Re: simple phishing fix

[trejrco () gmail com]

And yet some banks do, in fact, send real emails to their clients ...


Sent from my Verizon Wireless BlackBerry

-----Original Message-----
From: "lsi" <stuart () cyberdelix net>

Date: Sun, 27 Jul 2008 14:10:38 
To: <full-disclosure () lists grok org uk>
Subject: [Full-disclosure] simple phishing fix


Soo y'all know not to click on those emails from your bank, or from 
any other bank, in your inbox and now you just delete them ... why 
not automate this process?  It's easy, just filter a whole bunch of 
banking names straight to your deleted items.  

All you do is create a rule for each bank, which deletes any mail  
from that bank, automatically.

The rule should read something like "if the FROM field contains the  
string XXXXX then DELETE message".

Here's a list of strings to enter into your rules...

Royal Bank of Scotland
HSBC
NatWest
halifax.co.uk
abbeynational.co.uk
@abbey.co.uk
@abbey.com
barclays.co.uk
barclays.com
CitiBusiness
@citi.com
equifax.com
commercebank.com
bankofamerica.com
wachovia.com
capitalone.com
@nationalcity.com
.chase.com
@chase.com

The funny part is that because phish are trying to look as legitimate 
as possible, you can bet that they will use the correct domainname 
for the bank.  Which means they are extremely easy to filter... end 
of problem....  

Stu

---
Stuart Udall
stuart at () cyberdelix dot net - http://www.cyberdelix.net/

--- 
 * Origin: lsi: revolution through evolution (192:168/0.2)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/