Posts Tagged ‘forging’

Vonage Account Security Phish – A Perfect 10

Tuesday, July 27th, 2010

This is one for the record books.

The other day we intercepted several copies of a phishing email that, in conjunction with a fake web page, attempts to acquire your Vonage phone number and password.

Subject: Important – Vonage Account Security Information

From: “donotreply@vonage.com” <donotreply@vonage.com>

The body contains this image file:

: Fake Vonage Survey Request

In and of itself this phish is not particularly outstanding. The image file above looks like it could be from Vonage but actually links to a forged version of a Vonage sign-in page. The web site is not even a very good forgery.

What is outstanding is the URL of the fake web site . . .

(more…)

Tags: forging, phishing, url, vonage
Posted in Message Control, Phishing Lessons | 1 Comment »

Spam Detection Rates, What the Numbers Don’t Tell You

Tuesday, February 9th, 2010

Anyone who has looked for an email anti-spam solution is probably familiar with spam capture rate statistics. You’ve no doubt seen claims such as “Blocks 99.9% of spam” but what the capture rate doesn’t tell you is going to prove even more important to your overall filtering satisfaction.

While some spam campaigns are innovative and can be difficult for various filtering systems to catch, stopping most spam email is not too difficult. The real challenge is NOT filtering the good mail that end users want to receive in the process.

A spam filter’s claimed capture rate means nothing if you do not know their false-positive rate. False positives are good emails caught by the filters and marked as spam. A great capture rate will not be acceptable to the end-user if it comes with a high false-positive rate. The cost of lost opportunities and delayed responses to legitimate mail will exceed the benefit provided by the blocking of spam.

(more…)

Tags: capture rate, forging, spam, spoofing
Posted in Spam Tactics, Spam-Stats | No Comments »

Can Anyone Send Emails Claiming To Be From Me?

Friday, January 29th, 2010

The short answer is yes. Anyone can forge the sender (From) field of an email and have it claim to be coming from pretty much any address they want.

At first glance you might think “That’s horrible, why do we allow that to happen?” The truth is that it’s rather common, and you might even do this yourself, though for entirely innocent reasons.

(more…)

Tags: email, email clients, forging, smtp, spoofing, white list
Posted in All About Email, Spam Tactics | No Comments »