so I've just got his email from "HSBC" now considering i don't have any form of bank account this worries me.

this is the email received.


*Important account information* - [screaming-blood@hotmail.com]‏
From: hsbc1@hsbc-account.co.uk


http://gfx1.hotmail.com/mail/w4/pr01/ltr/i_safe.gif
Dear screaming-blood@hotmail.com,

This e-mail has been sent to you by Hsbc UK to inform you that we were unable to verify your account details. This might be due to either of the following reasons:

1. A recent change in your personal information. (eg: address, phone)
2. Submitting incorrect information during register process.

Due to this, to ensure that your banking service is not interrupted, we request you to confirm and update your information today by following the link below
https://www.hsbc.co.uk/1/2/INGRM10usr=screaming-blood@hotmail.com&kkt=1 (http://www.reblys.dk/catalog/a/www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm)


If you have already confirmed your information then please disregard this message.

Regards,
Hsbc Uk member services
© HSBC Bank plc 2002 - 2010 note the lack of name. also it is formatted wrong. aswell as that look at the customised link given which included my email address.

now the link it is redirected to is this: http://www.reblys.dk/catalog/a/www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm

now this is very smart as all of the links will take you to the real site but only this page is a fake.


not the http://www.reblys.dk/catalog/a/www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm (http://www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm) Is a proxy and the site its self http://www.reblys.dk/ has nothing to do with HSBC.


so as a warning to you, look out for them.

and erm how do i report this to some one proper? Done!

oh and if a mod wanted to remove the links because of the scam nature of them then please do, last thing i want is to spread it.

report to http://www.phishtank.com

There is also an internation organisation, APWG. There are a number of databases, the chances are the comprimised host that holds the phish know nothing about it.

I can do hours worth of presentations and scare stories on phishing, mainly as preventing it has been top of my agenda with work for the past 3years :) every since I turned ;)

DT.

Also HSBC is also Hsbc in the same email, not likely.

George... anything to do with you? :)

I've spotted the vunerability where the phish would have been uploaded, tbh there is no point removing it unless the web hosts fix the hole.

I've reported the URL through the correct channels as it wasn't in any of the databases yet. I think there are likely to be others on there, I recognise the format of the phish url from a "kit" that you can get hold of if you know the right places to look.

DT.

i knew there was a reason i posted it up here.

i get one every day........... bin it dont worry about it

i get one every day........... bin it dont worry about it

Report it, then bin it. It helps the 'blacklist' features of MS anti-phishing filter and many other ways to try and protect others.

DT.

its already has been the link brings up a warning saying its a reported scam site in firefox

http://i365.photobucket.com/albums/oo97/sniperdude_2008/Capture-2.jpg

excellent, it's a start, I forget that for rather obvious reason I have all that lot turned off :lol:

DT.

well glad that's been sorted. as for the thread do as you feel.

it's good to post these things, then if someone does google the url we can sit happy in the knowledge that we may have just prevented someone from being scammed :)

DT.

HSBC always do this to me, i always inform them or the right details and anything else they need via email. Even if i dont have an account there............

I got a similar email about Paypal ages ago. This was before I had a Paypal account, or even an Ebay account.

When I click on the link (after it came up with phishing warning) it came up with this:

http://img819.imageshack.us/img819/1823/45052786.png Don't think google chrome would think that the actual HSBC website would be in danish.

excellent, it's a start, I forget that for rather obvious reason I have all that lot turned off :lol:

DT.


to be honest I only ever see that warning from iffy emails but I always have a look to investigate :cool:

I know for a fact in my bank was going to contact me it would be via phone.

LOL my cousin got an email saying his acount details needed updating lol fool only went and clicked the link to a clone on the tsb and entered his details,
then the page went blank so he relogged in with his really bank an thought no more about it

then 2 payments of £700 where almost went out lol lucky his back was right onto the scam.


he still didn't know how they got his details till I asked him about emails and the alarm bells started rigging :lol:

I always found it rather boring myself. You sit on the bank for ages, often alone, speechless, and when you catch something, you throw it back in...






Snigger

I get that email about 3 times a week !

I always found it rather boring myself. You sit on the bank for ages, often alone, speechless, and when you catch something, you throw it back in...






Snigger

:clap

I get that email about 3 times a week !
Yes. And many more like it.

