5.1.5 Using Hexadecimal Character Codes
Hackers can also hide the URLs by using hexadecimal character codes to represent the numbers in the IP address. Each hexadecimal character code begins with “%.” This next example combines a few of the fraud tricks mentioned above:
http://www.visa.com%00@%32%30%30%2E%38%38%2E%38%31 %34%2E%32%31%33 The URL is put in @ format. On computers using Microsoft Internet Explorer that have not installed the patch, only the www.visa.com is displayed in the address bar but the browser window displays the site at “%32%32%30%2E%36 %38%2E%32%31%34 2E%32%31%33,” which is the fraudulent Web site’s IP address hidden in hexadecimal
character code.