print("Hello, World!")

Ganzheitlicher Ansatz der Cybersicherheit

use case | Fake Bank web-Page

Published by

cyber-engineer

on

Hallo Leute, this morning I posted a photo of a phishing case and added some comments. This page is a continuation of the previous one, so if you are interested please read it in my LinkedIn post.

I examined the link in my virtual machine to see what was inside, whether it contained malicious content, an exploit, or something else. Firstly, it redirects to a page that triggers a warning from my browser indicating that it is a malicious website. My browser, in this case Mozilla, gave a warning but I chose to ignore it and stated that I trust the website.

Secondly, if you continue, a page will open asking for bank details. This fake site is intricately linked to the authentic Deutsche Bank website. Can we categorize this as SQL injection, pharming, website URL spoofing or website phishing? What do you think?

I also clicked on various buttons in the list. Some directed me to the real Deutsche Bank site, others to a d-b site, and some buttons didn’t work.

I tried to take a snapshot for you, but not all links were working. I then looked at the legitimate website and found it astonishing that the domain on the real site also changed from deutsche-bank to d-b. This adds to the confusion.

I noticed that the bank issues warnings to its customers, but only if you manage to reach the authentic site. But reaching the warning page also poses a risk because the bank uses two different domain addresses. Why did they design it this way? Is it secure or vulnerable to tampering?

I suggest grouping all websites under one domain to avoid confusing your customers.

I also have some questions now. I evaluated the link using my highly secure computer. Is there still a warning message on the cell phone? What about tablets? Are there differences between brands and operating systems? How do you estimate the number of people affected by this issue?

Hashtag#casestudy Hashtag#cybersecurity Hashtag#Deutsche Hashtag#Bank Hashtag#domain Hashtag#SPoC Hashtag#BSI Hashtag#cybersicherheit Hashtag#phishing Hashtag#domain

sehr gut link: https://thomas-feil.de/deutsche-bank-phishing/

Hinterlasse einen Kommentar

Previous Post
Next Post

Recent posts

Quote of the week

“Imagination is more important than knowledge.  For knowledge is limited, whereas imagination embraces the entire world, stimulating progress, giving birth to evolution.”

Albert Einstein

print("Hello, World!")

UEBER

    Bloggen auf WordPress.com.