I published the following diary on isc.sans.org: “Analysis of a Paypal phishing kit“.
They are plenty of phishing kits in the wild that try to lure victims to provide their credentials. Services like Paypal areÂ nice targets and we can find new fake pages almost daily. Sometimes, the web server isnâ€™t properly configured and the source code is publicly available.Â A few days ago, I was lucky to find a ZIP archiveÂ containing a very nice phishing kit targeting Paypal. I took some time to have a look at it… [Read more]