More information about the OWASP-Leaders mailing list