[Sigia-l] What's your score?
Billie Mandel
Billie.Mandel at openwave.com
Tue Nov 29 14:14:22 EST 2005
I think that's why both Todd and I got No. 9 wrong -
"capitalone.bf10.com" didn't look like a legitimate URL.
Especially as Ebay continues to educate users about this, it's probably
worthwhile for us to warn our clients to use clear subdomains for
customer communications.
Sending this to my Dad (a retired CFO ) to corroborate whether average
users have a chance. Anyone want to bet a latte that he gets 40% or
less?
- Billie
-----Original Message-----
From: sigia-l-bounces at asis.org [mailto:sigia-l-bounces at asis.org] On
Behalf Of Matthew Gessler
Sent: Tuesday, November 29, 2005 9:54 AM
To: Everett, Andy
Cc: SIGIA-L
Subject: Re: [Sigia-l] What's your score?
Actually there was a dead give-away on each example...
In the status bar at the bottom of these emails there is a link
displayed. To determine if the email is a real, 99% of the time just
look for the company url immediately before the first "/".
In other words-
Real: auctions.ebay.com/
Fake: ebay.com.auctions/
Ebay actually has an informative guide to spoofing/phishing located
here:
http://pages.ebay.com/education/spooftutorial/
Cheers,
Matt
More information about the Sigia-l
mailing list