LMAO Worst Scam attempt yet!

Toggle sidebar Toggle sidebar
DrPizza

DrPizza

Administrator Elite Member Goat Whisperer
Mar 5, 2001
49,601
167
111
www.slatebrookfarm.com
I *almost* fell for this :p if not for the typos ;)

Dear Citi-bank Cardholder,

This email was sent by the Citicards serevr to veerify your email
adress. You must clmeptoe this posrces by clicking on the link
below and enteering in the little window your Citi-Bank Debit
card nummber and pin that you use on Atm Machine.
This is done for your prtocetion -I- becaurse some of our membres no
lnoger have acsces to their email addrseess and we must verify it.

To veerify your e-mail adderss and akcess your OnlineCitibank account, klick on
the link beloow. If nothing hapneps when you klick on the link -z copy
and pastte the link into the addres bar of your web broswer.

http://www.citibank.com/?RzQiXvbmRTfjVTXxxWiAZf1epb38tpXaZOuXjFkdzAxviu3Qqm

---------------------------------------------
Thank you for using Online-Citibank!
---------------------------------------------
Click to expand...

edit: the actual link goes to: http://www.citi.com:ac-xWx6Kc3qnDQomTQq2tCB@yl120dskq.da.ru/?NZK33WpfaaNT6lN
 
DrPizza

DrPizza

Administrator Elite Member Goat Whisperer
Mar 5, 2001
49,601
167
111
www.slatebrookfarm.com
Originally posted by: CheapArse
please tell me thats not a copy & paste of the email. lmao, thats pathetic.
Click to expand...

it's pathetic that I copy and pasted it? Or the email itself is pathetic? Because, that's the email, cut and pasted...
I normally delete scam attempts instantly, but couldn't resist passing this one on...
 
I

imported_Mike

Lifer
Dec 4, 2002
18,211
1
0
Originally posted by: DrPizza
Originally posted by: CheapArse
please tell me thats not a copy & paste of the email. lmao, thats pathetic.
Click to expand...

it's pathetic that I copy and pasted it? Or the email itself is pathetic? Because, that's the email, cut and pasted...
I normally delete scam attempts instantly, but couldn't resist passing this one on...
Click to expand...

lol, why would I call you pathetic for copy and paste? I would call you crazy for retyping it. ;):p

The email is pathetic...you'd think they would at least run it through an English spell checker.
 
DrPizza

DrPizza

Administrator Elite Member Goat Whisperer
Mar 5, 2001
49,601
167
111
www.slatebrookfarm.com
Here's the complete header:
Return-Path: <isi@citibank.com>
Received: from f01v-34-171.d0.club-internet.fr ([212.195.245.171])
by mta7.adelphia.net
(InterMail vM.5.01.06.05 201-253-122-130-105-20030824) with SMTP
id <20040110122156.PCPX9027.mta7.adelphia.net@f01v-34-171.d0.club-internet.fr>
for <(my email)>; Sat, 10 Jan 2004 07:21:56 -0500
Received: from citibank.com (mail4.citigroup.com [199.67.139.129])
by f01v-34-171.d0.club-internet.fr (Postfix) with ESMTP id CF31D2CD26
for <(my email)>; Sat, 10 Jan 2004 07:19:39 -0500
Message-ID: <6.0.0.22.1.20040110071939.4eea1efc@citibank.com>
X-Sender: constrictors@mail4.citigroup.com
X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22
Reply-To: CITIBANK <sidney@citicards.com>
Date: Sat, 10 Jan 2004 07:19:39 -0500
To: (my email)
From: CITIBANK <isi@citibank.com>
Subject: CITI EMAIL Veerification - (my email)
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by AMaViS perl-11 mion
Click to expand...
 
SagaLore

SagaLore

Elite Member
Dec 18, 2001
24,036
21
81
Originally posted by: DrPizza
I *almost* fell for this :p if not for the typos ;)

Dear Citi-bank Cardholder,

This email was sent by the Citicards serevr to veerify your email
adress. You must clmeptoe this posrces by clicking on the link
below and enteering in the little window your Citi-Bank Debit
card nummber and pin that you use on Atm Machine.
This is done for your prtocetion -I- becaurse some of our membres no
lnoger have acsces to their email addrseess and we must verify it.

To veerify your e-mail adderss and akcess your OnlineCitibank account, klick on
the link beloow. If nothing hapneps when you klick on the link -z copy
and pastte the link into the addres bar of your web broswer.

http://www.citibank.com/?RzQiXvbmRTfjVTXxxWiAZf1epb38tpXaZOuXjFkdzAxviu3Qqm

---------------------------------------------
Thank you for using Online-Citibank!
---------------------------------------------
Click to expand...

edit: the actual link goes to: http://www.citi.com:ac-xWx6Kc3qnDQomTQq2tCB@yl120dskq.da.ru/?NZK33WpfaaNT6lN
Click to expand...

Send a complaint about this to policy@da.ru
 
Jeff7181

Jeff7181

Lifer
Aug 21, 2002
18,368
11
81
I'd like to give the person the benefit of the doubt and say he/she is from a non-english speaking country, so of course he/she doesn't know how to spell... but geeze, lol.
 
SagaLore

SagaLore

Elite Member
Dec 18, 2001
24,036
21
81
I just sent all of this information to the owners of the domain. Let's see what happens. :)
 
SagaLore

SagaLore

Elite Member
Dec 18, 2001
24,036
21
81
Originally posted by: Jeff7181
I'd like to give the person the benefit of the doubt and say he/she is from a non-english speaking country, so of course he/she doesn't know how to spell... but geeze, lol.
Click to expand...

If they actually would have spent a little more time on the spelling and grammer, they might have gotten quite a few hits from this. The scheme is well crafted, they load the real site inside their fake site by using a frameset, and then run a popup that takes the information. They also generate the real site address in the address bar which I'm sure would throw even more people off.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom