Educause Security Discussion mailing list archives

Re: phishing irony

From: Mike Porter <mike () UDEL EDU>
Date: Wed, 11 Feb 2009 11:07:40 -0500

On Wed, 11 Feb 2009, Jesse Thompson wrote:

I found a phish message today with the following at the top of the message:

========================================================================
PHISHING: Legitimate organizations NEVER ask for your SSN, password,
account number, or other personal data.  Do NOT ever provide such
information to anyone via email.
========================================================================

It was then followed by the usual request to reply to the @live.com address
with account credentials.

I can't figure out if the phishers are being stupid or genius.


The PayPal phishes all to type the URL for paypal, but of course the
message does provide a link to the "bad" site.  I think they bank on
people being lazy and stupid or people thinking IT is lazy and
stupid.

Mike


Jesse

--
 Jesse Thompson
 Division of Information Technology, University of Wisconsin-Madison
 Email/IM: jesse.thompson () doit wisc edu


-
Mike Porter
PGP Fingerprint: F4 AE E1 9F 67 F7 DA EA  2F D2 37 F3 99 ED D1 C2

Current thread:

phishing irony Jesse Thompson (Feb 11)
- <Possible follow-ups>
- Re: phishing irony Dan Oachs (Feb 11)
- Re: phishing irony Jesse Thompson (Feb 11)
- Re: phishing irony Tupker, Mike (Feb 11)
- Re: phishing irony Pace, Guy (Feb 11)
- Re: phishing irony Mike Porter (Feb 11)
- Re: phishing irony Gary Flynn (Feb 11)
- Re: phishing irony Paul Crittenden (Feb 12)
- Re: phishing irony Ozzie Paez (Feb 12)
- Re: phishing irony HALL, NATHANIEL D. (Feb 12)
- Re: phishing irony Pete Hickey (Feb 12)
- Re: phishing irony Matthew Gracie (Feb 12)
- Re: phishing irony Valdis Kletnieks (Feb 12)
- Re: phishing irony Gary Flynn (Feb 13)
- Re: phishing irony James (Feb 13)
- Re: phishing irony Ozzie Paez (Feb 13)

(Thread continues...)