Get Rid of New Yahoo Messenger Phising Threat: Holiday-Picz.com
I got a spammy message this night and I believe this is not my friend who buzz me but her Yahoo Messenger virus bot. I’m looking forward for this threat on google and found many result: 1, 2, 3, 4, 5, 6.
In the previous post I talked about postcard.exe virus which infected many people, now the Yahoo messenger threat is coming.
The site itself cannot be opened using safari and firefox which result a phising site. If you found your friend send this message then don’t ever open it.
Take a look at their terms:
We may temporarily access your Yahoo! account to do a combination of the following: 1. Send Instant Messages to your friends promoting this site. 2. Introduce new entertaining sites to your friends via Instant Messages.
This is a free service. You will not be asked to pay at any time. You will not be subscribed to anything asking for payment. This service is made possible by many hours of human effort.
T P Ltd reserves the right to change the terms of use / privacy policy at any time without notice. To view the latest version of this privacy policy, simply bookmark this page for future reference.
You understand that this agreement shall prevail if there is any conflict between this agreement and the terms of use you accepted when you signed up with Yahoo!. You also understand that by temporarily accessing your Yahoo! account, T P Ltd is NOT agreeing to Yahoo!’s terms of use and therefore not bound by them.
This agreement shall be construed and governed by the law of the republic of Panama. You expressly consent to the exclusive venue and personal jurisdiction of the courts located in the Republic of panama for any actions arising from or relating to this agreement.
Look suspicious right? So, once again I asked you not to fill the username and password.
How to get rid of Yahoo messenger Holiday-Picz.com Phising scheme
- Make sure you didn’t click, open or fill your credentials on holiday-picz.com
- Always READ the agreement before filling any username and password online.
- If you accidentally filling that username and password, Log in to yahoo and change your password. The holiday-picz bot is still alive until you changed your password and until the sessions ended.
- Use secure browser like Firefox. Never use Internet Explorer, Firefox and Safari already recognized it as phising site.
That’s all folks, hope you found this post useful, consider tweet this to your friend if you feel this post useful to her.
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_e.png?x-id=b58a9690-6f0b-40c9-8183-528ef51a6b6c)
Get Rid of New Yahoo Messenger Phising Threat: Holiday-Picz.com is posted on March 1st, 2009 by buchin. This post is filed under: yahoo, firefox, google, Instant messaging, Internet Explorer, Mozilla Firefox, Phising, Safari, yahoo, Yahoo Messenger .
[...] ? Recently I reported about the viddyho.com – a gmail phishing issue and now buchin reports a yahoo phissing issue [...]
Guess all these hackers are hell bent on proving they are better than the geeks !!
@Gautam, it’s a simple way to do:
1. Create a fake website which “look like” legitimate one.
2. In the Home page, tell users to log in using their credentials.
3. We own the database, so we can use it to “play”. Just add a little agreement link to the footer and you are all set. People can’t sue or remove this website from webhosting.
4. Promote the website one time only and let it spread virally.
This kind of hacker make use of human feeling like social engineering.
I agree, but even if they put in their terms, it is unethical isn’t it ? And frankly how many users actually look at what is there in terms and conditions.
I know ignorance cannot be a reason not to be mugged, but I get agitated I come across such behavior !
Btw, I just wanted to know if you are available over any messenger – preferably GTalk or Yahoo.
If you do add me on gtalk – gautam.hn and yahoo -> Gautam_hn
/G
@Gautam
I’ve added you dude..