Thread: phishing emails starting to get more elaborate

THIS IS MY THIRD AND FINAL MAIL TO YOU!!!
On behalf of the Trustees and Executor of the estate of Late Engr.Jochen Kruger. I once again try to notify you as my earlier letter were returned undelivered.
I wish to notify you that late Engr.Jochen Kruger made you a beneficiary to his WILL. He left the sum of Thirty Million, One Hundred Thousand Dollars (USD$30, 100.000.00) to you in the Codicil and last testament to his WILL.
This may sound strange and unbelievable to you, but it is real and true. Being a widely travelled man, he must have been in contact with you in the past or simply you were nominated to him by one of his numerous friends abroad who wished you good. Engr. Jochen Kr?ger until his death was a member of the Helicopter Society and the Institute of Electronic & Electrical Engineers.
Please if I reach you as I am hopeful, endeavor to get back to me as soon as possible to enable me conclude my job.
You are advice to contact me with my personal email: (Edit), Await your prompt response.
Yours in Service,


BARRISTER MARCUS ANDREEN ESQ.
PRINCIPAL PARTNERS: Barrister Aidan Walsh.Esq Markus
Wolfgang, Mr. John Marvey Esq., Mr. Jerry Smith Esq.


ARE THE NIGERIANS STARTING TO GET GOOD AT THIS

THE BARRISTER TOUCH IS NICE THOUGH

HAVE FUN

just google BARRISTER MARCUS ANDREEN ESQ

he is such a busy lad giving out all this money

The really sophisticated phising [problem]s are those from the bank.
This is where you receive a 'genuine' log in page from your bank, but there are subtle changes.
It will say that computer errors or security update requires you to enter your account details and pin number and usually your name as well.

The email address it has been sent from is the banks genuine email address, but the actual address it will be sent to is hidden.

If you are fooled by it, you fill in the information and click enter which sends the email to the [problem]mers, however, the clever bit is that you are now presented with the real log in page from the real bank saying an error occured and to try again. If you try again, you will be logged into your genuine account so will be unaware that the first page you clicked on was a [problem].

There are three main things that 'will' tell you it is a [problem].
1. The bank (any bank) will never ever ask for log in details in an email. The pin number is of no use to them, no one in the bank has ever seen it and it is not available to be viewed by staff.
2. The email will be addressed 'Dear Customer' when is would have your name if it was from the bank.
3. There will be no green address bar or the padlock will be missing.

How do they know what bank you are with? They don't. They send out emails, (lets say Halifax) to so many people, that it is bound to land in some Halifax customers email box.

Originally Posted by Conniff

The really sophisticated phising [problem]s are those from the bank.
This is where you receive a 'genuine' log in page from your bank, but there are subtle changes.
It will say that computer errors or security update requires you to enter your account details and pin number and usually your name as well.

The email address it has been sent from is the banks genuine email address, but the actual address it will be sent to is hidden.

If you are fooled by it, you fill in the information and click enter which sends the email to the [problem]mers, however, the clever bit is that you are now presented with the real log in page from the real bank saying an error occured and to try again. If you try again, you will be logged into your genuine account so will be unaware that the first page you clicked on was a [problem].

There are three main things that 'will' tell you it is a [problem].
1. The bank (any bank) will never ever ask for log in details in an email. The pin number is of no use to them, no one in the bank has ever seen it and it is not available to be viewed by staff.
2. The email will be addressed 'Dear Customer' when is would have your name if it was from the bank.
3. There will be no green address bar or the padlock will be missing.

How do they know what bank you are with? They don't. They send out emails, (lets say Halifax) to so many people, that it is bound to land in some Halifax customers email box.

Had them Conniff from A&L, Halifax, RBS, HBOS and lloydstsb.

I've only ever banked with one of these eejits, but I did fill in the other forms using things like sweary words for my name, acc number was 6969696969 etc and various other bits and pieces

Oh and you're spot on about the link back to the banks main site, very convincing it was too

Originally Posted by Archway

Had them Conniff from A&L, Halifax, RBS, HBOS and lloydstsb.

I've only ever banked with one of these eejits, but I did fill in the other forms using things like sweary words for my name, acc number was 6969696969 etc and various other bits and pieces

I have to admit that I have done the same Archway. Some of my passwords etc; have been very derogatory (to say the least).