The Trend Micro Content Security Team has discovered a phishing attack that has some unusual targets — customers of at least two popular domain name registrars and Web hosting companies. Both of them were among the world’s largest domain name registrars in the past year, which would probably explain the phishers’ interest.
Here’s a screenshot of the one of the phishing pages:
Figure 1.Display of the fake login page.
The pages ask users to log into their accounts by entering their login IDs and passwords. The site, however, is designed to harvest user names and passwords to access legitimate accounts.