was not this part of the pharming attack that was exucted over the last 2d ?<br><br><div><span class="gmail_quote">On 2/21/07, <b class="gmail_sendername">James Matthews</b> <<a href="mailto:nytrokiss@gmail.com">nytrokiss@gmail.com
</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Yes yes! They will make sure of course however the dumb person that falls for it thinks "hey look Bank Of America" can't spell heheheh
<div><span class="e" id="q_110e76c4a2bd1b6f_1"><br><br><div><span class="gmail_quote">On 2/21/07, <b class="gmail_sendername">
James Rankin</b> <<a href="mailto:kz20fl@googlemail.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">kz20fl@googlemail.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Dear phishers,<br><br>If ever you need someone to help you with your spelling and grammar to make your phishing emails <span style="font-weight: bold;">just a bit </span>convincing,
drop me a mail and I will proof-read your scam texts. I have a degree
in English and I was regularly top of my class for spelling. Whilst I
do not doubt your technical bot-writing capability, the standard of
your text is generally poor and a dead giveaway. I will help!
<br><br>Ta,<br><span><br>JR</span><div><span><br><br><div><span class="gmail_quote">On 21/02/07, <b class="gmail_sendername">Troy Cregger</b> <<a href="mailto:tcregger@kennedyinfo.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
tcregger@kennedyinfo.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA1<br><br>Got an email today that was crafted to look like it came from Bank of<br>America, the message contained the following:<br><br>Because of unusual number of invalid login attempts on you account, we
<br>had to believe that, their might be some security problem on you<br>account. So we have decided to put an extra verification process to<br>ensure your identity and your account security. Please click on <A<br>
href="<a href="http://www.candy-pop.com/www.bankofamerica.com/BOA/sslencrypt218bit/online_banking/index.htm" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://www.candy-pop.com/www.bankofamerica.com/BOA/sslencrypt218bit/online_banking/index.htm
</a>"<br>target="_blank">sign in to Online Banking</A> to continue to the
<br>verification process and ensure your account security. It is all about<br>your security. Thank you, and visit the customer service section.<br><br>Which of course loads a phishing page that would capture login<br>
credentials should anyone fall for the ruse.<br><br>This may be old news though and possibly related to another story I read<br>earlier on Zone-H<br>here: <a href="http://www.zone-h.org/content/view/14577/31/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://www.zone-h.org/content/view/14577/31/
</a><br><br><br><br><br>Troy Cregger<br>Lead Developer, Technical Products.<br>Kennedy Information, Inc<br>One Phoenix Mill Ln, Fl 3<br>Peterborough, NH 03458<br>(603)924-0900 ext 662<br>-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG
v1.4.6 (GNU/Linux)<br>Comment: Using GnuPG with Mozilla - <a href="http://enigmail.mozdev.org" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://enigmail.mozdev.org</a><br><br>iD8DBQFF3HPLnBEWLrrYRl8RAmPbAJsEhggVS+bHdwHYAi6Zrax+azPPXwCfd2T8
<br>gKSsfPlF/9a+kPWEYacykVg=
<br>=aepj<br>-----END PGP SIGNATURE-----<br><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://secunia.com/</a><br></blockquote></div><br><br>
</span></div><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://secunia.com/</a><br>
</blockquote></div><br><br clear="all"><br></span></div><span class="sg">-- <br><a href="http://www.goldwatches.com/watches.asp?Brand=39" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://www.goldwatches.com/watches.asp?Brand=39
</a><br><a href="http://www.wazoozle.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://www.wazoozle.com</a>
</span><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://secunia.com/" target="_blank">http://secunia.com/</a><br>
</blockquote></div>