To cut to the chase, approx 80% of all phish target 1 of 20 or less
companies. [1] [2] [7] [8] [9]
I also found a paper which suggests the blacklist might work. [6] I
found three other papers that reviewed phish detection in-depth,
however none of them seemed to mention filtering on the FROM
Thank you all for your comments. However, I cannot disagree more
fully.
It doesn't matter that the blacklist is not complete, if a scammer
tries to phish a bank that's not on the list, eg. is not popular, he
won't make much money, because it's a small bank and the probability
of him hitting
lsi wrote:
Thank you all for your comments. However, I cannot disagree more
fully.
Ignorance does that for people...
It doesn't matter that the blacklist is not complete, if a scammer
tries to phish a bank that's not on the list, eg. is not popular, he
won't make much money, because
I think you are the new greatest troll of FD
On Wed, Jul 30, 2008 at 3:14 AM, lsi [EMAIL PROTECTED] wrote:
Thank you all for your comments. However, I cannot disagree more
fully.
It doesn't matter that the blacklist is not complete, if a scammer
tries to phish a bank that's not on the
On Wed, Jul 30, 2008 at 1:14 AM, lsi [EMAIL PROTECTED] wrote:
Thank you all for your comments. However, I cannot disagree more
fully.
The simple fact that you said, put all banks on the list except the
one you actually use, really demonstrates how poorly some of this has
been thought out.
On Tuesday 29 July 2008 23:27:45 Nick FitzGerald wrote:
You really have no f*ing clue how ordinary users' tiny little brains
work, have you???
I got an inkling when a phishing spam asked me for the usual information, and
also requested my future password.
--
Hawaiian Astronomical Society:
30, 2008 4:14 AM
Subject: Re: [Full-disclosure] simple phishing fix
Thank you all for your comments. However, I cannot disagree more
fully.
It doesn't matter that the blacklist is not complete, if a scammer
tries to phish a bank that's not on the list, eg. is not popular, he
won't make much
On 30-Jul-08, at 9:19 AM, Exibar wrote:
No time to comment on most, but just to throw this in there:
Here in the states we have a few hundred thousand different banks
at
least. 500 is WAY too small of a number. Credit Unions are banks,
small
banks, and almost every city has at least
] ; full-disclosure@lists.grok.org.uk
Sent: Wednesday, July 30, 2008 2:36 PM
Subject: Re: [Full-disclosure] simple phishing fix
On 30-Jul-08, at 9:19 AM, Exibar wrote:
No time to comment on most, but just to throw this in there:
Here in the states we have a few hundred
- Original Message -
From: Dragos Ruiu
To: Exibar
Cc: [EMAIL PROTECTED] ; full-disclosure@lists.grok.org.uk
Sent: Wednesday, July 30, 2008 2:36 PM
Subject: Re: [Full-disclosure] simple phishing fix
On 30-Jul-08, at 9:19 AM, Exibar wrote:
No time to comment on most, but just to throw
On Sunday 27 Jul 2008, lsi wrote:
Soo y'all know not to click on those emails from your bank, or from
any other bank, in your inbox and now you just delete them ... why
not automate this process? It's easy, just filter a whole bunch of
banking names straight to your deleted items.
All you
Jul 2008 at 10:57, Biz Marqee wrote:
Date sent: Mon, 28 Jul 2008 10:57:06 +1000
From: Biz Marqee [EMAIL PROTECTED]
To: full-disclosure@lists.grok.org.uk
Subject:RE: [Full-disclosure] simple phishing fix
Copies to: [EMAIL PROTECTED]
Wow, you our are savior.. no, no our e
lsi wrote:
Of all the approaches below I like the simple list of strings in the
email client (the first link). This is because it's a DENY ALL
policy. ...
simple -- yes.
DENY ALL -- nope...
From your first post, it's clear that you receive samples from a _VERY_
limited sliver of the
On Monday 28 July 2008 20:55:10 Stian Øvrevåge wrote:
You mention phising, but I think quite a few points from the
why-your-spam-solution-wont-work-list are relevant:
(x) Mailing lists and other legitimate email uses would be affected
If we stick with the narrowly focused problem of bank
Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Peter
Besenbruch
Sent: Tuesday, July 29, 2008 2:04 PM
To: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] simple phishing fix
On Monday 28 July 2008 20:55:10 Stian Øvrevåge wrote:
You mention phising, but I
On Tue, July 29, 2008 2:31 pm, [EMAIL PROTECTED] wrote:
You might eliminate phishing but there are occasionally messages from
people at these institutions also. This sort of thing is in essence
allowing phishers a denial of service attack against anyone they choose
to make themselves a
As for email, judge by its content. This posting for example will do
nothing to your money, sells you nothing. Nor does it ask any information
of you. If it were spoofed it would be harmless.
I might also add that Bogofilter didn't flag it as spam, either (X-Bogosity:
Ham, tests=bogofilter,
:57:06 +1000
From: Biz Marqee [EMAIL PROTECTED]
To: full-disclosure@lists.grok.org.uk
Subject:RE: [Full-disclosure] simple phishing fix
Copies to: [EMAIL PROTECTED]
Wow, you our are savior.. no, no our e-Hero! Forget patches for software
bugs.. This guy can teach us how to set
]
To: full-disclosure@lists.grok.org.uk
Subject:RE: [Full-disclosure] simple phishing fix
Copies to: [EMAIL PROTECTED]
Wow, you our are savior.. no, no our e-Hero! Forget patches for software
bugs.. This guy can teach us how to set up a mail filter!!
Seriously dude.. do you
:57, Biz Marqee wrote:
Date sent: Mon, 28 Jul 2008 10:57:06 +1000
From: Biz Marqee [EMAIL PROTECTED]
To: full-disclosure@lists.grok.org.uk
Subject:RE: [Full-disclosure] simple phishing fix
Copies to: [EMAIL PROTECTED]
Wow, you our are savior.. no, no our e
: normal
Subject:[Full-disclosure] simple phishing fix
Soo y'all know not to click on those emails from your bank, or from
any other bank, in your inbox and now you just delete them ... why
not automate this process
Soo y'all know not to click on those emails from your bank, or from
any other bank, in your inbox and now you just delete them ... why
not automate this process? It's easy, just filter a whole bunch of
banking names straight to your deleted items.
All you do is create a rule for each bank,
And yet some banks do, in fact, send real emails to their clients ...
Sent from my Verizon Wireless BlackBerry
-Original Message-
From: lsi [EMAIL PROTECTED]
Date: Sun, 27 Jul 2008 14:10:38
To: full-disclosure@lists.grok.org.uk
Subject: [Full-disclosure] simple phishing fix
Soo
Wow, you our are savior.. no, no our e-Hero! Forget patches for software
bugs.. This guy can teach us how to set up a mail filter!!
Seriously dude.. do you think we care about, or are too inept to set up mail
filter rules? Go find another list to contribute to, you are a joke.
24 matches
Mail list logo
