New Phishing Attacks Offer Cash

DevilDog#1 · #1 03-21-2005, 03:48 PM

By Dennis Fisher
March 21, 2005

A new kind of phishing attack made its debut over the weekend, and experts say this is the first time that online scammers have offered cash to entice recipients into responding to their ploys.

The new e-mail emerged in the last two days and is designed to look like a solicitation from Citizens Bank. The message asks recipients to complete an online survey, and in return, recipients will supposedly get $5 credited to their accounts.

But, in order to receive the credit, each user must enter his ATM card number and PIN, something that no legitimate bank mailing would ever require. Experts who have seen the messages and analyzed the code behind them say that the scam is being hosted by ISPs in England and the Netherlands.

The e-mail message, titled "Citizens Bank instant $5 reward survey," carries accurate logos and branding information for Citizens, but there are a number of grammatical errors in the text that mark it as a scam.

This attack is one of the few times that phishers have strayed from their tried-and-true method of trying to scare recipients into falling for their scams with messages saying that users' accounts have been compromised or need to be updated to avoid cancellation. Offering a cash incentive for responding to a message takes the scams to an entirely new level, and experts predict that such attacks will likely meet with tremendous success.

"This attack will have a very high capture rate as it changes the game and is a much better con. Five dollars is not a small amount. For a legitimate offer from my bank, I'd fill out a survey for $5," said Bill Franklin, president of Zero Spam Network Corp. in Coral Gables, Fla., a managed services provider that was able to stop the new attacks. "Once again the game keeps changing—this is a pretty bad development."

Most of the developments and advancements in phishing scams have been technical ones, as scammers have learned new coding tricks and ways to plant Trojans on recipients' machines. But some attacks also have been refining their social engineering repertoires.

Steve · #2 03-21-2005, 04:10 PM

Quote:

Originally posted by DevilDog#1
By Dennis Fisher

DevilDog#1 · #3 03-21-2005, 04:13 PM

Quote:

Originally posted by Steve

Good catch Stevieooooooooooooooooooooo!

atholon · #4 03-21-2005, 04:29 PM

Ahahaha.

Did you lose your whole bank account DD?

I just gained like $5,000

Scott · #5 03-21-2005, 04:35 PM

What about Fisher?

DevilDog#1 · #6 03-21-2005, 04:36 PM

Quote:

Originally posted by Panther
What about Fisher?

"Fisher" writing about "Phishing"!

atholon · #7 03-21-2005, 05:13 PM

check the title P

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Internet Attacks	Chrispy	Tech Support	1	11-27-2005 12:30 AM
Need Major Help With Connection Interrupt Attacks!	.DareDevil.	Tech Support	7	10-20-2005 01:10 PM
Iran 'behind attacks on British'	Sal UK	General Chat	0	10-05-2005 03:10 PM
keep up-to-date with phishing scams	Steve	General Chat	4	04-17-2005 02:36 PM
Lag attacks in bhd	Str8h8	Tech Support	7	01-06-2004 11:07 PM

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)