![]() ![]() The content contains hash-busters (unique characters in the contents that are used to bypass hash-based spam filters).The email contains multiple misspellings and grammatical errors, such as "becaurse" and "This automatic email sent to:".But a closer inspection indicates a financial scam: R_CODE: ulG1115mkdC54cbJT469Īt a quick glance, this email appears to be from Citibank, as it contains a Citibank URL. 3X6CMW2I2uPOVQW y- Thank you for using Citibank! C- This automatic email sent to: Do not reply to this email. If nothing happens when you click on the link (or if you use AOL)K, copy and paste the link into the address bar of your web browser. To verify your e-mail address and access your bank account, click on the link below. This is done for your protection -t- becaurse some of our members no longer have access to their email addresses and we must verify it. You must complete this process by clicking on the link below and entering in the small window your Citibank ATM/Debit Card number and PIN that you use on ATM. Received: from () by mailserver with SMTP id Mon, 02:17:00 +0000 Received: from by (Postfix) with ESMTP id EAC74E21484B for Mon, 11:15:38 +0000 Date: Mon, 11:15:38 +0000 From: Verify Subject: Citibank E-mail Verification: To: E-Response References: In-Reply-To: Message-ID: Reply-To: Verify Sender: Verify MIME-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: 8bit Dear Citibank Member, This email was sent by the Citibank server to verify your e-mail address. 1) looks like just another one of these simple bank fraud schemes. These schemes vary from web sites that "look" like the actual financial institution to email asking for personal banking information. With the growth of online banking comes online fraud. For data taken from the public domain, such as newsgroup postings and messages from open forums, no effort has been made to modify the data or protect the publicly disclosed recipient. Every effort has been made to retain the same data format without disclosing personal information. These modifications are denoted with bold and underlined typeset. This spam gang started slow with only a few members, but has increased in both gang membership and spam volume.Īll emails and headers are provided unmodified with the following exception: all personal information has been modified to protect the identity of the recipient. Only one specific spam gang uses this tool for these financial scams. These scams target financial entities such as Citibank, Wells Fargo, Halifax Bank, eBay, and Yahoo. ![]() This document describes the unique bulk-mailing tool used for recent rash of financial email scams. This document uncovers a spam gang who seeks to acquire your banking information, and the response from one of the targeted victims: Citibank. Their motives differ as greatly as their tools and technical abilities. Not all people that send undesirable email (spam) are the same. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |