Cybercrooks plant phishing scam on crime reduction website / The Register, 3 June 2008
http://www.theregister.co.uk/2008/06/03/home_office_crime_reduction_hack/
John Leyden
"Phishing fraudsters hacked a Home Office crime reduction website to host an Italian phishing website on Monday. An RFI (Remote file inclusion) exploit was used to launch the phished page off the webserver hosting crimereduction.homeoffice.gov.uk. As a result of the SQL Injection attack a page resembling the Poste.it site was served up so that it appeared to come from the homeoffice.gov domain. Poste.it is the website of an Italian bank and is a frequent target of phishing attacks."