Comments on: Phishing Test http://www.mckeay.net/2005/11/30/phishing-test/ The views of one man on security, privacy and anything else that catches his attention Wed, 20 Aug 2008 08:28:15 +0000 http://wordpress.org/?v=abc By: Jason http://www.mckeay.net/2005/11/30/phishing-test/#comment-328 Jason Sat, 18 Feb 2006 10:13:14 +0000 http://www.mckeay.net/2005/11/30/phishing-test/#comment-328 I got 9/10 - only one wrong was CapitalOne (with the domain thingy) which turned out to be legitimate - hey better to be safe than sorry!! I got 9/10 - only one wrong was CapitalOne (with the domain thingy) which turned out to be legitimate - hey better to be safe than sorry!!

]]> By: Leftyman http://www.mckeay.net/2005/11/30/phishing-test/#comment-327 Leftyman Sun, 04 Dec 2005 10:08:45 +0000 http://www.mckeay.net/2005/11/30/phishing-test/#comment-327 I got most of them wrong... I pretty muched guessed the lot. If it was the real thing and not an image I'm sure I'd get them all right cus I use the CallingID.com toolbar which somehow always recognizes the fruad. I got most of them wrong… I pretty muched guessed the lot.

If it was the real thing and not an image I’m sure I’d get them all right cus I use the CallingID.com toolbar which somehow always recognizes the fruad.

]]> By: Kostas P. http://www.mckeay.net/2005/11/30/phishing-test/#comment-326 Kostas P. Fri, 02 Dec 2005 12:12:02 +0000 http://www.mckeay.net/2005/11/30/phishing-test/#comment-326 Exactly the same mistakes for me too. But I hadn't noticed that you could see the URL at the bottom so I had to read through them and use my instinct. Exactly the same mistakes for me too. But I hadn’t noticed that you could see the URL at the bottom so I had to read through them and use my instinct.

]]> By: Martin http://www.mckeay.net/2005/11/30/phishing-test/#comment-325 Martin Thu, 01 Dec 2005 04:20:22 +0000 http://www.mckeay.net/2005/11/30/phishing-test/#comment-325 Looks like we're all making the same mistake, erring on the side of caution. Not that I'd expect anything less from the people who read this site. Looks like we’re all making the same mistake, erring on the side of caution. Not that I’d expect anything less from the people who read this site.

]]> By: student http://www.mckeay.net/2005/11/30/phishing-test/#comment-324 student Thu, 01 Dec 2005 04:16:30 +0000 http://www.mckeay.net/2005/11/30/phishing-test/#comment-324 I got the exact same as Barry (above). I just looked at the web address in the status bar at the bottom. If the address looked correct, I would glance over the email to see what it was about. As a general rule, I don't click on links in emails when the link goes to a page where I am required to enter personal information. I got the exact same as Barry (above). I just looked at the web address in the status bar at the bottom. If the address looked correct, I would glance over the email to see what it was about. As a general rule, I don’t click on links in emails when the link goes to a page where I am required to enter personal information.

]]> By: Barry http://www.mckeay.net/2005/11/30/phishing-test/#comment-323 Barry Wed, 30 Nov 2005 23:45:21 +0000 http://www.mckeay.net/2005/11/30/phishing-test/#comment-323 1. Chase Legitimate ... CORRECT 2. PayPal Phishing Fraud ... CORRECT 3. Bank of America Phishing Fraud ... INCORRECT (The correct answer was Legitimate) 4. Washington Mutual Phishing Fraud ... CORRECT 5. MSN Phishing Fraud ... CORRECT 6. Earthlink Legitimate ... CORRECT 7. Amazon Phishing Fraud ... CORRECT 8. eBay Phishing Fraud ... CORRECT 9. Capital One Phishing Fraud ... INCORRECT (The correct answer was Legitimate) 10. Network Solutions Legitimate ... CORRECT You got 8 out of 10 correct, or 80 % ...Speaking of Chase, I tried reporting phishing to them but none of the forms on their website were for phishing reports, and they all required personal information like a telephone number. Then I tried the administrative contact email address in their whois information, but "domadmin at chase dot com" wasn't valid and the email bounced back to me. I reported Chase to http://wdprs.internic.net/ for an incorrect administrative contact email, and I'll be following up if I don't see any progress. As for Bank of America, they don't autorespond to phishing complaints, and they didn't respond to my complaint about it through their form. 1. Chase
Legitimate … CORRECT

2. PayPal
Phishing Fraud … CORRECT

3. Bank of America
Phishing Fraud … INCORRECT
(The correct answer was Legitimate)

4. Washington Mutual
Phishing Fraud … CORRECT

5. MSN
Phishing Fraud … CORRECT

6. Earthlink
Legitimate … CORRECT

7. Amazon
Phishing Fraud … CORRECT

8. eBay
Phishing Fraud … CORRECT

9. Capital One
Phishing Fraud … INCORRECT
(The correct answer was Legitimate)

10. Network Solutions
Legitimate … CORRECT

You got 8 out of 10 correct, or 80 %

…Speaking of Chase, I tried reporting phishing to them but none of the forms on their website were for phishing reports, and they all required personal information like a telephone number. Then I tried the administrative contact email address in their whois information, but “domadmin at chase dot com” wasn’t valid and the email bounced back to me. I reported Chase to http://wdprs.internic.net/ for an incorrect administrative contact email, and I’ll be following up if I don’t see any progress.

As for Bank of America, they don’t autorespond to phishing complaints, and they didn’t respond to my complaint about it through their form.

]]>