Anti phishing information (phighting phishing ?)



Well, after the early week experience with getting a Bank of the West site taken down, I’ve taken on two more which have come in today. One of these was an ebay spoof, the other paypal. In both cases I’ve emailed the appropriate abuse address on the owners network (this time one is in China, I think the second was as well.) I did find out something neat about paypal and ebays ways of reporting.

One great congratulations to paypal for this nice, clear direction. If you think that you have received a fraudulent email (or fake website), please forward the email (or URL address) to spoof@paypal.com and then delete the email from your mailbox. Never click any links or attachments in a suspicious email.

What I really like about this is that people that CAN identify the URL can go ahead and save them the legwork of researching it. I like that. Some companies tell you to forward it exactly as you receive it and don’t want you to do anything else. They also don’t let you give any other information, which to me is frustrating.

With ebay, I’m not as enthused with their structure for this, but they do give a web form at their security center ( http://pages.ebay.com/securitycenter/ ). Unfortunately you do have to log in to finalize things. Which means if you’re not an ebay user, you’re out of luck. They do give three different fields to fill in. 1) Message headers 2) message body 3) comments.

Personally, I have not yet seen it as effective to go after the sending IP’s for the phishing emails unless I’m getting flooded from one IP. It seems to be more effective to go after the website address as I’ve seen several emails refer to the same address.

Related Posts

Blog Traffic Exchange Related Posts
  • There aren't THAT many phish in the sea, more on phighting phishing The last post, I got sidetracked into another idea as I was doing a google search. Not uncommon. OK, what I was curious about is how many phishing sites are estimated to be "in the wild" at any given moment threatening to defraud viewers? Well, my search did turn up......
  • Ernst & Young loses laptop, exposes almost 250k hotels.com customers - database mayhem roundup The Register is reporting on Ernst & Young's loss of a laptop which had information on around 243,000 hotels.com customers. Apparently Hotels.com was notified on May 3rd. Apparently the laptop made use of a password as the only security measure. From the article.... "Recently, Hotels.com was informed by its outside......
  • Sending Virus or Spam Abuse reports It occured to me that I may not have brought things to a neat conclusion on the post earlier about tracking email header data. I did make reference to sending an abuse report. Here's an attempt to clear up a few things that might still be fuzzy. 1) usually the......
Blog Traffic Exchange Related Websites
  • Is this Being Frugal, Cheap or Stealing? We've looked at some other questionable behavior and now I'd like to get some feedback about a situation where I tried to pay for something but accidentally got my money back. How far do I have to go to give 'found money' back? I bought glasses recently through an online......
  • How to Install a Home Security System: Most Common Pitfalls Installing a home security system might seem easy. To be sure, it’s a lot easier to install one today than it was just a decade ago. Inexpensive consumer electronics components combined with robust wireless technology means that even an amateur can put in a decent system. Just because it’s easy,......
  • A New Kind Of Nigerian Scam? I recently got an email from a reader that I think I should share with you. It involves a new kind of scam and you need to be aware of it.Hi: I have a question regarding real estate fraud. I have an ad on a website selling my property (for......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site