Re: Threat mail from russia (followup)

["Bryan Allerdice" <bryan () professionalhacker com>]

FYI:

There is an article on this email on Security News Portal
(http://www.securitynewsportal.com/print.php?sid=878).

The article says that SecurityWatch believes that this email may contain a
password capturing program of some sort. Security News Portal feels that
this claim is bogus. Perhaps Bjorn Djupvik <Bjorn.Djupvik () globalone net>
(who was the first to report the email to this list) can look at the source
of the actual message his client received and put this claim to rest -
password capturer or not.

Personally I hate when some news provider makes claims without backing them
up, since a few weeks later when CNN or someone gets wind of it, we'll have
to listen to scary news stories about evil Russian hackers who are doing
billions of dollars of damage or something. Agghhhhh.

BRYAN

----- Original Message -----
From: "Justin Kremer - CEO" <ceo () investigateintl com>
To: <incidents () securityfocus com>
Sent: Tuesday, June 26, 2001 3:54 PM
Subject: Re: Threat mail from russia (followup)


> If you receive an e-mail like this, the FIRST thing to do is contact the
> bank given in the e-mail.  Let them know that their client is involved in
> mail fraud.  Secondly, I would use the mail header and contact the
sender's
> ISP.
> Should take a whole 10 minutes out of your busy day and hopefully will
teach
> this guy a lesson.
>
>
> -Justin Kremer
> CEO - Investigate Int'l
>
>
> ----- Original Message -----
> From: "Bjorn Djupvik" <Bjorn.Djupvik () globalone net>
> To: <incidents () securityfocus com>
> Sent: Tuesday, June 26, 2001 2:03 AM
> Subject: Re: Threat mail from russia (followup)
>
>
> > After doing some research I have come to the conclusion that this is
> probably all a scam and not targeted at my client
> > directly. The reasons why I believe this is that when doing a search on
> various search engines for the account# mentioned
> > in the mail, I get hits on various other schemes which probably also are
> scams (like this one:
> > http://love.lorton.com/html/payment.html) . We will however be watching
> that network extra closely from now on though :)
> > /bjorn
> >
> > This list is provided by the SecurityFocus ARIS analyzer service.
> > For more information on this free incident handling, management
> > and tracking system please see:
> >
> > http://aris.securityfocus.com
>
>
>
> --------------------------------------------------------------------------
--
> This list is provided by the SecurityFocus ARIS analyzer service.
> For more information on this free incident handling, management
> and tracking system please see:
>
> http://aris.securityfocus.com



----------------------------------------------------------------------------


This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see:

http://aris.securityfocus.com