Hashemian Blog: Phishing the hosts

Hashemian Blog

Huh? What?

Monday, November 08, 2004

Phishing the hosts

A new and more stealth phishing scam has entered the Internet scam market. According to this link, scammers are now able to manipulate the hosts files in users' computers, thus redirecting them to their nefarious Web sites without the user ever realizing it. This is mainly done with script-laden emails, some of which may not even require users clicking on any links – just opening the email is enough.

Frankly I am surprised that it took this long for scammers to employ this trick. But abolishing the hosts file, as some experts might suggest, is not a solution to curb the crackers using this trick. First of all hosts files are still legitimate means of translating names into ip addresses. I bet many organizations still use them internally as a quick and simple DNS alternative. Secondly, hosts files are invaluable for debugging. I can't tell you how many times I have used the hosts file to troubleshoot DNS problems, access issues, or other host name related quirks. Without the hosts file, I would have had to tinker with a name server which is a lot more complex and may itself be the root of the problem.

Finally, who's to say the bad actors won't change the computer's DNS entries to point to their own evil name servers. If they can change the hosts files, modifying DNS entries takes just a little more work.

Let's not eliminate a helpful tool out of fear and desperation. Practicing good security is the only way to fight these types of attacks.
<Phishing the hosts>

// posted by rh

0 comments |

0 Comments:
Post a Comment

Links

Technorati Profile

TMCnet.com

ARCHIVES

09/01/2003 - 10/01/2003
03/01/2004 - 04/01/2004
04/01/2004 - 05/01/2004
05/01/2004 - 06/01/2004
06/01/2004 - 07/01/2004
07/01/2004 - 08/01/2004
08/01/2004 - 09/01/2004
09/01/2004 - 10/01/2004
10/01/2004 - 11/01/2004
11/01/2004 - 12/01/2004
12/01/2004 - 01/01/2005
01/01/2005 - 02/01/2005
02/01/2005 - 03/01/2005
03/01/2005 - 04/01/2005
04/01/2005 - 05/01/2005
05/01/2005 - 06/01/2005
06/01/2005 - 07/01/2005
07/01/2005 - 08/01/2005
08/01/2005 - 09/01/2005
09/01/2005 - 10/01/2005
10/01/2005 - 11/01/2005
11/01/2005 - 12/01/2005
12/01/2005 - 01/01/2006
01/01/2006 - 02/01/2006
02/01/2006 - 03/01/2006
03/01/2006 - 04/01/2006
04/01/2006 - 05/01/2006
05/01/2006 - 06/01/2006
06/01/2006 - 07/01/2006
07/01/2006 - 08/01/2006
08/01/2006 - 09/01/2006
09/01/2006 - 10/01/2006
10/01/2006 - 11/01/2006
11/01/2006 - 12/01/2006

Read Financial Markets | Home | Blog | Web Tools | News | Articles | FAQ | About | Contact

© 2001-2009 Robert Vahid Hashemian

Support the effort

Liked this page?
Please consider creating a link to it
from your Web site.

هاشمیان.com

Home

Blog

Web Tools
Usage

News

FAQ

Financial Markets Book
Read Complete Book

BOOK
Phishing: Cutting the Identity Theft Line
Russell Dean Vines
~~$29.99~~

BOOK
Phishing Exposed
Lance James
~~$49.95~~

BOOK
Phishing and Countermeasures: Understanding the Increasing Problem of Electronic Identity Theft
~~$90.50~~

BOOK
The Phishing Manual: Compendium to the Music of Phish
Dean Budnick
~~$9.70~~

BOOK
Scams & Swindles: Phishing, Spoofing, ID Theft, Nigerian Advance Schemes Investment Frauds: How to Recognize And Avoid Rip-Offs In The Internet Age
~~$11.95~~

|phishing-hosts|

Get Kindle, $259

Visits:

American Atelier Angels HEAVENLY HOSTS Cups & Saucers
$5.00
Ends: Tue Dec 15, 2009 18:32:00 EST

Grape and Wheat Communion Pyx For Hospital Calls Hosts
$19.95
Ends: Wed Nov 25, 2009 19:24:59 EST

IHS Altar Communion Pyx For Hospital Calls For Hosts NR
$14.21
Ends: Thu Nov 26, 2009 13:55:36 EST

NRFB Barbie Alice Wonderland Mad Hatter Hosts Doll 2007
$19.99
Ends: Thu Nov 26, 2009 20:27:18 EST

THE HOSTS OF THE AIR *1915 SCARCE WW1 SERIES, 1ST ED
$24.99
Ends: Thu Nov 26, 2009 20:48:35 EST