Tuesday, September 13, 2005

CastleCops What to Watch Out for This Month

There were fewer reported Phishing alerts this month, and while that is encouraging, the threat is still widespread. Information was gathered from various sites including http://www.millersmiles.co.uk/archives/current & http://www.antiphishing.org.

1. Phishing Scams

Subject: PayPal - Unauthorized Access Report
Bait: Fake email asking you to confirm/update/verify your account data at PayPal by clicking on the embedded link.
Goal: To have you visit the Phishing site and reveal your logon information to PayPal so it can be used for fraudulent purposes.
Sample: http://www.millersmiles.co.uk/report/1121

Subject: PayPal - Notification of Limited Account Access
Bait: Fake email asking you to confirm/update/verify your account data at PayPal by clicking on the embedded link.
Goal: Capture as much information on your PayPal account as possible.
Sample: http://www.millersmiles.co.uk/report/1119

Subject: Armed Forces Online Banking and Bill payment Update
Bait: Fake email asking you to confirm/update/verify your account data at Armed Forces Bank by clicking on the embedded link.
Goal: Capture your as much personal information as possible.
Sample: http://www.millersmiles.co.uk/report/1117

Subject: Bank of the West - Unauthorized Access Report
Bait: Fake email asking you to confirm/update/verify your account data at Bank of the West by visiting the embedded link.
Goal: Capture your logon information.
Sample: http://www.millersmiles.co.uk/report/1116

2. Hoaxes and Scams

Zotob Hoax
Delivery: Fake email with a bogus attachment claiming to be a patch from Microsoft that will prevent your computer from being infected by the Zotob worm. The subject of the message is: “What You Need to Know About the Zotob.A Worm” and the sender is spoofed as update@microsoft.com. The attachment contains the Agent.AII Trojan, a nasty multi-purpose worm.
More info: http://ct.enews.pcmag.com/rd/cts?d=184-...16-0-0-0-1

Scammers cash in on Katrina: Only a few days after one of the worst natural catastrophes in American history, phony Web sites have appeared claiming to collect donations for Hurricane Katrina victims, and emails are circulating pretending to solicit money for the victims from well-known charities.
http://www.washingtonpost.com/wpdyn/con...ailarticle

Source: SANS OUCH Newsletter www.sans.org

posted by Godsdragon @ 11:08 PM   0 comments

0 Comments:

Post a Comment

<< Home