I am surprised that anyone takes any of these things seriously these days.

Even when something purports to come from someone I do bank with, I invariably treat it as spam, which it usually is.

I chip in only to suggest that a good way to detect things like that in your email is to use one of the many spam detectors out there. I use MailWasher Pro (http://www.firetrust.com/en/products/mailwasher-pro) which has just released a new version. (Let it settle down a bit before diving in, if you are interested.) It will detect stuff like this, sometimes on the language basis, a good move given that a lot of these come from Eastern Europe.

Mailwasher has other benefits, but anyone using GMail can have a free spam/phishing filter, using it as an intermediary between you main account.

This isn't the place to go into details, but it isn't that difficult.

Agreed but nothing beats a little common sense. Now I have won the lottery, I didn't even know I entered. Better hand over my bank details.

I haven't had a phishing email or much spam or that matter in years. I guess its because I don't use my primary email much.

What I tend to do is set up several gmail addresses that all forward to my main email address which I use in thunderbird. If I start getting a lot of spam from one address I simply delete it as its not important.

Took me all of 1 hour to set up and my spam problem is almost completely gone.

really i only posted as it was my first ever one.

What I tend to do is set up several gmail addresses that all forward to my main email address which I use in thunderbird. If I start getting a lot of spam from one address I simply delete it as its not important.

Took me all of 1 hour to set up and my spam problem is almost completely gone.

I bet that the second account took less than an hour to set up.

If anyone hasn't come across this notion before, it is an excellent suggestion for those seeking a free spam trap.

The spam trap also intercepts many of the phishing emails, hence its place here.

Agreed but nothing beats a little common sense. Now I have won the lottery, I didn't even know I entered. Better hand over my bank details.
Absolutely, but some people must respond or the phishing would stop.

Then again, as email costs nothing to send, maybe not.

On a slightly related matter, of the more entertaining aspects of the spam detection in Outlook is that it seems to have a particular appetite for press releases.

I receive dozens of releases every day. Thanks to Mailwasher I rarely receive any genuine spam in Outlook, but still, a couple of times a week it flags up press releases as spam.

Then again, as email costs nothing to send, maybe not.
In my dad's shop, he gets spam by fax. Why is that worse than email spam? Because it uses up your own paper and your own toner! Actually I'm not sure dad's fax machine has a toner. I think it just burns onto the paper. It's pretty old and uses a roll of paper rather than sheets.

I bet that the second account took less than an hour to set up.

I don't have a second account................ I have 5. lol

I use different addresses for different things. Forums go through one, purchases go through another, online e-zines etc go thorough one.......

you get the general idea. As gmail blocks most spam and phishing almost none of it gets through and that which does gets stopped by my thunderbird spam blocker. I have only ever had 1 false positive.

They all are forwarded to my main account.

so I've just got his email from "HSBC" now considering i don't have any form of bank account this worries me.

this is the email received.
note the lack of name. also it is formatted wrong. aswell as that look at the customised link given which included my email address.

now the link it is redirected to is this: http://www.reblys.dk/catalog/a/www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm

now this is very smart as all of the links will take you to the real site but only this page is a fake.


not the http://www.reblys.dk/catalog/a/www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm (http://www.hsbc.co.uk/1/2/HSBCINTEGRATION/s/index.htm) Is a proxy and the site its self http://www.reblys.dk/ has nothing to do with HSBC.


so as a warning to you, look out for them.

and erm how do i report this to some one proper? Done!

oh and if a mod wanted to remove the links because of the scam nature of them then please do, last thing i want is to spread it.


I got the same email last night, but the link was a redirect from hsbc.co.uk

I have reported this to WOT (web of trust) and it has now been confirmed and red flagged. This should mean an additional warning for anyone using the WOT extension in firefox.

In my dad's shop, he gets spam by fax. Why is that worse than email spam? Because it uses up your own paper and your own toner! Actually I'm not sure dad's fax machine has a toner. I think it just burns onto the paper. It's pretty old and uses a roll of paper rather than sheets.
Yes. That is a real pain.

If he really does have one of those "burner" fax machines, the paper is not cheap.

There is a way around it. If he has a PC he can use that to receive faxes. Then he just prints the ones he needs.

I went down that road nearly 20 years ago, when you could buy a really neat bit of software called Winfax. It ended up in the hands of Norton who abandoned it, just as they did the file manager they bought.

