Anti phishing information (phighting phishing ?)
Well, after the early week experience with getting a Bank of the West site taken down, I’ve taken on two more which have come in today. One of these was an ebay spoof, the other paypal. In both cases I’ve emailed the appropriate abuse address on the owners network (this time one is in China, I think the second was as well.) I did find out something neat about paypal and ebays ways of reporting.
One great congratulations to paypal for this nice, clear direction. If you think that you have received a fraudulent email (or fake website), please forward the email (or URL address) to spoof@paypal.com and then delete the email from your mailbox. Never click any links or attachments in a suspicious email.
What I really like about this is that people that CAN identify the URL can go ahead and save them the legwork of researching it. I like that. Some companies tell you to forward it exactly as you receive it and don’t want you to do anything else. They also don’t let you give any other information, which to me is frustrating.
With ebay, I’m not as enthused with their structure for this, but they do give a web form at their security center ( http://pages.ebay.com/securitycenter/ ). Unfortunately you do have to log in to finalize things. Which means if you’re not an ebay user, you’re out of luck. They do give three different fields to fill in. 1) Message headers 2) message body 3) comments.
Personally, I have not yet seen it as effective to go after the sending IP’s for the phishing emails unless I’m getting flooded from one IP. It seems to be more effective to go after the website address as I’ve seen several emails refer to the same address.
Popularity: 1% [?]
Related Posts - What a week.... I think it's time to pass along a long story of what's gone on over the last week or so here and some of the reasons there hasn't been anything posted. Generally, I would say that work has been busy, but something happened last week that went a bit beyond......
- Major botnet building and the massive jump in spam For a few months now (since the demise of bluefrog actually) I've noticed that the level of junk mail has gone up on my own mail server. Yes, I use spamassassin to filter and tag, but the volume of stuff that's tagged has gone up (as well as the volume......
- Another example of how we're vulnerable for identity theft The SecurityFix is reporting on a security breech at reevesnamepins.com a company that supplies (among others) law enforcement personnel. Apparently, CardCops (which monitors for possible stolen data), discovered names and addresses of several law enforcement officers from across the country. The common denominator seemed to be recent orders at reevesnamepins.com......
Related Websites - How to Safely Access Online Banking Sites from Public Wi-Fi Hot Spots The number of coffee shops, restaurants, and other stores that are offering free wireless internet access to their customers through 802.11B/G/N technologies (more commonly known as WiFi) has seen a dramatic increase in the last few years. In just about every major metropolitan "down town" area, you'll be hard-pressed to......
- What is the difference between spam and bulk email? What is the difference between spam and bulk email? Many people ask this question and are often confused. Even though they are both emails, they are not the same. One simple reason that separates the two is "THE LAW." When someone sends a spam email, 99% of the time they......
- A New Kind Of Nigerian Scam? I recently got an email from a reader that I think I should share with you. It involves a new kind of scam and you need to be aware of it.Hi: I have a question regarding real estate fraud. I have an ad on a website selling my property (for......
Similar Posts
- Phishing – so many flaws to exploit so little time
- Another Phishing update
- Protecting yourself from Phishing attacks
- Virus Warning – Email Subjects – IRS Notice – Important Information from the IRS
- Google the most recent phishing target