"This look like a bulk email and not stupid spam, hoax or ID stealing"

stupid spam ^ | 11/22/04 | Self

[BellStar]

The one this morning was this bad. "This look like a bulk email and not stupid spam, hoax or ID stealing"

I still have Citibank phishing emails from time to time. Author says "seems to have supplanted eBay/PayPal as the favorite company for phisher scam artists to impersonate. Perhaps this reader gripe suggests one of the reasons why."

http://www.gripe2ed.com/scoop/story/2004/8/23/0346/00108

[BellStar]

We forget everyone in our sphere of influence are not geeks like us and we should let them know about phishing.

[BellStar]

Bump this please.

[C210N]

The link describes forwarding the spam email to Citibank, where in turn, the complaint itself was blocked due to the content containing spam. Other replies describe going to the Citibank web site looking for complaint emails, and then finding those emails don't work.

I found what I think is an interesting tidbit while perusing thru email specifications (SMTP). Email server implementations MUST support the user "POSTMASTER" as a valid address, thus being a reliable receptacle for email for any email domain. On the other hand, this could be implemented as a "write-only" dead letter office, but you can be reasonably certain the email won't bounce and the address will be valid without looking anything up.

[ClintonBeGone]

Can you translate?

[Huck]

If only I understood a word of what you wrote.

[Deguello]

"looking for complaint emails"

You will find that the FBI is not interested either.

[Rick.Donaldson]

phishing is "fishing". Fishing for information. These "spam" mails appear to be the real thing from the companies whose credit cards and bank accounts they are targeting.

The "Phishers" are sending emails that look like legit mails from your bank or ISP or some other company, giving you remarks about how your "billing information is in need of updating" and then they have you click on a link that will take you to a "home page" for the "company". In fact, the home page will ask you things about your credit card information and try to get you to give them information regarding your account so they can gain that information and use it for illicit purposes.

A word of advice from a real security specialist in this area... DO NOT RESPOND to any of them (this goes without saying, but, thousands of people are hoaxed every year by this crap).... As someone stated in a previous note, the FBI is not really interested because they figure most of us have the common sense NOT to respond. Most of us don't, but there are those who aren't sure about it and respond anyway, giving away the keys to their credit cards, bank accounts, and many other things. Ok, is that explnation helpful?

[exnavychick]

Um...huh? 'Fraid I'm not fluent in techno-speak...what were you saying?

[C210N]

without looking at the citibank website, you can be assured the
email address postmaster@citibank.com will always accept
email as long as citibank.com is a valid domain.

[exnavychick]

Okay, thanks. I was a wee bit con-fused. :>)

[anymouse]

Press Release: Anti-Phishing Working Group Report Indicates Phishers Achieving Greater Automation

Anti-Phishing Working Group (APWG) analysts have uncovered disturbing shifts in phishing attacks indicating that hackers are achieving new levels of automation, possibly commanding software tools and BOT nets to vastly increase the potency of their phishing campaigns. Starting in early October, APWG analysts witnessed massive increases in the amount of phishing sites, most all outside the US, indicating that a new and powerful set of tools might have been deployed recently.

Moreover, the number of sites that are being hosted on what appear to be compromised broadband PC's has risen to more than 50 percent, leading Dan Hubbard, Senior Director of Security and Technology Research at Websense, Inc., to suspect that "some automation was involved with a BOT Network to either send more emails and/or host more sites."

Meanwhile, the number of brands subjected to the largest numbers of phishing attacks rose from four in July to six in October, indicating a broadening of attack subjects, CTO John Thielens of Tumbleweed Communications wrote in the APWG's Phishing Activity for October report.

The APWG, with this report, authored jointly by Websense ® Security Labs (TM) and Tumbleweed Communications, redrafted its methodology to give greater resolution to the server side of phishing attacks and, at the same time, omitted scoring of the number of attacks against individual brand-holders, referencing only broad verticals.

The full text of the report is available online at: http://www.antiphishing.org/APWG_Phishing_Activity_Report-Oct2004.pdf

The Anti-Phishing Working Group

The APWG is the global counter-phishing flag ship organizing the community of stakeholders confronting the phishing threat, including national law enforcement agencies, financial institutions, national ISPs, ISVs and hardware vendors and e-commerce companies. The group has more than 930 members worldwide from some 590 companies, government regulatory agencies and law enforcement bureaus, as well as some 60 sponsors including: ActivCard (ACTI), Affinity, Anakam, Cloudmark, Cyota, Cyveillance, Datanautics, Entrust (ENTU), Experian, GeoTrust, GoDaddy, MarkMonitor, McAfee (MFE), MessageLevel, Microsoft (MSFT), NameProtect, NetIQ (NTIQ), PassMark, SAIC, RSA Security (RSAS), Symantec (SYMC), Trend Micro (TMIC), Tumbleweed Communications (TMWD), Vasco (VDSI), VeriSign (VRSN), Visa, Visa Canada, Websense, Inc. (WBSN), WholeSecurity, 0Spam.net ------------------------------------------------------------

Contact: The Anti-Phishing Working Group Press Contacts: David Jevans, 650-996-2142 Chairman Dave.jevans@antiphishing.org or Peter Cassidy, 617-669-1123 Secretary General pcassidy@triarche.com or Websense, Inc. Ronnie Manning, 858-320-9274 Manager, Public Relations rmanning@websense.com