
Figure 5.20 The Question of Truth
If the victim selects Ye s , she does not get a lock at the bottom of the screen;
if she selects No, the tdwaterhouse frames that we constructed will be blank! This
causes a problem for us in two ways: It is not what the victim is used to seeing,
and if she clicks No, we lose.This dialog box is trouble for a phisher (again, we
are assuming that the user understands SSL pretty well) and lowers our chances
of receiving the maximum return on investment.The simple solution is obvious:
Our poisoned URL points to nonsecure items, so let’s point them to secure
ones. Our previous URL now becomes:
https://webbroker1.tdwaterhouse.com/research/wsod.asp?javascript:parent.fram ...