Crooks using phishing pages to grab victims' passwords have apparently upped their game – by using proxy servers rather than static pages to craft legit-looking websites.
Normally, thieves recreate a web page – such as a login page for an online shop or webmail – and stick it on a compromised server, then direct marks towards that counterfeit page in hope they fall for the trick and type in their username and password, or bank card details.
Savvy netizens should be able to spot a dodgy-looking page, so now crims are directing people to servers that fetch legit pages from the website being impersonated and pass those on to the mark to convince them it's safe to hand over their personal details.
