CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

$9736.22 of $21422.68
left sidedonated so farneed $11686.46 donated to reach our goalright side, our goal
Help CastleCops serve the community on new servers, Donate Here to reach our goal.

Donation/Premium
spacer
Donations. Become Premium Today! Premium Icon
block bottom
Security Central
spacer
· Home
· PIRT/Fried Phish
· MIRT
· SIRT
· Deutsch
· Wiki
· Newsletter
· O16/ActiveX
· CLSID List
· Contest2007
· Downloads
· Feedback (send)
· Forums
· HijackThis
· Hijacktrend
· LSPs
· My Downloads
· O18
· O20
· O21
· O22
· O23
· O9
· Premium
· Private Messages
· Proxomitron
· Reviews
· Search
· StartupList
· Stories Archive
· Submit News
· WsIRT
· Your Account
· Acceptable Use Policy
block bottom
Survey
spacer
Was 2007 a good year?

Yes it was a wonderful year
Yes, but there is always room for improvement
Status quo
It was a challenge
Other (leave comment)



Results
Polls

Votes: 934
Comments: 25
block bottom
spacer spacer
image Franklin Mint Federal Credit Union Phish image
Phishing
Just when I thought I've seen it all, in comes a phish spam targetting Franklin Mint Federal Credit Union customers. Naturally I submitted the entire evidence into PIRT for full investigation, reporting to the world, and take down. Below you'll see the email.

Dear Franklin Mint Federal Credit Union member,

This e-mail was sent to you because we have detected an error in your billing information on file with Online Banking during our regular schedule account maintenance and verification. This might be due to either following reasons:

* A recent change in your personal information (i.e. change of address).
* Submitting invalid information during the initial sign up process.
* An inability to accurately verify your selected option of payment due an internal error with our processors.

You have 24 hours to click the link below and confirm your Home Banking personal information, otherwise your VISAź / ATM Card access will become restricted:

Click Here
© 2007 Franklin Mint Federal Credit Union. All Rights Reserved
The "Click Here" link lands you at the following truncated location (as the report is investigated and released, it'll then be public via PIRT): http://www.senft.co.at/(truncated).
Posted on Friday, 08 June 2007 @ 02:40:16 UTC by Paul (1528 reads)
[ Trackback ]		image

"Franklin Mint Federal Credit Union Phish" | Login/Create an Account | 1 comment | Search
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: Franklin Mint Federal Credit Union Phish (Score: 1)
by DBT  on Friday, 08 June 2007 @ 15:03:57 UTC
(User Info | Send a Message)
Virtually the same message as that contained within many of the fake PayPal emails doing the rounds.

The warnings are many and varied, some about possible fraudulant acount activity, some about errors. It all boils down to the same thing: to fool people in to clciking through, entering personal information, which will then be used to defraud those dumb enough to fall for it.

Here is but one example, of which the spelling and grammar alone, ought to be enough to alert those receiving it that all is not as it seems.
------------------------

We recently noticed one or more attempts to log in to your PayPal account from a foreign IP address.

If you recently accessed your account while traveling, the unusual log in attempts may have been initiated by you. However if you are the rightful holder of the account,click on the link below to log into the account and follow the instructions.


https://www.paypal. com/us/cgi-bin/webscr?cmd= _login-run

If you choose not to complete the request, you give us no choice but to suspend your account temporary.

It takes at least 72 hours for the investigation in this case and we strongly recommend you to verify your account at that time.

If you received this notice and you are not the authorized account holder, please be aware that it is in violation of PayPal policy to represent oneself as an other PayPal user.Such action may also be in violation of local, national, and/or international law. PayPal is committed to assist law enforcement with any inquires related attempts to missapropriate personal information with the intent to commit fraud or theft. Information will be provided at the request or law enforcement agencies to ensure that perpetrators are prosecuted to the fullest extent of the law.

Thanks for your patience as we work together to protect your account.

PayPal Account Review Department.



--------------------------------------------------------------------------------

Please do not reply to this email. This mailbox is not monitored and you will not receive a response.
For assistance, log in to your PayPal account and click the Help link located in the top right corner of any PayPal page.



--------------------------------------------------------------------------------



PayPal Email ID PP00145
-------------------------

In this particular instance, the scammers had hijacked the login part of the legitimate PayPal site, something only Paypal can deal with.


 
Login
spacer
Nickname

Password

Security Code: Type Security Code: Usage signifies AUP acceptance
· New User? · Click here to create a registered account.
block bottom
Related Links
spacer
· del.icio.us!
· digg it!
· reddit!
· TrackBack (0)
· HotScripts
· W3 Consortium
· Spam Cop
· More about Phishing
· News by Paul

Most read story about Phishing:
False PayPal Charges!
block bottom
Article Rating
spacer
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent
block bottom
Options
spacer

Printer Friendly Page  Printer Friendly Page
block bottom
2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
Acceptable Use Policy. Use signifies your agreement.
204ppm 0.668s (0.502s)
Making cybercriminals unhappy since 2002*
In Memory of Trpm
spacer spacer