Friday, June 21, 2024

Go Phish

I work on a University Help Desk and you’d think our users would be at least slightly smart.. Below is an email I sent out to all users following a phishing scam and afterwards is a reply from a researcher.

From: Helpdesk
Sent: 31 August 2010 09:13
Subject: Email phishing scam
Dear all,
The following current scam is being delivered to many email addresses – and we know of at least 2 accounts that have been subsequently hacked and used in turn to send spam.
Information Services will be reporting this to Message Labs (the company that provides our spam filter) first thing this morning.
Subject: Dear Webmail User
This is to complete your account verification process of the
past year for the maintenance of your Webmail account. You
are required to respond to this message and enter your ID
and PASSWORD space (*******). You should do so before the
next 48 hours of receipt of this email, or your account will
be deactivated and deleted from our database.
Full Name:
WebmailUser ID:
Confirm Password:
Date Of Birth:
Your account can also be
Copyright© , 2010
You are advised to ignore and delete this message. If you have inadvertently given your account details, you are advised to change your password as soon as possible.

And the reply:
From: [User]
Sent: 02 September 2010 03:21
To: Helpdesk
Subject: RE: Email phishing scam
I cann’t understand , what do you mean about this e_mail but anyway  I send for you all information which you need.
FULL NAME : [Her full name was here]
MY ID :[Her ID was here]
PASSWORD:[Her completely unsecure password which was her name followed by a couple numbers was here]
D.O.B :[Her date of birth was here]
Head. Against. Desk.

[Picture Source = ivanpw (CC)]