Comments on: Watch out for “Mr-Brain.php” - phishing script http://blog.preshweb.co.uk/2007/05/watch-out-for-mr-brainphp-phishing-script/ Motorcycles, computers and beer Wed, 07 Jan 2009 10:40:06 +0000 http://wordpress.org/?v=2.8-bleeding-10187 hourly 1 By: ShopShield http://blog.preshweb.co.uk/2007/05/watch-out-for-mr-brainphp-phishing-script/comment-page-1/#comment-15043 ShopShield Wed, 09 Apr 2008 16:14:34 +0000 http://blog.preshweb.co.uk/index.php/2007/05/02/watch-out-for-mr-brainphp-phishing-script/#comment-15043 Identity theft is certainly a very real thing to deal with and the internet only makes it easier to become a victim. Email phishing scams are everywhere and most people can't tell the difference between a real site and the fake one. I found this new resource called <a href="http://www.shopshield.net">ShopShield.net</a>. Check it out they protect your identity while you are online. Identity theft is certainly a very real thing to deal with and the internet only makes it easier to become a victim. Email phishing scams are everywhere and most people can’t tell the difference between a real site and the fake one. I found this new resource called ShopShield.net. Check it out they protect your identity while you are online.

]]> By: bigpresh http://blog.preshweb.co.uk/2007/05/watch-out-for-mr-brainphp-phishing-script/comment-page-1/#comment-1235 bigpresh Fri, 11 May 2007 10:39:10 +0000 http://blog.preshweb.co.uk/index.php/2007/05/02/watch-out-for-mr-brainphp-phishing-script/#comment-1235 Update: Googling for "yassine.h01" no longer returns the site hosting pre-made phishing sites, so maybe the host acted on the report and took it down. Update: Googling for “yassine.h01″ no longer returns the site hosting pre-made phishing sites, so maybe the host acted on the report and took it down.

]]> By: bigpresh http://blog.preshweb.co.uk/2007/05/watch-out-for-mr-brainphp-phishing-script/comment-page-1/#comment-1233 bigpresh Fri, 11 May 2007 10:24:56 +0000 http://blog.preshweb.co.uk/index.php/2007/05/02/watch-out-for-mr-brainphp-phishing-script/#comment-1233 Still seeing more Mr-Brain.php scripts, often with different "Created By" lines, including: ---------------Created BY Mr-c/qadir------------------------------ Still seeing more Mr-Brain.php scripts, often with different “Created By” lines, including:
—————Created BY Mr-c/qadir——————————

]]> By: bigpresh http://blog.preshweb.co.uk/2007/05/watch-out-for-mr-brainphp-phishing-script/comment-page-1/#comment-1112 bigpresh Tue, 08 May 2007 09:21:36 +0000 http://blog.preshweb.co.uk/index.php/2007/05/02/watch-out-for-mr-brainphp-phishing-script/#comment-1112 Another similar looking script I found was named Sitekey.php which was part of a Bank of America phishing site... it looks like it's either made by the same person, or just modified by someone. It contains "Created By xXMr_SpAmErSxX" in the mail it sends. I also saw one called log.php which it seems is designed to steal Hotmail cookies, containing "abdullah00" and "By Mr.ALJoOoKeR". Another similar looking script I found was named Sitekey.php which was part of a Bank of America phishing site… it looks like it’s either made by the same person, or just modified by someone. It contains “Created By xXMr_SpAmErSxX” in the mail it sends.

I also saw one called log.php which it seems is designed to steal Hotmail cookies, containing “abdullah00″ and “By Mr.ALJoOoKeR”.

]]>