They that can give up essential liberty to purchase a little temporary safety deserve neither liberty or safety.
-- Benjamin Franklin
JaBbA's Hut

Today's Tao (Chapter 50):

Men flow into life, and ebb into death.

Some are filled with life;
Some are empty with death;
Some hold fast to life, and thereby perish,
For life is an abstraction.

Those who are filled with life
Need not fear tigers and rhinos in the wilds,
Nor wear armour and shields in battle;
The rhinoceros finds no place in them for its horn,
The tiger no place for its claw,
The soldier no place for a weapon,
For death finds no place in them.
Friends and Family Login
Username

Password

Remember Me
NEW It Works!!!!

Friend or Family?
To see the stuff
hidden from the wider world,
Click Here

Contact Me

Email Me at http://xri.net/=Justin.B.Alcorn

Subscribe

Subscribe to JaBbA's Hut! Have new entries emailed to you!
Your email address:

Quicksearch

About Me

  • PGP Key Fingerprint A36D D691 C5B0 BE15 5A2A AF49 AA1C 372C. Get my Key for "Justin Bradford Alcorn" from http://pgpkeys.mit.edu .

Calendar

Back May '12
Sun Mon Tue Wed Thu Fri Sat
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    

Archives

May 2012
April 2012
March 2012
Recent...
Older...

Syndicate This Blog

Blog Administration

Open login screen

Categories



All categories

Powered by

Serendipity PHP Weblog

Creative Commons License

Creative Commons License - Some Rights Reserved
Original content in this work is licensed under a Creative Commons License

JaBbA's Hut

White Hat Liberal Geek Dad

Thursday, September 30. 2004

Citibank Trains Phishing Victims

Phishing
A friend of mine got the attached email. Very suspicious, HTML email with links embedded talking about Identity theft.

Hmmm...Looking at the links, they link not to citibank.com or citicards.com but to a CGI program at citicards.chtah.com. Well, cheetahmail is a bulk emailer, but this looks very suspicious.

Clicking on the links redirects through chtah.com and ends up at citibank.com. No popups, no asking for information. But clearly, the CGI program was tracking which emails were responding.

Well, after talking to a very apologetic security analyst at Citibank and emails with a CheetahMail rep, it turns out that Citibank is helping it's users lower their guard against Phishing schemes by sending unsolicited emails with HTTP links talking about Identity theft.

This makes JaBbA's head hurt.
Posted by JaBbA in Phishing at 16:49 | Comments (2) | Trackbacks (0)

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

I got a different email today from the same address... can you explain again what you found out?

Mine included these links:

http://citicards.chtah.com/a/tBDOaOfAPUQV6AY738-AO16W3qo/enroll
http://citicards.chtah.com/a/tBDOaOfAPUQV6AY738-AO16W3qo/click

Which I thought were "phishy" because they didn't go to citibank, citicards, citicorp, etc....
#1 Coz on 2005-09-27 16:41 (Reply)
chtah is a outsourcing agency used by Citibank to send and track email campaigns.

(The company is called CheetahMail)

It's just stupid to be using HTML links that connect to a domain not owned by the bank. It trains the users to NOT be suspicious.
#1.1 JaBbA on 2005-09-27 17:06 (Reply)

Add Comment

Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.
BBCode format allowed
E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA
 
Submitted comments will be subject to moderation before being displayed.
 
Please send a whole bunch of email to johnny@jalcorn.net