Happy new year, have a virus!

[acidrainy]

Just got this email with a dodgy attachement, just to let you all know

--------

From: admin@bankofengland.co.uk <admin@bankofengland.co.uk>
Date: 30 December 2003 17:42
Subject: security notification
Attached: antkeylog2004.exe


Dear customer,

The security of your personal and account information is
extremely important to us. By practicing good security habits,
you can help us ensure that your private information is protected.
Please install our special software, that will remove all the
keyloggers and backdoors from your computer.

And will help us to prevent credit card fraud in future.

Thank you.

Best regards,

Bank of England


--------------------------------------------------------------------------------


Scanned by evaluation version of Dr.Web antivirus Daemon
http://drweb.ru/unix/

[Moby-Dick]

lol - like everyone has an account there......

Sad thing is that people are stupid enough to run these...

[streetster]

lol.. the only virus i get with my hotmail account is the .scr one which is 47k which goes into junk mail by default (and mcafee thing that hotmail uses manages to find that there is a virus in there.. the sad thing is that it also asks if i want to download it regardless? yet will block files such as database (.mdb) cos they might harm your computer..), ah well lets hope no-one is stupid enough to open that virus...

mark

[Howard]

My AV software picks it up as it downloads it, so no chance of infection ever

[Stringent]

Also had this scam arrived today ... Not even a member of Barclays Bank:

Dear valued Barclays IBank Customer!

As part of our continuing commitment to
protect your account and to reduce the instance
of fraud on our website, we are undertaking a
period review of our member accounts. You are
requested to visit our site by following the link
given below. This is required for us to continue
to offer you a safe and risk free environment to
send and receive money online, and maintain the
Barclays IBank Experience. In success you will be
redirected to the Barclays IBank home page. Thank you.

Code:

https://ibank.barclays.co.uk/fp/1_2x/online/1,,logon,00.html

[SilentDeath]

Flanderz, thats not a scam... assuming your a memeber of barclays bank..

address is https - secure server. why would a scam bother with secure servers..
ibank being subdomain of barclays.co.uk
the bit after being the address on the server..
nothing wrong with that address...

[Stylez]

There was something to do with this in the paper today or the other day regarding these emails.

[Dorza]

A warning about that email was on the news the other day. Found it on the bbc's website: HERE

[Stringent]

Originally posted by |SilentDeath|
Flanderz, thats not a scam... assuming your a memeber of barclays bank..

address is https - secure server. why would a scam bother with secure servers..
ibank being subdomain of barclays.co.uk
the bit after being the address on the server..
nothing wrong with that address...

Have no idea, but I am not a member ... plus it was on my private email address, hence spam, hence I was cautious.

Oh well if I'm wrong then I'm wrong, I was just suspicious.

[Moby-Dick]

Originally posted by |SilentDeath|
Flanderz, thats not a scam... assuming your a memeber of barclays bank..

address is https - secure server. why would a scam bother with secure servers..
ibank being subdomain of barclays.co.uk
the bit after being the address on the server..
nothing wrong with that address...

Flanderz didnt quote the whole link ( thankfully )

Whet he left out is that @213. < rest of IP here >

its an Exploit known as Phishing - IE ignores everything before the @ symbol.

There are other exploits what scammers can use to conceal an URL.

http://www.theregister.co.uk/content/55/34447.html


Tell you what - if you dont think its a scam , then I'm sure flanderz will forward the mail to you and you can put your bank details where your mouth is ?

[Butuz]

Yes moby's right. IE is 100% succeptible to that kind of scam - the browser doesnt even realise it is not on the https://ibank.barclays.co.uk server. Very scary - i never click on links from emails or anywhere else if its important i type it in manually.

Butuz

[SilentDeath]

as you said, he missed out the bad part of the url..... the rest of the url is a perfectly good barclays site.. which is not related to any scam afaik

[acidrainy]

Yeah, I even used this scam in a coursework submision.... of course it was done in a comical way mind you .

But anyone can do it, frighteningly easy to be caught out.