Phishing Gets Proactive

Scaring the bejesus out of a lot of security folk this weekend is a new kind of phishing attack that doesn’t require the victim to do anything but visit the usual websites he might visit anyway. It works like this: The bad guy uses a weakness in web servers running  Internet Information Services 5.0 (IIS) and …

Continue reading ‘Phishing Gets Proactive’ »