Look by yourself - this is how citibank.com cares about phishing and password theft. I reported it 20 hours ago. Nothing happened. Maybe it’s time to make it public? It is an active link to working exploit, ready to send YOUR data from citibank.com domain to attacker’s server - so dont give your real login and pass please.
This is a shocking proof of concept exploit. Plus it shows in his blog that he’s found similar in a number of other sites.
Tags: Design, Interesting, Scary, Security
Leave a Reply