Results 1 to 5 of 5
  1. #1
    Junior Member
    Join Date
    Mar 2005

    Exclamation A Phishing Email I Just Recieved


    Below is a copy of a recent email I received. It has been reported to www.us-cert.gov/nav/report_phishing.html.

    The link (below in the example) takes you to the actual phishing site; which, looks like the phisher actually put some time into this. (please be warned also I did not get any spyware warnings from this site but that does not mean it does not exist.)

    **Follow Link At Your Own Risk**

    Again, please do not provide any information this is just for educational reasons.

    I started out the "from" email address. I think that counts as personal information.


    Header: Official information for all Federal Credit Union
    From: National Credit Union Administration <***@yahoo.com>

    Dear Credit Union holder account,

    This notice informs you that your Credit Union bank has joined our Federal Credit Union(FCU) network. For both, our and your security, we are asking you to activate an online account on our database. After activation you can login on our system with your SSN and your Credit/Debit PIN number.

    You must visit the FCU activation page and fill in the form to activate your online account:


    In accordance with NCUA User Agreement, you can use your online account in 24 hours after activation. We thank you for your prompt attention to this matter. Please understand that this is a security measure intended to help protect you and your account.

    National Credit Union Administration Team apologize for any inconvenience.

    NCUA Account Review Department


  2. #2
    Senior Member
    Join Date
    Oct 2003
    Was the link in the email html and actually take you to a different place or is that plain text? The reason I ask is because you have to be a government agency to register a .gov

  3. #3
    Junior Member
    Join Date
    Jul 2007
    san diego ca
    In the text, it says "From: ... <***@yahoo.com>". I'm supposing that Saviente wrote the stars. But it's puzzling why the phisher would write a sender that is supposed to be at a yahoo address. If the phisher made a website that looked very real,why would he not write a more plausible sender? Like someone@ncua.gov. Sloppy phisher, i guess.

  4. #4
    Senior Member
    Join Date
    May 2003

  5. #5
    Senior Member
    Join Date
    Oct 2003
    Everyone has their approach I suppose. Some are better then others...

Similar Threads

  1. Network Security made easy?
    By Tiger Shark in forum Microsoft Security Discussions
    Replies: 5
    Last Post: January 14th, 2005, 07:47 PM
  2. how to finger a user via telnet
    By ai0070 in forum Miscellaneous Security Discussions
    Replies: 6
    Last Post: October 18th, 2004, 11:21 PM
  3. HowTo Interpret Email Headers
    By ShagDevil in forum Other Tutorials Forum
    Replies: 0
    Last Post: June 13th, 2004, 05:46 PM
  4. An Intro to ProcMail
    By roswell1329 in forum The Security Tutorials Forum
    Replies: 4
    Last Post: December 10th, 2002, 11:35 PM
  5. How to read email header
    By rajat in forum Roll Call
    Replies: 0
    Last Post: February 20th, 2002, 04:08 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

We have made updates to our Privacy Policy to reflect the implementation of the General Data Protection Regulation.