Okay this one is a little scary to me.
Here's the awards page for a property company. http://www.halstead....ards-and-recognition
Take a look at those "Leading Real Estate Companies of the World" links.
When you click on one, it goes to some page that talks about an affiliation between a broker network and the company. But if you copy and re-paste the address "http://www.leadingre.com/
", it goes to a different site!
To me the "pasted version" is the "real site", and the other page is something on the broker's site. Fine. But don't re-use the link address to create some kind of "shadow page"!
What I can't figure out is where the redirect script/whatever is coming from!
To me that's dangerous because the method can be used for MUCH more nasty uses! We all are pretty good at defending Phishing attacks by looking at the address it points to like "www.sdgfdfgd.com/BOA-attack
". But on that awards page, the link points to the "right" address!
I'd also like to know the true address of the "shadow page".
To make it worse, the "favicon" changes! (I think that's the word.) The shadow page is clearly on the broker's site because it has their favicon. But when you re-paste the address in the title bar, it changes back to the "national" one! That's just nasty!
I am sending them a version of this note.