I’m sure all of us get phishing emails. Because my email address are public, I get them by the boatload. The funny thing is, none of these are ever “on target.” They’re always telling me that my account at Blah Blah Bank is in trouble, but I never have an account at any of those banks. Plus, I use my private emails to register sensitive online accounts.

Recently I finally started getting phishing emails about Bank of America, which I do have an account at. Here’s something I never seen before - through javascripting, the URL/address bar of the fake website gets covered by a “floating URL” of the real site. According to statistics, the majority of phishing targetting Americans these days are from abroad. Out of curiousity, I traced that particular email to South Korea.

Phishing basically means fishing/harvesting for passwords, it orginated back in the AOL days, where AOL subscribers constantly have their passwords (and worse, personal information) stolen via phisers. For many of us veteran Internet users, we have seen phishing in many different forms. It’s a bit strange that a rarely used Internet slang became such a widely used conntation today. Unfortunately, instead of simply targetting AOL account password, phishing now targets more sensitive informations.

Here are some good sites to learn more about phishing and how to avoid them.