You can call the author of this blog many things, but please don’t call her “unaware”. Call her, rather, “Incapable of seizing the moment”. Why? Because TechCrunch broke a story that even wound up in the Washington Post about Chinese AOL coming up in Firefox as a possible attack site/forgery (that’s right, a phishing website) on Feb. 13th, but they were not the first to learn the perfectly jaw-dropping news. In fact, I was.
I was fixing dead links on this blog on Feb. 10th when I got to my AOL Hit List and clicked through to Chinese AOL out of sheer curiosity. At that point, I was met with the same warning page that you didn’t find screen shots of on TechCrunch until 3 days later.
My screen shot shows that I could’ve broken this story (without the help of Mike’s tipsters) 3 days before TC did. It would’ve done wondrous things for this blog’s stats. It’s no one’s fault but my own, but I admit I’m extremely sore now about passing on the story, and shocked at just how large it became.
Updated 11-24-16 to change recommended add-ons and browser tools to include McAfee’s Site Advisor instead of Web of Trust. Web of Trust is currently not available for use in most web browsers over data-selling and other issues that have recently come to light.
This may come as a surprise, but you’re not staying safe by using AOL. Every day you encounter possibly unsafe ads, phishers and Nigerian scams. AOL is not protecting you (or me) from such routine online dangers.
AOL Email is Unsafe
Clicking the Spam Button in AOL’s email doesn’t make scams or phishers go away – for every email you mark “Spam”, more spam arrives in its place. Anyone can get their bulk (and sometimes, spammy) email whitelisted by AOL because it’s not a matter of the sender having a good website or email for you to read; it’s a matter of them wanting to send out email in bulk. Whoever’s willing to do so can get whitelisted. And your GoodMail? Really not so good, if you’ll pardon my pun.
Watch out, AOL users. If you see this in your inbox – like I did tonight – then you’ve got Phish. Symptoms of Phish are as follows:
- You have an irrepressible urge to click on real-looking links to AOL
- You think this phisher’s email is so convincing
- You can’t understand why the fine folks at AOL, a multi-billion dollar company, misspell words, mangle grammar and forget to punctuate
Do you want to make a lot of money quick? Set up a phishing site (most of them can be made overnight with easy-to-use, affordable tools) then just send AOLers email asking them to “visit AOL” to update their accounts. That’s all. You’ll probably be rich in a week.
That’s right, I’m suggesting you steal. AOL won’t stop you just because I’m pointing out how easy it is to do. AOL ignores most phishing on their email servers even when Marcus of Singing Fish complains about it (as I mentioned in AOL Now the Largest Free Proxy Site in the World), even when other bloggers bring it up, even when Big Media is all over it in droves. Wanna steal from them? Go for it. I’ll even show you how it’s done.
Sunbelt, the people who make CounterSpy and other software security products, reported on their blog yesterday that at least 450 free AOL sites are infected with the Trojan-Downloader.Zlob.Media-Codec, more commonly known as the zlob-fake-codec.
How this works is you click a search engine result that takes you to an infected AOL account (user.aol.com is shown in the screen shot of an infected result page on Sunbelt’s blog), then you’re prompted to download an ActiveX component to view the web page. If you click Continue to download it, your computer is infected with up to two hundred trojans and unsafe ActiveX components.
Bad news for AOL: ever since the service became free in August 2006, it’s been devolving into a phisher’s paradise. Now anyone with a broadband connection can download AOL’s free software and use AOL as a proxy server to redirect a website to any other website. If you think about this for a minute you can see the possibilities: for instance, creating a phishing site that looks exactly like neteller.com, then using AOL’s proxy to redirect the HTTP request through the Thailand Ministry of Education. Think it can’t be done? From chrisohara.org (edited for length):
I just received an email today stating that I needed to log into my neteller.com account to collect the money that I was sent via party poker…I don’t have a neteller account but the link in the email was quite interesting. It uses AOL’s redirect page to redirect to…126.96.36.199, which is in Thailand. It appears it belongs to the Ministry of Education. It appears that one of their computers has been compromised…I contacted AOL, firstname.lastname@example.org, and they have yet to respond.