Phishing Gets Proactive
Scaring the bejesus out of a lot of security folk this weekend is a new kind of phishing attack that doesn’t require the victim to do anything but visit the usual websites he might visit anyway. It works like this: The bad guy uses a weakness in web servers running Internet Information Services 5.0 (IIS) and… Read More »