Results 1 to 5 of 5

Thread: A Phishing Email I Just Recieved

  1. #1
    Junior Member
    Join Date
    Mar 2005
    Posts
    5

    Exclamation A Phishing Email I Just Recieved

    !!!!!!WARNING!!!!!!! DO "NOT" PROVIDE ANY INFORMATION TO THE FOLLOWING

    Below is a copy of a recent email I received. It has been reported to www.us-cert.gov/nav/report_phishing.html.

    The link (below in the example) takes you to the actual phishing site; which, looks like the phisher actually put some time into this. (please be warned also I did not get any spyware warnings from this site but that does not mean it does not exist.)

    **Follow Link At Your Own Risk**

    Again, please do not provide any information this is just for educational reasons.

    I started out the "from" email address. I think that counts as personal information.


    --------------------------

    Header: Official information for all Federal Credit Union
    From: National Credit Union Administration <***@yahoo.com>

    Dear Credit Union holder account,

    This notice informs you that your Credit Union bank has joined our Federal Credit Union(FCU) network. For both, our and your security, we are asking you to activate an online account on our database. After activation you can login on our system with your SSN and your Credit/Debit PIN number.

    You must visit the FCU activation page and fill in the form to activate your online account:

    https://www.ncua.gov/activate_account

    In accordance with NCUA User Agreement, you can use your online account in 24 hours after activation. We thank you for your prompt attention to this matter. Please understand that this is a security measure intended to help protect you and your account.


    National Credit Union Administration Team apologize for any inconvenience.


    Sincerely,
    NCUA Account Review Department


    -----------------------------

  2. #2
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Was the link in the email html and actually take you to a different place or is that plain text? The reason I ask is because you have to be a government agency to register a .gov

  3. #3
    Junior Member
    Join Date
    Jul 2007
    Location
    san diego ca
    Posts
    3
    In the text, it says "From: ... <***@yahoo.com>". I'm supposing that Saviente wrote the stars. But it's puzzling why the phisher would write a sender that is supposed to be at a yahoo address. If the phisher made a website that looked very real,why would he not write a more plausible sender? Like someone@ncua.gov. Sloppy phisher, i guess.

  4. #4
    Senior Member
    Join Date
    May 2003
    Posts
    217
    thanks...

  5. #5
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Everyone has their approach I suppose. Some are better then others...

Similar Threads

  1. Network Security made easy?
    By Tiger Shark in forum Microsoft Security Discussions
    Replies: 5
    Last Post: January 14th, 2005, 08:47 PM
  2. how to finger a user via telnet
    By ai0070 in forum Miscellaneous Security Discussions
    Replies: 6
    Last Post: October 18th, 2004, 11:21 PM
  3. HowTo Interpret Email Headers
    By ShagDevil in forum Other Tutorials Forum
    Replies: 0
    Last Post: June 13th, 2004, 05:46 PM
  4. An Intro to ProcMail
    By roswell1329 in forum The Security Tutorials Forum
    Replies: 4
    Last Post: December 11th, 2002, 12:35 AM
  5. How to read email header
    By rajat in forum Roll Call
    Replies: 0
    Last Post: February 20th, 2002, 05:08 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •