Thread: More ado with phishing..
View Single Post
  #19   Report Post  
Posted to uk.d-i-y
Martin Brown Martin Brown is offline
external usenet poster
  
Posts: 2,701
Default More ado with phishing..
On 23/02/2012 20:15, The Natural Philosopher wrote:
Martin Brown wrote:
On 23/02/2012 14:08, The Natural Philosopher wrote:
If you get these damned things there is a place to report them

http://www.antiphishing.org/report_phishing.html

do so.

Not worth the effort. If they were half way serious players they would
accept msgs forwarded to a specified email address with full headers.


They do

Yes. But the *way* they do it on that web page suggests that they are as
thick as two short planks. No half way competent anti-phishing team
needs *humans* to help identify the brand being phished. A list of
common brands checked against the subject header will do that easily.

If they need our help to identify the brand being phished what chance is
there of them understanding the routing path in the headers?

I suppose on the plus side they are not bouncing the stuff sent to them
like Action fraud did.

(In)Action Fraud is worse than a chocolate fireguard too.
They were not even smart enough to configure their own email system to
accept the spam and phishing emails they told the public to send them.

Any antiphishing organisation worth its salt will already have more
than enough honeypot addresses to collect spam and phishing attacks.
There is no point forwarding stuff to these to generic spam sites
unless it makes you feel better. The problem is in getting
international cooperation to close down bad sites and botnets.

These things are little more than bit bins to make the great unwashed
feel a little bit better about receiving spam and scams. Incidentally
some of the latest and greatest phishing attacks are now all but
indistinguishable from the real things. The only bits missing are the
personal identification and shared security salutation.

--
Regards,
Martin Brown
Reply With QuoteReply With Quote