Re: FW: Citibank E-mail Verification

[Richard Hopkins <Richard.Hopkins () bristol ac uk>]

--On Thursday, October 23, 2003 11:23 PM -0500 ASG Bobby Brown 
<bbrown () asg com> wrote:

> Another attempt at tricking a user in providing account information and
> pin number again received. I am sure they will get their allotment of
> numbers.  ------------------------------------------------------
> Tracked back to -
> dp0s9b.mail333.com resolves to 80.68.244.65
> Registrant:
> CJSC Publishing house RosBusinessConsulting (LXMFFPSJYD)
>    78, Profsouznaya st.
>    Moscow 117393
>    RU
>
>    Domain Name: MAIL333.COM
>
>    Administrative Contact, Technical Contact:
>       CJSC Publishing house RosBusinessConsulting  (35544600O)
> hosting () rbc ru       78, Profsouznaya st.
>       Moscow 117393
>       RU
>       +7 095 3631111 fax: +7 095 3631125
>
> -----------------------------------------------------------------------
> Bobby
>
> -----Original Message-----
> From: Verification [mailto:verify96 () citibank com]On Behalf Of
> Verification
> Sent: Friday, October 24, 2003 9:39 AM
> To: Bbrown
> Subject: Citibank E-mail Verification: bbrown () asg com
>
>
> Dear Citibank Member,
>
> This email was sent by the Citibank server to verify your e-mail
> address. You must complete this process by clicking on the link
> below and entering in the small window your Citibank ATM/Debit
> Card number and PIN that you use on ATM.
> This is done for your protection -T- because some of
> our members no longer have access to their email addresses and
> we must verify it.
>
> To verify your e-mail address and access your bank account,
> click on the link below. If nothing happens when you click on the
> link (or if you use AOL)a, copy and paste the link into
> the address bar of your web browser.
>
>
> http://www.citibank.com:ac=2QERXfihF0pVDReh2Wgz () dp0s9b MaIl333 CoM/3/?NoX
> Q2Nk5Yef05TT
>
>
> 3---------------------------------------------
>            Thank you for using Citibank!
> 9---------------------------------------------
>
> This automatic email sent to: bbrown () asg com
> Do not reply to this email.
>
> R_CODE: djOdJKPDZ8FVnfJNcBP1
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

Exactly the same scam (same source) has been used to target NatWest bank 
customers....

Dear NatWest Bank Member,

This email was sent by the NatWest server to verify your e-mail
address. You must complete this process by clicking on the link
below and entering in the small window your NatWest login ID,
Password and PIN.
This is done for your protection --- because some of
our members no longer have access to their email addresses and
we must verify it.

To verify your e-mail address and access your bank account,
click on the link below. If nothing happens when you click on the
link (or if you use AOL), copy and paste the link into
the address bar of your web browser.


http://www.natwest.com:ac=tQpGuRzXjV20WcCuQVb2 () of0rlf MaIl333 CoM/3/?4AwKtm
FV331xUrd


--------------------------------------------
      Thank you for using NatWest!
--------------------------------------------


Richard Hopkins,
Information Services,
Computer Centre,
University of Bristol,
Bristol, BS8 1UD, UK

Tel +44 117 928 7859
Fax +44 117 929 1576

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html