PayPal phishing website In our computerized society, everyday there are threats lurking, hidden, just waiting to catch innocent surfers,in a trap that will cost them dearly, talk here of course about scamming. In recent events a PayPal phishing site has been discovered, which hides its true address from the user. “Two XSS vulnerabilities were identified in the Google.com website, which allow an attacker to impersonate legitimate members of Google's services or to mount a phishing attack. Although Google uses common XSS countermeasures, a successful attack is possible, when using UTF-7 encoded payloads." Even though Google has been notified via email, there has not yet been any official word on a solution to this problem. Although the Google XSS exploit add fuel to the fire, this is still a very dangerous phishing scam. Read the entire article here, http://www.crime-research.org/news/14.01.2006/1761/

Doug, If I haven't done so before, I want to express my appreciation for you and the work you do here. It's good to be able to rely on someone who keeps an eye out for these issues, as we all have other work to do and would probably not do this for ourselves. I did experience a little frustration in trying to view the video so I could tell what to watch out for. I followed your link, then their link, then another and another, and never did find the video. So I'm still not sure what to watch for. Cheri

Thanks Doug.