my question is -- how is this done? how does this URL:
http://www.citibank.com:[EMAIL PROTECTED]/3/?IYTEw
4eVTtbH1w6CpDrT
Ah but you see it doesn't!
It brings up the last part after the @ sign.
a3ksd.PiSeM.NeT/3/?IYTEw4eVTtbH1w6CpDrT
An old dirty trick used by slashdot trolls.
--
error
For those of you that are interested in CIPE, it looks like they are
dropping the ball:
http://lists.netsys.com/pipermail/full-disclosure/2003-September/010864.html
It's a shame I tell you.
--
error [EMAIL PROTECTED]
___
vox-tech mailing list
[EMAIL
On Thu, Sep 25, 2003 at 08:17:52AM -0700, [EMAIL PROTECTED] wrote:
On Thu 25 Sep 03, 10:46 AM, Rob Rogers [EMAIL PROTECTED] said:
On Thu, Sep 25, 2003 at 07:24:56AM -0700, [EMAIL PROTECTED] wrote:
i didn't know this. so, an URL is of the form:
URL = user:[EMAIL PROTECTED]
On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote:
http://www.citibank.com:[EMAIL PROTECTED]/3/?IYTEw
4eVTtbH1w6CpDrT
This has me flabbergasted. I bet this trick worked very well for the
scammers. I mean, even though the email is amateurish, the web page
looks totally legit. I
On Thu, Sep 25, 2003 at 09:47:00AM -0700, R. Douglas Barbieri wrote:
On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote:
http://www.citibank.com:[EMAIL PROTECTED]/3/?IYTEw
4eVTtbH1w6CpDrT
This has me flabbergasted. I bet this trick worked very well for the
scammers. I mean,
On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote:
http://
www.citibank.com:[EMAIL PROTECTED]/3/
?IYTEw
4eVTtbH1w6CpDrT
Maybe a way for places like Citibank, Paypal and other fraud prone sites
to help prevent this would be to check the referer, and if it's a
strangely
formed
On Thu, Sep 25, 2003 at 10:23:11AM -0700, Mitch Patenaude wrote:
On Thu, Sep 25, 2003 at 06:30:32AM -0700, [EMAIL PROTECTED] wrote:
http://
www.citibank.com:[EMAIL PROTECTED]/3/
?IYTEw
4eVTtbH1w6CpDrT
Maybe a way for places like Citibank, Paypal and other fraud prone sites
to help
On Thu, Sep 25, 2003 at 10:57:25AM -0700, Mark K. Kim wrote:
I think what you've described is the URI. URL is supposed to be a subset
of URI, whatever that means. I personally don't care but I wouldn't mind
knowing what that means if anyone else knows.
I referred to an RFC that desribes
On Thu, 25 Sep 2003, Rob Rogers wrote:
Name
CC#
CCV (that 3 digit number at the end of the signature panel)
Pin #
Mother's maiden name.
MSN Acct name
MSN password
Social security #
My wife and I got some phone calls like this a few months ago.
When they'd call, they'd say that they
Has this been submitted to Citibank or the
Sacramento Valley Hi-Tech Crimes Task Force (
http://www.sachitechcops.org/ )?
-Donald
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of [EMAIL PROTECTED]
Sent: Thursday, September 25, 2003 6:31 AM
To: [EMAIL
Hi all -
This is really interesting and really concerning. I would like to take
selected parts of the discussion (for brevity and clarity) and send it to
my local paper. Please indicate (offline is fine) if you would prefer to be
named or kept anonymous.
If you do not want your comments
On Thu 25 Sep 03, 12:09 PM, Donald Childs [EMAIL PROTECTED] said:
Has this been submitted to Citibank or the
it's been reported to [EMAIL PROTECTED] i've been toying around with
reporting it to FBI since i'm fairly sure this WILL catch people, and
it's not a silly pyramid scheme (remember
i just need to look into who at the
FBI gets this sort of stuff.
I think the FBI is a participating member of the task force
http://www.sachitechcops.org/agencies.htm
Hopeful, Citibank folks who read the abuse email will move to protect their
customers.
-Original Message-
From:
[EMAIL PROTECTED] wrote:
On Thu 25 Sep 03, 12:09 PM, Donald Childs [EMAIL PROTECTED] said:
Has this been submitted to Citibank or the
it's been reported to [EMAIL PROTECTED]
The post on the dubious account/pin form gets transmitted to
blades.netnation.com.
I sent a message to Netnation
On Thu, Sep 25, 2003 at 12:22:43PM -0700, [EMAIL PROTECTED] wrote:
On Thu 25 Sep 03, 12:09 PM, Donald Childs [EMAIL PROTECTED] said:
Has this been submitted to Citibank or the
it's been reported to [EMAIL PROTECTED] i've been toying around with
reporting it to FBI since i'm fairly sure
On 2003.09.25 07:46, Rob Rogers wrote:
On Thu, Sep 25, 2003 at 07:24:56AM -0700, [EMAIL PROTECTED] wrote:
i didn't know this. so, an URL is of the form:
URL = user:[EMAIL PROTECTED]
where lowercase url is what i used to think of as being an url.
and
the user:password@ portion is optional.
I thought the Secret Service for the most part was the group that
investigated computer crime. Or am I behind the times?
You're right. I remember the Bee doing a story in 09/2002 about the Secret
Service Sacramento Branch investigating a variation on the Nigerian Banking
scam.
