Another MobileMe credit card phishing scam surfaces
updated 05:25 pm EDT, Tue September 23, 2008
MobileMe phishing scam
Malicious users are again targeting MobileMe customers with a phishing ploy geared towards obtaining credit card information. According to UGN InfoManager, the scam comes in the form of a billing verification email from Apple, which leads users to an official-looking website. The site is hosted on a fraudulent web server, the domain name being klubdna.com, despite the visual resemblances to Apple's MobileMe account page.
In addition, the originating server DNS addresses have been masked by Joker.com, a site suspected of sympathizing with online criminals.
Fresh-Faced Recruit
Joined: Sep 2008
Fraudulent page, not site
The destinations of links for this campaign are typically legitimate web sites that have been hijacked by phishers. The phishers insert pages (and usually PHP programs) into the site in a new subdirectory undetectable to normal site visitors or even to webmasters who don't check their directory structure or access logs. I received the same phishing message today (sent from a different bot-net PC), which contained a link to a hijacked French web site.