Just thought I would test IE and FF using a dodgy phishing email I've come across.

The email was pretending to come from Natwest asking the recipient to login to read their latest online statement.

Looking at the source, the login link was actually:
DODGY PHISHING SITE:
www.justbecomplex.com/catalog/images/GOODS/Login.php 
WARNING: This is a fake site - take care if you visit it !!!

EDIT: I've had to insert a space before 'Login.php' in the address above for Freeola's forum s/w to allow me to post. Shame as I wanted to get the full correct URL in there for anyone that may search for it.


IE7 my normal everyday browser picked this up instantly as a phishing attempt:

"Internet Explorer has determined that this is a reported phishing website. Phishing websites impersonate other sites and attempt to trick you into revealing personal or financial information."

Going to the same address in FireFox (version 3.5.3 with all security options turned on) worryingly displayed the fake page without any warnings!
All the rest of the webpage looks pretty legit.

You don't have to go far to see people rubbishing Microsoft's IE often unfairly - this looks like another reason not to knock them to me!

Perhaps as the IE userbase is so big there is more chance that dodgy sites get reported.
NB. I noticed that removing the www allows IE to also display the page - so I using the phishing controls to report that version of the URL!

Also you would think Natwest in this case would stop third-party webistes 'hotlinking' to their official graphics to make things a little harder to do!


Keep 'em peeled...!
^Hmmm...