A clever Craigslist Phishing fraud is using a highly targeted approach to trick Craigslist advertisers into giving up their username and passwords.
The trick is to provide the headline from an actual Craigslist posting in order to help evade spam filtering and more importantly, to increase the likelihood of fooling the recipient into believing the “Confirmation for Posting” is legitimate.
A typical email will arrive such as:
Subject: Your ad, titled ‘1970 short bed ford ‘ has been posted.
From: craigslist <firstname.lastname@example.org>
The Subject line will vary according to match the title of the specific Craigslist posting.