I went into a little detail http://schlottke.org/jacob/2007/02/26/paypal-vulnerability-on-front-page-of-serps/ But this really could be an issue if Phisher's ever decided to really go all out an do this as a method of collecting data. Simply a fake login form on the page actually displayed as PayPal.com on Google's results page, and you're done...Yikes.
once i received a mail(spam) stating i had tried to login to paypal but my password was wron so it asked to login in a new link thank god firefox "warned me" ironically i really tried my passsword many times that morning ? that website is a IDN domain name too bad PayPal didn't buy that domain too.
Good find, but wrong article The site's is has a text which says he's prepared to give back the domain, so the article suggesting that [qoute]Imagine if someone did this for banks, trading websites, and even eBay, etc….[/quote] is utter rubbish. I think i m missing something here, he's email address is xn--pypal-4ve.com but google search shows up as www.paypal.com, mite be some kinda redirect trick i dunno off, Can some1 tell me wat it is about??
No, I realize the site doesn't actually do anything Illegal, I'm simply talking about the possibilities of someone misusing this exploit to do that. Imagine doing it with a bank, paypal, itrade, etc... if they did this, and created a page that was identical to the coinciding real page, they could easily steal information- MUCH easier than the Phishing email messages...
More on this: The links are directed at "http://www.pаypal.com/", which the browsers punycode handlers render as www.xn--pypal-4ve.com. This is one example URL - - there are now many ways to display any domain name on a browser, as there are a huge number of codepages/scripts which look very similar to latin charsets.