NEWS FROM THE LAB - Tuesday, September 9, 2008

Trustworthy Domain Posted by Mikko @ 12:46 GMT

So, let's say you get an e-mail from your bank, asking to confirm your details.

You follow the link and end up at a site such as this:


Looks good.

Let's have a closer look at the domain information.


Turns out the bank site is hosted in Hong Kong. Which is not itself suspicious, I guess…

And the domain was registered yesterday. That could be a coincidence.

The nameservers of the site are hsiaf5978.com, fgtvj4737.com and hsa9gdfg3.com…erm…which isn't necessarily a bad thing.

And the administrator's e-mail address is newlolita2008@gmail.com. Ho hum.