Need help? Ask the community or hire an expert.
Go to Avira Answers
Target:Sparkasse
Date discovered:24/06/2007

 General The goal is to get the following information:
    • Bank account


Phishing method:
    • URL link

 Email Details From: online-id*******@vr-networld.de
Subject: Sparkasse informiert Sie

Visible link: http://sitzungid_*****.sparkasse.de/kundendienst/anfang.cgi
Actual link: http://sitzungid_*****.sparkasse.de.mysosp.at/kundendienst/anfang.cgi
IP address: 58.181.164.182


The email is designed to avoid detection from Antispam and Antiphishing. Such techniques are:
    • The Body contains invisible Text.
    • The Body of the email contains HTML content.



This screenshot is how the phishing email looks like:


 Page Details Visible URL: http://sitzungid_*****.sparkasse.de.mysosp.at/kundendienst/anfang.cgi
Actual URL: http://sitzungid_*****.sparkasse.de.mysosp.at/kundendienst/anfang.cgi
IP address: 58.181.164.182


The phishing page will look like the following:


Açıklamayı yerleştiren Dominik Auerbach tarihinde 25 Haziran 2007 Pazartesi
Açıklamayı güncelleyen: Dominik Auerbach tarihinde 25 Haziran 2007 Pazartesi

Geri . . . .
https:// Bu pencere güvenlik amacıyla şifrelenmiştir.