Trail of
On Thu, Sep 25, 2003 at 13:58:13PM -0700, Micah J. Cowan wrote:
On Thu, Sep 25, 2003 at 09:33:08AM -0700, Michael J Wenk wrote:
Also, guess it doesn't hurt to say that you should never have your PIN
for online banking match the one for your ATM. Or if you're forced, be
bloody sure that
On Thu, Sep 25, 2003 at 11:45:04AM -0700, David Margolis wrote:
My wife and I talked about how tragic it would be if an elderly
person answered, or a mentally disabled person, or anybody else who
otherwise might be a bit easier to take advantage of. They were very good
at the scam.
We just
On Thu, Sep 25, 2003 at 02:52:48PM -0700, Jeff Newmiller wrote:
I get about three or four nigerian scam messages per day, on average, at
my personal email address. I got about 8 today.
Since SoBIG died down, that's about ALL the vox* lists have been getting,
so far as spam, lately.
(I found
On Thu, 25 Sep 2003, Micah J. Cowan wrote:
Do you know of banks that let you choose two different PINs, one for
online, one for ATM? That'd be nice...
Unionbank. Not really a PIN online - more like a password. I got rid of
the online thing, though, 'cuz you pay for it and I didn't need it.
On Thu, Sep 25, 2003 at 01:58:13PM -0700, Micah J. Cowan wrote:
On Thu, Sep 25, 2003 at 09:33:08AM -0700, Michael J Wenk wrote:
Also, guess it doesn't hurt to say that you should never have your PIN
for online banking match the one for your ATM. Or if you're forced, be
bloody sure that the
On Thu, Sep 25, 2003 at 12:26:09PM -0700, Larry Ozeran wrote:
If there is a preponderance of interest in seeing my summary, I'll
post it back to this thread.
Consider this my statement of preponderancing. ;)
-bill!
___
vox-tech mailing list
[EMAIL
Is anyone here familiar with .ixi or .ai files?
The former seems to be recognized by both file and XV as a variation of
the PCX format. Neither XV nor Gimp know how to open it.
The latter (.ai) seems to be some kind of PDF file.
GV barfs on it. XPDF loads it, but I don't trust it got
On Thu, Sep 25, 2003 at 04:31:39PM -0700, Bill Kendrick wrote:
Is anyone here familiar with .ixi or .ai files?
The former seems to be recognized by both file and XV as a variation of
the PCX format. Neither XV nor Gimp know how to open it.
The latter (.ai) seems to be some kind of PDF
On Thu, Sep 25, 2003 at 04:36:32PM -0700, Gabriel Rosa wrote:
.ai are Adobe Illustrator files. Dia and/or Sketch might have limited .ai
support.
No idea what .ixi is. Get on irc and ask Marianne :)
and a google search later...
http://www.icdatamaster.com/i.html
-Gabe
On Thursday 25 September 2003 02:08 pm, Micah J. Cowan wrote:
On Thu, Sep 25, 2003 at 11:07:39AM -0700, Michael J Wenk wrote:
On Thu, Sep 25, 2003 at 10:57:25AM -0700, Mark K. Kim wrote:
I think what you've described is the URI. URL is supposed to be a
subset of URI, whatever that means.
On Thu, Sep 25, 2003 at 04:44:58PM -0700, Gabriel Rosa wrote:
and a google search later...
http://www.icdatamaster.com/i.html
Hehe, thanks. I thought I'd have a hard time searching for such a short
string, but I guess ya never know til you try.
Of course, their explanation on that page is
On Thu, Sep 25, 2003 at 06:58:59PM -0700, Michael Wenk wrote:
On Thursday 25 September 2003 02:08 pm, Micah J. Cowan wrote:
On Thu, Sep 25, 2003 at 11:07:39AM -0700, Michael J Wenk wrote:
I referred to an RFC that desribes URIs, which I did at one time
read(several years ago), or
On Thursday, Sep 25, 2003, at 11:23 US/Pacific, Rob Rogers wrote:
I see a couple other problems with this idea too. First, this is the
first phishing scheme I've seen that loaded the actual homepage. Most
just steal their logos.
Yes.. that was actually what got me thinking.. when image files
are
On Thu, Sep 25, 2003 at 04:31:39PM -0700, Bill Kendrick wrote:
Is anyone here familiar with .ixi or .ai files?
The *.ai files are from Adobe Illustrator, as some others pointed out. I'm
not sure about recent versions of the Illustrator format, but those that I
have seen were
On Thu, Sep 25, 2003 at 20:00:51PM -0700, Mitch Patenaude wrote:
On Thursday, Sep 25, 2003, at 11:23 US/Pacific, Rob Rogers wrote:
I see a couple other problems with this idea too. First, this is the
first phishing scheme I've seen that loaded the actual homepage. Most
just steal their logos.
On 2003.09.25 21:53, Rob Rogers wrote:
Again, I still had my previous emails in my head, and was continuing
from there, making assumptions about things without specifying them.
I believe we're talking about two very different things here. The
only Hotmail exploits I've seen have had to
On 2003.09.25 21:53, Rob Rogers wrote:
On Thu, Sep 25, 2003 at 20:00:51PM -0700, Mitch Patenaude wrote:
Sorry. I was thinking back to my earlier email where I was discussing
encoding a domain name to look innocuous. Here was my example:
34 matches
Mail list logo