I would like to remark that I have first reported this scam back in October 15th at http://spamquerecebe.blogspot.com/2009/10/voegolnet-nao-e-site-da-gol-e-virus.html. At that time, this attack was so new that PhishTank community judged that the page was “not a phish” – just check http://www.phishtank.com/phish_detail.php?phish_id=845056.

The phishing sites are becoming so professional that they fool even McAfee Site Advisor technology, just check this example at http://www.siteadvisor.com/sites/bancodobrasilportalbb.com/ which was confirmed to be a phishing site by PhishTank (http://www.phishtank.com/phish_detail.php?phish_id=870145)

When it comes to security we must always rely on more than one source.