I still receive the occasional fax, usually a wrong number. I have a modem that can store faxes even when the PC is turned off.

I recently bought a USB fax modem for all of £9.95. I can use Windows to send and receive faxes.

Aria also does the 56K External (USB) Modem (http://www.aria.co.uk/Products/Network+Products/Wired/Modems/56K+External+%28USB%29+Modem?productId=460) for a princely £16.44 inc. VAT.

I don't have a second account................ I have 5. lol

I manage with one GMail account and a load of others through my own domain. GMail can "POP" and filter several accounts.

Do you ever check the spam that GMail catches?

Today I won the national lottery (I wouldn't know how to enter), received three offers to buy cheap software, two for watches, one for life insurance and all those magic pills. Probably a few offers of marriage too if the subjects mean anything.

I manage with one GMail account and a load of others through my own domain. GMail can "POP" and filter several accounts.

Do you ever check the spam that GMail catches?

Today I won the national lottery (I wouldn't know how to enter), received three offers to buy cheap software, two for watches, one for life insurance and all those magic pills. Probably a few offers of marriage too if the subjects mean anything.

At the moment I don't have my own domain. I plan to get one next year.

I rarely check the spam that is caught as it doesn't bother me.

Ive just looked in my Gmail spam folder...
I must check in there more often.

I'm Rich!!!!

DEAREST ONE,

I AM VERY SORRY FOR APPROACHING YOU THROUGH THIS WAY KNOWING MY MESSAGE WILL COME TO YOU AS A SURPRISE SINCE I DON'T KNOW YOU OR MET WITH YOU BEFORE BUT AM OF THE BELIEVE THAT YOU WOULD BE OBLIGED TO COME TO MY ASSISTANCE AFTER HEARING ABOUT MY SITUATION.
I AM MARY ,18 YEAR OLD GIRL, I WAS FORMERLY A MEDICAL STUDENT OF UNIVERSITY OF GHANA.LATE LAST YEAR OCTOBER 2009,MY UNCLES AND MY FATHER'S ENEMIES KILLED MY PARENTS BECAUSE MY FATHER WAS A GOLD MERCHANT IN MY COUNTRY GHANA.BEFORE HIS DEATH HE HAS $5.5 M USD IN A DOMICILIARY ACCOUNT WITH A BANK IN GHANA WHICH I AM THE NEXT OF KIN.PLEASE I NEED YOUR ASSISTANCE IN THE FOLLOWING WAYS.
1) TO SERVE AS THE GUARDIAN OF THIS FUND
2) TO PROVIDE A BANK ACCOUNT WHERE THIS MONEY WOULD BE TRANSFERRED
3) TO MAKE ARRANGEMENT FOR ME TO COME OVER AFTER THIS MONEY IS TRANSFERRED
4) TO LOOK FOR A GOOD VENTURE WHERE THIS MONEY WILL BE INVESTED,
I AM WILLING TO OFFER YOU 20% OF TH TOTAL SUM AS COMPENSATION OF YOUR EFFORT AND 5% FOR ANY OTHER EXPENSE YOU MADE AFTER A SUCCESSFUL TRANSFER.
THANKS AND GOD BLESS YOU

MARY


So, she has $5.5 million, but cant afford a Shift Key???

Yes. That is a real pain.

If he really does have one of those "burner" fax machines, the paper is not cheap.

There is a way around it. If he has a PC he can use that to receive faxes. Then he just prints the ones he needs.

I went down that road nearly 20 years ago, when you could buy a really neat bit of software called Winfax. It ended up in the hands of Norton who abandoned it, just as they did the file manager they bought.

I still receive the occasional fax, usually a wrong number. I have a modem that can store faxes even when the PC is turned off.

I recently bought a USB fax modem for all of £9.95. I can use Windows to send and receive faxes.

Aria also does the 56K External (USB) Modem (http://www.aria.co.uk/Products/Network+Products/Wired/Modems/56K+External+%28USB%29+Modem?productId=460) for a princely £16.44 inc. VAT.
Dad doesn't have a computer in the shop. There isn't room and the conditions aren't great. I don't see why he has a fax machine to be honest though, except to receive the price list every week from his supplier. Surely that could be sent by email, which he checks at home.

The problem is, he'd rather not use a computer if possible.