Free Republic
Browse · Search 		News/Activism
Topics · Post Article

To: Ernest_at_the_Beach
But this is a different exploit.....I don't think that helps with this one!

That's what I was looking for and didn't see. Microsoft will probably patch it by their next release so the safest course in XP till then would be to unregister the shimgvw.dll file and do all surfing in a restricted account.

52 posted on 12/29/2005 6:38:05 AM PST by Reaganwuzthebest
[ Post Reply | Private Reply | To 50 | View Replies ]

To: Reaganwuzthebest
This is criminal:

********************************************

From the Websense Security Labs Website:

December 24, 2005

  Phishing Alert:   Lansing Automakers Federal Credit Union

Alert Details Alert Detection Alert Prevention

Websense® Security Labs™ has received reports of a new phishing attack that targets customers of Lansing Automakers Federal Credit Union. Users receive a spoofed email, which claims that due to unauthorized access, their account access has been limited until further personal information is provided. The email provides users with a link to a fraudulent website, where they are prompted to enter their account and password.

This phishing site is hosted in Denmark and was up at the time of this alert.

Phishing email sample:

Dear LANSING AUTOMAKERS F.C.U. Customer,
      
We recently reviewed your account, and suspect that your LANSING AUTOMAKERS F.C.U. Internet Banking account may have been accessed by an unauthorized third party.
Protecting the security of your account and of the LANSING AUTOMAKERS F.C.U. network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features.
 
To restore your account access, please take the following steps to ensure that your account has not been compromised:
 
1. Login to your LANSING AUTOMAKERS F.C.U. Internet Banking account. In case you are not enrolled for Internet Banking, you will have to fill in all the required information, including your name and your account number.
 
2. Review your recent account history for any unauthorized withdrawals or deposits, and check you account profile to make sure not changes have been made. If any unauthorized activity has taken place on your account, report this to LANSING AUTOMAKERS F.C.U. Bank staff immediately.
 
To get started, please click the link below:

<LINK REMOVED> 
We apologize for any inconvenience this may cause, and appreciate your assistance in helping us maintain the integrity of the entire LANSING AUTOMAKERS F.C.U. Bank system. Thank you for attention to this matter.

Sincerely,
 LANSING AUTOMAKERS F.C.U. Team
 Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your LANSING AUTOMAKERS F.C.U. Bank account and choose the "Help" link in the header of any page.

Phishing screenshot:
 

54 posted on 12/29/2005 6:43:30 AM PST by Ernest_at_the_Beach (History is soon Forgotten,)
[ Post Reply | Private Reply | To 52 | View Replies ]

Free Republic
Browse · Search 		News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson