|
Donation/Premium |
|
 |
|
|
|
|
|
|
|
|
|
| View previous topic :: View next topic |
| Author |
Message |
darclew3
Cadet
Joined: Oct 29, 2007
Posts: 3
Location: USA
|
 Posted: Tue Oct 30, 2007 12:01 am Post subject: Two phishing scams one in Spam, other Outlook Express |
|
|
Bogus Alert sent to my email address - New!
by darclew3 - 10/29/07 4:13 PM
You have 1 new ALERT message
Please login to your Teachers Credit Union
and Confirm Billing And your Information.
To Login, please click the link below:
Go To www.tcunet.com
Copyright ? 2007 Teachers Credit Union Customer
I don't have an account there
X-Eon-Dm: dm35
Return-Path: <webmaster@security.com>
Received: from kbspmxp1.starhub.net.sg (203.116.61.221 [203.116.61.221])
by dm35.mta.everyone.net (EON-INBOUND) with ESMTP id dm35.4723e969.65467f
for <darclew3>; Mon, 29 Oct 2007 04:14:48 -0700
Received: from kbsmtao2.starhub.net.sg (kbsmtao2.starhub.net.sg [203.116.2.167])
by kbspmxp1.starhub.net.sg (8.13.7+Sun/8.13.7) with ESMTP id l9TB9Hf0005194
for <darclew3; Mon, 29 Oct 2007 19:09:18 +0800 (SGT)
Received: from mail.Silktech.com.sg ([203.118.35.5]) by kbsmtao2.starhub.net.sg
(Sun Java System Messaging Server 6.2-4.03 (built Sep 22 2005))
with ESMTPP id for [banked out information
darclew3; Mon, 29 Oct 2007 19:14:44 +0800 (SGT)
Received: from User ([203.155.220.101]) by mail.Silktech.com.sg with Microsoft
SMTPSVC(6.0.3790.3959); Mon, 29 Oct 2007 19:14:44 +0800
Date: Mon, 29 Oct 2007 18:15:33 +0700
From: Teachers Credit Union <webmaster@security.com>
Subject: New ALERT message:
Message-id: [ left out line ] @mail.Silktech.com.sg>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: text/html; charset=Windows-1251
Content-transfer-encoding: 7BIT
X-Priority: 3
X-MSMail-priority: Normal
X-OriginalArrivalTime: 29 Oct 2007 11:14:44.0260 (UTC)
FILETIME=[E8869640:01C81A1C]
To: undisclosed-recipients: ;
THIS IS BOGUS ALERT. Darrell
Marianna from Spyware, Virus % Alert Forum at CNET said to send this to you. Darrell
------------------------------------------------------------------------------------
From: "PayPal"<admin@security.com>
SpamShield Pro Actions...Report spam & move to: Trash Approve senders and move to InBox [ This showed up as Spam] 
To: undisclosed-recipients: ;
Subject: Warning message
Date: Mon 10/29/07 07:48 AM
Dear PayPal valued member,
Due to concerns, for the safety and integrity of the PayPal
community we have issued this warning message.
It has come to our attention that your account information needs
to be updated due to inactive accounts, frauds and spoof reports.
If you could please take 5-10 minutes out of your online experience and renew
your records you will not run into any future problems with the online service.
However, failure to update your records will result in account deletation.
This notification expires on 28-10-2007.
Once you have updated your account records your PayPal will not be
interrupted and will continue as normal.
Please follow the link below
and renew your account information.
https://www.paypal.com/cgi-bin/webscr?cmd=login-run
PayPal Service Department Bogus Alert sent to my email address - New!
by darclew3 - 10/29/07 4:13 PM
You have 1 new ALERT message
Please login to your Teachers Credit Union
and Confirm Billing And your Information.
To Login, please click the link below:
Go To www.tcunet.com
Copyright ? 2007 Teachers Credit Union Customer
I don't have an account there
X-Eon-Dm: dm35
Return-Path: <webmaster@security.com>
Received: from kbspmxp1.starhub.net.sg (203.116.61.221 [203.116.61.221])
by dm35.mta.everyone.net (EON-INBOUND) with ESMTP id dm35.4723e969.65467f
for <darclew3>; Mon, 29 Oct 2007 04:14:48 -0700
Received: from kbsmtao2.starhub.net.sg (kbsmtao2.starhub.net.sg [203.116.2.167])
by kbspmxp1.starhub.net.sg (8.13.7+Sun/8.13.7) with ESMTP id l9TB9Hf0005194
for <darclew3; Mon, 29 Oct 2007 19:09:18 +0800 (SGT)
Received: from mail.Silktech.com.sg ([203.118.35.5]) by kbsmtao2.starhub.net.sg
(Sun Java System Messaging Server 6.2-4.03 (built Sep 22 2005))
with ESMTPP id for [banked out information
darclew3; Mon, 29 Oct 2007 19:14:44 +0800 (SGT)
Received: from User ([203.155.220.101]) by mail.Silktech.com.sg with Microsoft
SMTPSVC(6.0.3790.3959); Mon, 29 Oct 2007 19:14:44 +0800
Date: Mon, 29 Oct 2007 18:15:33 +0700
From: Teachers Credit Union <webmaster@security.com>
Subject: New ALERT message:
Message-id: [ left out line ] @mail.Silktech.com.sg>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: text/html; charset=Windows-1251
Content-transfer-encoding: 7BIT
X-Priority: 3
X-MSMail-priority: Normal
X-OriginalArrivalTime: 29 Oct 2007 11:14:44.0260 (UTC)
FILETIME=[E8869640:01C81A1C]
To: undisclosed-recipients: ;
THIS IS BOGUS ALERT. Darrell Lewis
---------------------------------------------------------
From: "PayPal"<admin@security.com>
SpamShield Pro Actions...Report spam & move to: Trash Approve senders and move to InBox
To: undisclosed-recipients: ;
Subject: Warning message
Date: Mon 10/29/07 07:48 AM
Dear PayPal valued member,
Due to concerns, for the safety and integrity of the PayPal
community we have issued this warning message.
It has come to our attention that your account information needs
to be updated due to inactive accounts, frauds and spoof reports.
If you could please take 5-10 minutes out of your online experience and renew
your records you will not run into any future problems with the online service.
However, failure to update your records will result in account deletation.
This notification expires on 28-10-2007.
Once you have updated your account records your PayPal will not be
interrupted and will continue as normal.
Please follow the link below
and renew your account information.
https://www.paypal.com/cgi-bin/webscr?cmd=login-run
PayPal Service Department
|
|
| Back to top |
|
 |
brewt
SIRT Handler
Premium Member
Joined: May 29, 2007
Posts: 792
Location: USA
|
| Posted: Tue Oct 30, 2007 1:21 am Post subject: |
|
|
Hello darclew3,
Welcome to Castlecops Forums.
This is a common type of spam that contains links to deceptive web sites that try to trick users into divulging their account information.
You can report this to our Phishing Incident and Response Team at  /PIRT
Once they receive the report, they will notify the appropriate authorities to get the site shut down, stop the email from sending out, and compile evidence on the ultimate origin of the spam.
Also, please make sure to provide the full message source, including full email headers and any html source code, etc.
for more detailed instructions, see the Castlecops wiki entries for
Reporting phishing scams through Castlecops
and
Retrieving Email Source
--
Regards,
brewt
|
|
| Back to top |
|
|
|
|
|
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum
|
Powered by phpBB © 2001 phpBB Group
|
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
