New Chase Bank Scam... Did a good job actually..

[Kevin Palmer]

Well here is another new one to me. I have seen variations of it but never been offered money to go into my account for taking their survey..



[Broken External Image]:

[Broken External Image]:

[Broken External Image]:



Gee, and to think only one reward is available per account/survey. Man, I was just about to do this ten or twelve times too....

 

[Fred]

I wish there was a way to reply to that junk with an attachment that would cause their PC to melt! :angry:

 

[Kevin Palmer]

Would be nice wouldn't it...

 

[Thomas Rogers]

Many of these "phishing" emails use a vulnerability in older versions of Internet Explorer that allows the URL in the address bar to be overwritten by the hacker's website to make it LOOK like you have gone to a legit site.



The following link has information on this and a link to a TEST that allows you to test your browser to see if it is vulnerable in this way. You can trust this link:

 

[Brian Teitell]

Good i haver the new firefox and it is not vulnerable!!

 

[walter clark]

Firefox is da bomb daddy-o

 

[JohnnyB]

What I do before I click on anything like that is to hover the mouse pointer over the link and see what the URL is that is displayed. 99% of the time it is not the link it is supposed to be. then you know it is a fraud.

 

[WXMotorSports DecalsPartsAccs]

What little do these morons know when they use an image in the email scam the image is residing on a server which can be traced right back to them.

 

[Thomas Rogers]

SST, the whole email is formated as HTML, all the images and the links are to a server the phisher has setup. It's usually setup on a free/anon hosting site in a foreign country.



For these reasons, it almost impossible to catch these guys.



TJR

 

[walter clark]

Plus who says there in a country that enforces such laws???

 

[Thomas Rogers]

Exactly Walter. The biggest issue is jurisdiction and enforcement.

 

[mookie]

TJR,



The Secunia web site says the solution is to "Disable Active Scripting support."



How is this done and does it affect anything else on the computer?:huh:

 

[Richard L]

All of these phishing scams have one thing in common. They want to get your account number, credit card number, pin number, userID and passwords. These are things that any bank, etc would already know. If they knew you were a customer, and had your email address, they would already know more about you than you probably care for them to know.



Very simple rule to follow. If you get an unsolicited email, or a telephone call from some finanical institute that you do business with, they will NEVER ask you for information that they would already have on file. If they want verify that you are who you say you are, they will ask you to verify your zip code, the last four of your SSN, or perhaps you mother's maiden name. They will never ask you for PIN's or Passwords !



...Rich

 

[Kevin Palmer]

I agree Rich. And every major site out thee will tell you the same thing.



I just find them humorous at this point.



This will get the little ol lady or single old man at home. That is the shame of it all..

 

[Thomas Rogers]

Mookie, disabling active scripting in IE, go to Tools->Internet Options, then the "Security" tab.



Then, for each of the Zones, click on "Custom Level", then scroll down to "Scripting" and for each of the "Scripting" operations ("Active Scripting", etc), either click Disable or Prompt.



Do this for EACH zone, apply your changes, and get ready for a bunch of message boxes as you load web pages (if you setup for PROMPTS) or some pages to just not "work" if you setup DISABLE.



It's annoying to have to do this, but it is much safer.



TJR