E-Evidence Information Center – Organizations, etc
So, of course, with the power of organized communication networks (like the internet) comes the potential for misuse. Lately I have grown fed up with the recent rise in spoofing of financial sites that is occurring through email and on the web. A couple of days ago a I received a very official notice from what claimed to be PayPal. This email included a link to fill out a form located on their website dealing specifically with security concerns. So, immediately, since this was an HTML email, I looked at the source and determined that the link wouldn’t take me to PayPal’s site but one with a domain of mycitisecure.com .. Visiting that site (without the rest of the URL) reveals a spoof of the Citibank site complete with the proper url in the location bar. Going to the actual URL that they sent reveals a replica of a PayPal site in the same manner. Now THAT is BAD NEWS.
In any case, I want to do something about this and am looking for a place to start. Perhaps the link above will yield something worthwhile.
FTC Releases Guidlines on how not to get Phished
PP points me to an article describing some recent activity by the Justice Department and the FBI in busting some of these plots.
Best way is to use a service like http://www.MailAmi.com
Sign up, plop the names of people you want mail from in the field provided, and switch the setting [in the settings menu] to “Block all but allowed” and you’ll never get mail from anyone you don’t want mail from.
As a side note, it works at the perimeter, so spammers can’t even send the mail across the net, it stops at the senders computer.