[Phish] Bellsouth webmail

Forums » Up and Running » Security » Spam, Scam and Phishbusters » [Phish] Bellsouth webmail


Uniqs: 11403	Share Topic:	RSS topic:	toggle: flat / full normal / watch	Posting:	Post a:	Post a:

Links: ·Phish Tracker ·Anti-Phishing Work Group ·Avoid Phishing

Anyone know what this number is? »
« [Credit Card Fraud] ReservationRewards Norwalk CT $10 Charge App

drakeada
Premium
join:2000-12-27
Roswell, GA

Does this look legit??

Dear BELLSOUTH Webmail Subscriber,
>
> To complete your BELLSOUTH Webmail account, you must reply to this email
> immediately and enter your password here (*********)
> Failure to do this will immediately render your email address deactivated
> from
> our database.
>
> You can also confirm your email address by logging into your BELLSOUTH
> Webmail
> account at »webmail.bellsouth.net/
>
> Thank you for using BELLSOUTH.NET !
>
> THE BELLSOUTH.NET TEAM
>

permalink · 2008-03-05 09:21:01 · Print ·

Doctor Olds I Need A Remedy For What's Ailing Me. Premium,VIP join:2001-04-19 1970 442 W30 clubs:	Re: [Phish] Bellsouth webmail Yes, from the little bit you have posted it does look legit, but that is because the headers and the raw message HTML are missing which are needed in order to make a true determination.. -- What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?
	permalink · 2008-03-05 10:07:14 ·

captokita Premium join:2005-02-22 Calabash, NC	said by drakeada : > immediately and enter your password here (*********) > Failure to do this will immediately render your email address deactivated > from > our database. Yeah, because legit emails ask for passwords all the time.... In other words, NO. But as Doctor Olds said, check the headers of the email for clues. Bet it didn't come from a Bellsouth IP.
	permalink · 2008-03-05 10:10:45 · Print ·

Doctor Olds
I Need A Remedy For What's Ailing Me.
Premium,VIP
join:2001-04-19
1970 442 W30
clubs:

Re: [Phish] Bellsouth webmail

said by captokita

:

Yeah, because legit emails ask for passwords all the time....

In other words, NO.

Yes and no as most phish emails don't give you the option of:

"You can also confirm your email address by logging into your BELLSOUTH Webmail"

Which doesn't ask for your password that I can see in the plain text posted by the OP.
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?

permalink · 2008-03-05 10:16:09 · Print ·

captokita
Premium
join:2005-02-22
Calabash, NC

Re: [Phish] Bellsouth webmail

said by Doctor Olds

:

Yes and no as most phish emails don't give you the option of:

"You can also confirm your email address by logging into your BELLSOUTH Webmail"

Which doesn't ask for your password that I can see in the plain text posted by the OP.

Yes, but the asking of the password immediately sets off the "phish-o-meter". Chances are, the link to the Bellsouth webmail was fake as well. To which, you log in, and they then have your password.

No company in this day and age will ask you for your password through email, and if they do, are not worth dealing with.

permalink · 2008-03-05 14:05:00 · Print ·

anonyjane join:2008-02-10 Billingsley, AL	It's fake. Please forward the message with headers to securityfeedback@bellsouth.net
	permalink · 2008-03-05 14:53:59 ·

Doctor Olds I Need A Remedy For What's Ailing Me. Premium,VIP join:2001-04-19 1970 442 W30 clubs:	Re: [Phish] Bellsouth webmail How do you know? Do you have the raw HTML with full headers? We just went through this with a PayPal email that quite a few posters swore was fake and when the actual headers were finally posted it was a legitimate email after all. -- What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?
	permalink · 2008-03-05 15:18:36 ·

anonyjane join:2008-02-10 Billingsley, AL	Re: [Phish] Bellsouth webmail It's definitely fake. BS/AT&T would never ask a customer to update that information via e-mail. They have the account administration site (»https://uversecentral1.att.com) where customers could take care of things like that. Plus I'm an "insider".
	permalink · 2008-03-06 10:30:02 ·

Doctor Olds
I Need A Remedy For What's Ailing Me.
Premium,VIP
join:2001-04-19
1970 442 W30
clubs:

Re: [Phish] Bellsouth webmail

said by anonyjane

:

It's definitely fake. BS/AT&T would never ask a customer to update that information via e-mail. They have the account administration site (»https://uversecentral1.att.com) where customers could take care of things like that. Plus I'm an "insider".

OK.

Thanks for the clarification since the OP never came back to post the full email header details.
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?

permalink · 2008-03-06 10:42:21 · Print ·

pcdebb RIP dadkins Premium join:2000-12-03 Tampa, FL clubs:	from the way i'm reading it, it's not asking for an "update". it almost sounds like he needs to "activate" a webmail account he signed up for?
	permalink · 2008-03-06 18:21:50 ·

anonyjane join:2008-02-10 Billingsley, AL	Re: [Phish] Bellsouth webmail You don't have to activate the webmail. Once the account is created, it can be used right away. Even if you never log in to your webmail account, it never goes "inactive" unless you go into account administration (a secure site) to suspend the account yourself.
	permalink · 2008-03-07 22:32:37 ·

removed Crisis Management Squad Premium,VIP join:2002-02-08 Houston, TX clubs:	This is 100% fake... very common phish now that spammers and phishers are starting to use compromised ISP email accounts.
	permalink · 2008-03-10 01:29:02 ·

your comment..

Forums » Up and Running » Security » Spam, Scam and Phishbusters	Anyone know what this number is? » « [Credit Card Fraud] ReservationRewards Norwalk CT $10 Charge App


Sunday, 29-Nov 18:29:38	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF