Fraudulent messages - phishing

These are fraudulent e-mail attacks with goal to elicit private information from user as login to the accounts, card PIN etc.

How to recognize fraudulent e-mails:

• With graphic design of the message attackers are trying to give the impression that the message was send by an organization whose clients are attacked.
   
• Text can look like information about non-payment, call for verification of the password validity or its change or as client satisfaction research with a service.
    
• In the message text is a link which should look that it is directed to the websites of the organization (bank) but on closer examination you find out that it is linked to somewhere else and there are fraudulent websites.
    
• In the browser address line is showed different address than address of the organization whose clients are attacked. Sender address can also be from different domain than websites of the organization (you see it after showing head of an email).
    
• Message/form encourages you to share information that would not be required by the organizaton.

[source: http://www.hoax.cz/phishing/]

How can you help:

Forward to us every suspicious message by email on abuse@vsb.cz and attach also the source code of the message (see guides for Outlook 2010, Outlook 2007, Thunderbird, Horde).