[Am-info] New e-mail scam taps antiterrorist push

[Fred Miller]

"The latest letter states that unless recipients confirm their personal 
information by going to what looks like an FDIC Web site, then their account 
will lose its protection. The link to the Web site provided in the e-mail 
message leads to a server in Karachi, Pakistan, CNET News.com has discovered. 
Moreover, the link is formatted to take advantage of an Internet Explorer 
flaw that allows an attacker to hide the true destination of the link; in 
this case, the address bar in Internet Explorer displays "www.fdic.gov," 
while the actual Web site is at a different address in Pakistan. 

The IE issue is more than a month old and has yet to be fixed by Microsoft. 
Microsoft could not be immediately reached for comment."

http://www.msnbc.msn.com/Default.aspx?id=4044775&p1=0

-- 
"...Linux, MS-DOS, and Windows XP (also known as the Good, the Bad, and
the Ugly)."