I work on a University Help Desk and you’d think our users would be at least slightly smart.. Below is an email I sent out to all users following a phishing scam and afterwards is a reply from a researcher.
From: HelpdeskSent: 31 August 2010 09:13Subject: Email phishing scamDear all,The following current scam is being delivered to many email addresses – and we know of at least 2 accounts that have been subsequently hacked and used in turn to send spam.Information Services will be reporting this to Message Labs (the company that provides our spam filter) first thing this morning.Subject: Dear Webmail UserThis is to complete your account verification process of thepast year for the maintenance of your Webmail account. Youare required to respond to this message and enter your IDand PASSWORD space (*******). You should do so before thenext 48 hours of receipt of this email, or your account willbe deactivated and deleted from our database.Full Name:WebmailUser ID:WebmailPassword:Confirm Password:Date Of Birth:Your account can also bemonitored;Copyright© , 2010You are advised to ignore and delete this message. If you have inadvertently given your account details, you are advised to change your password as soon as possible.Thanks,Helpdesk
And the reply:
From: [User]Sent: 02 September 2010 03:21To: HelpdeskSubject: RE: Email phishing scamDearI cann’t understand , what do you mean about this e_mail but anyway I send for you all information which you need.FULL NAME : [Her full name was here]MY ID :[Her ID was here]PASSWORD:[Her completely unsecure password which was her name followed by a couple numbers was here]D.O.B :[Her date of birth was here]Thanks[User]
Head. Against. Desk.
[Picture Source = ivanpw (CC)]