[KLUG Members] National Credit Union Administration (NCUA) Phish

[awilliam at whitemice.org]

> My wife and I both received very seductive phishing email this morning
> asking us to update our NCUA accounts. The email had a very detailed
> replication of the NCUA web site (including various links). But the
> address that showed when you ran your cursor over the "Click to update
> your records" was not NCUA.

Yep, just do a recursive wget and you can have any website you want - 
exactly.  That part is childs play; pointing this out just so as not to 
give these goons any more credit then they deserve.

>    	 Evolution/linux put the email right into junk, but both Outlook
> Express (XP) and Entourage (on MAC OSX) opened it.

Situation normal. :)

> 	I've also received at least two different pfishing emails purporting to
> come from PayPal.

Only two!  I get a least five or six of these a day if I turn of CLAMAV.
 
> 	The NCUA web site has a good warning about this pfishing.  Readers of
> this list won't need to be warned, but you might have clients that it
> would be good to warn.  Stress that no reputable organization will
> request this kind of information via email

Why would I want to get in the way of natural selection?  Anyone who 
*STILL* reponds to these things is light years past hopeless.  I can't 
count how many times I've explained to people (and often the same people, 
over and over and over again) that the "From:" is trivially forged.