[Phish] Bellsouth webmail in Spam, Scam and Phishbusters http://www.dslreports.com/forum/r20111670 en Sat, 05 Dec 2009 00:46:28 EDT Sat, 05 Dec 2009 00:46:28 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20138608 removed : This is 100% fake... very common phish now that spammers and phishers are starting to use compromised ISP email accounts.]]> http://www.dslreports.com/forum/remark,20138608 Mon, 10 Mar 2008 01:29:02 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20128801 anonyjane : You don't have to activate the webmail. Once the account is created, it can be used right away. Even if you never log in to your webmail account, it never goes "inactive" unless you go into account administration (a secure site) to suspend the account yourself.]]> http://www.dslreports.com/forum/remark,20128801 Fri, 07 Mar 2008 22:32:37 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20121658 pcdebb : from the way i'm reading it, it's not asking for an "update". it almost sounds like he needs to "activate" a webmail account he signed up for?]]> http://www.dslreports.com/forum/remark,20121658 Thu, 06 Mar 2008 18:21:50 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20118693 Doctor Olds :
said by anonyjane See Profile :

It's definitely fake. BS/AT&T would never ask a customer to update that information via e-mail. They have the account administration site (»https://uversecentral1.att.com) where customers could take care of things like that. Plus I'm an "insider".
OK. :D Thanks for the clarification since the OP never came back to post the full email header details.
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?]]> http://www.dslreports.com/forum/remark,20118693 Thu, 06 Mar 2008 10:42:21 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20118596 anonyjane : It's definitely fake. BS/AT&T would never ask a customer to update that information via e-mail. They have the account administration site (»https://uversecentral1.att.com) where customers could take care of things like that. Plus I'm an "insider".]]> http://www.dslreports.com/forum/remark,20118596 Thu, 06 Mar 2008 10:30:02 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20113899 Doctor Olds : How do you know? Do you have the raw HTML with full headers? We just went through this with a PayPal email that quite a few posters swore was fake and when the actual headers were finally posted it was a legitimate email after all.
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?]]> http://www.dslreports.com/forum/remark,20113899 Wed, 05 Mar 2008 15:18:36 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20113736 anonyjane : It's fake. Please forward the message with headers to securityfeedback@bellsouth.net]]> http://www.dslreports.com/forum/remark,20113736 Wed, 05 Mar 2008 14:53:59 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20113397 captokita :
said by Doctor Olds See Profile :

Yes and no as most phish emails don't give you the option of:

"You can also confirm your email address by logging into your BELLSOUTH Webmail"

Which doesn't ask for your password that I can see in the plain text posted by the OP.
Yes, but the asking of the password immediately sets off the "phish-o-meter". Chances are, the link to the Bellsouth webmail was fake as well. To which, you log in, and they then have your password.

No company in this day and age will ask you for your password through email, and if they do, are not worth dealing with. ]]> http://www.dslreports.com/forum/remark,20113397 Wed, 05 Mar 2008 14:05:00 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20111935 Doctor Olds :
said by captokita See Profile :

Yeah, because legit emails ask for passwords all the time.... :uhh:

In other words, NO. :D

Yes and no as most phish emails don't give you the option of:

"You can also confirm your email address by logging into your BELLSOUTH Webmail"

Which doesn't ask for your password that I can see in the plain text posted by the OP.
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?]]> http://www.dslreports.com/forum/remark,20111935 Wed, 05 Mar 2008 10:16:09 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20111892 captokita :
said by drakeada See Profile :

> immediately and enter your password here (*********)
> Failure to do this will immediately render your email address deactivated
> from
> our database.
Yeah, because legit emails ask for passwords all the time.... :uhh:

In other words, NO. :D

But as Doctor Olds said, check the headers of the email for clues. Bet it didn't come from a Bellsouth IP. ]]> http://www.dslreports.com/forum/remark,20111892 Wed, 05 Mar 2008 10:10:45 EDT Re: [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20111871 Doctor Olds : Yes, from the little bit you have posted it does look legit, but that is because the headers and the raw message HTML are missing which are needed in order to make a true determination..
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time?]]> http://www.dslreports.com/forum/remark,20111871 Wed, 05 Mar 2008 10:07:14 EDT [Phish] Bellsouth webmail http://www.dslreports.com/forum/remark,20111670 drakeada : Does this look legit??

Dear BELLSOUTH Webmail Subscriber,
>
> To complete your BELLSOUTH Webmail account, you must reply to this email
> immediately and enter your password here (*********)
> Failure to do this will immediately render your email address deactivated
> from
> our database.
>
> You can also confirm your email address by logging into your BELLSOUTH
> Webmail
> account at »webmail.bellsouth.net/
>
> Thank you for using BELLSOUTH.NET !
>
> THE BELLSOUTH.NET TEAM
> ]]> http://www.dslreports.com/forum/remark,20111670 Wed, 05 Mar 2008 09:21:01 EDT