Need help? Ask the community or hire an expert.
Go to Avira Answers
Target:Sparkasse
Date discovered:24/06/2007

 General The goal is to get the following information:
    • Bank account


Phishing method:
    • URL link

 Email Details From: online-id*******@vr-networld.de
Subject: Sparkasse informiert Sie

Visible link: http://sitzungid_*****.sparkasse.de/kundendienst/anfang.cgi
Actual link: http://sitzungid_*****.sparkasse.de.mysosp.at/kundendienst/anfang.cgi
IP address: 58.181.164.182


The email is designed to avoid detection from Antispam and Antiphishing. Such techniques are:
    • The Body contains invisible Text.
    • The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://sitzungid_*****.sparkasse.de.mysosp.at/kundendienst/anfang.cgi
Actual URL: http://sitzungid_*****.sparkasse.de.mysosp.at/kundendienst/anfang.cgi
IP address: 58.181.164.182


The phishing page will look like the following:


설명 삽입자 Dominik Auerbach   2007년 6월 25일 월요일
설명 업데이트 Dominik Auerbach   2007년 6월 25일 월요일

뒤로 . . . .
https:// 이 창은 보안을 위해 암호화되었습니다.