Bank of the west notice (sigh)



Well, how long ago was I talking about phishing attacks? Just a few posts back it seems and in my inbox this evening was the above subject line. It’s almost funny, since I don’t actually HAVE an account with Bank of the West, but since I was feeling a bit curious I thought I’d pick it apart, see where it came from and where the site was hosted.

It turns out that if you can view the source of a message you can see the destination of the links contained in that message, so where it had a hyperlink to Bank of the West, in the source was a reference like this http://www.bankofthewest…blahblah So, I took a look at the following address http://sitehostingscam.com/admin/…/BOW/ kind of bypassing their entry page and got a directory listing. I worked my way up and found an IT company in Australia.

My guess is that it’s a php exploit that they’ve fallen victim to, but I don’t know (the admin page appears to be a login for some sort of CMS system.) I sent an email to their webmaster and abuse addresses hoping that someone will see it. I gave the link that the email contained and sent along the phishy message, telling them that their server was being used to host the scam. After exploring a bit more, I came across a directory where their pages had been logging each IP address that requested the page and inside a file for the IP was either account numbers in some cases or abusive comments for the phishers in other cases. (Looks like there are quite a few folks that see it for what it is.)

I sent a second message along to the abuse/webmaster addresses because it appears that there were a few folks that did put in what could be account number information. I have no way of knowing that, but hopefully the IT folks will lock things down in quick order and find the source of the problem.

Related Posts

Blog Traffic Exchange Related Posts
  • Network Security guide for the home or small business network - Part 19 - What about when you're not on your home network? When you're not at your home network is probably one of those times you should be more on your guard. Wireless access points are very common and a greatly useful thing, but there are some steps you should take to protect yourself, your pc and the data stored there. First......
  • Updates - Rogues and Security.... I've been running a series of how to remove articles related to some of the current nasty rogue security applications that has really been getting a lot of traffic the last week or so. I can see that there's definitely demand for more. Frankly, I hate these programs that claim......
  • Mail Viruses Junk Spam Phishing and now Dark? Okay, I've seen a new term come across the horizon in the battle of the email inbox. First there were viruses, then junk mail, which became known as Spam and then Phishing attacks now we're up to DarkMail. According to scmagazine , an IT security focused publication, the earmarks of......
Blog Traffic Exchange Related Websites
  • Guest Post - Inflate Your Savings (Once again, I have the opportunity to share a well-written guest post here on the Amateur Financier.  This week, we're looking at a lesson that everyone needs to know, but many people have trouble getting: how to save.  It's not the sexiest of financial topics; you won't compete with the......
  • Facebook List Messages - 2011's Powerful Alternative to Email Marketing Strikes Hard, and is more than just Effective. [/caption] Internet Marketing Strategies, particularly Email Marketing, have seen an overhaul of sorts this past year. Rising standards in Anti-Spam Compliance Regulations have forced most email service providers like Aweber, MailChimp and iContact to reevaluate their levels of "leniency" towards unsubscribe rates and spam complaints, and enforce stricter monitoring......
  • No More Checks For Social Security Benefits I've been waiting for this day to come for a long time (actually, it came a few months ago)! Effective May 1, 2011, applicants filing for Social Security and Supplemental Security Income (SSI) benefit payments must choose either direct deposit or the Direct Express® debit card. There will be no......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site