Phishing Email

Posted on the July 16th, 2009 under Others Matters by angelopanares

I checked my mom’s email account and I found a seemingly legitimate email from Yahoo about deactivation of unused or inactive accounts. The email ask that you reply to the mail and input your username, password and other info. After seeing this, I immediately knew the email was for phishing.

Yahoo or any legitimate organization will never ask for your account details. Specially your password. The from email seemed to be legitimate as it had a @yahoo.com domain but, when you click on reply you will see that the recipient is already a @gmail.com account. It is very easy to spoof a from email address but the source of the Phishing email must input a valid email for the reply to, this is also another thing to look out for.

Also in the inbox, a legit email from yahoo will always have a Yahoo logo beside the from name.

If ever you encounter such, forward it to phishing@cc.yahoo-inc.com for Yahoo users and fillup a form for Gmail users http://mail.google.com/support/bin/request.py?contact_type=abuse_phishing.

One Response to 'Phishing Email'

Subscribe to comments with RSS
  1. July 17, 2009 at 11:06 pm
    angelopanares

    I got a email response from yahoo regarding this phishing email, and I would like to share it with you guys.

    ————————————————————————————————–

    Hello,

    Thank you for writing to Yahoo! Mail.

    The webpage or message that you are writing about was originated by
    someone other than Yahoo!. After investigation, we have determined that
    this email message did not originate from the Yahoo! Mail system. It
    appears that the sender of this message forged the header information to
    give the impression that it came from the Yahoo! Mail system.

    You should assume that any unsolicited message asking for your Yahoo! ID
    and password, security key, or other sensitive information is part of a
    scam to gain unauthorized access to your account. Feel free to simply
    delete such messages, or if you would like to be sure we are aware of
    the scam, you can file a report at:

    http://help.yahoo.com/l/us/yahoo/mail/yahoomail/abuse.html

    If you have already entered your information into a suspicious message
    or web page, you should immediately change your password and update any
    other information you provided. If you provided credit card or other
    financial details, you should also contact your financial institution.
    If you are unable to change your password or regain access to your
    account, you should contact:

    account-security@yahoo-inc.com

    For useful information and resources regarding online security, please
    visit the Yahoo! Security Center at:

    http://security.yahoo.com

    Please let us know if you still need assistance so we may assist you
    further.

    Thank you again for contacting Yahoo! Mail.

    Regards,

Leave a Reply




XHTML::
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>