dslreports logo
site
    All Forums Hot Topics Gallery
spc
Search Topic:
uniqs
982
share rss forum feed


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
Reviews:
·Verizon Online DSL

[Phish] Pishing scam with the help of verizon!

I received a email that was a unknown phishing scam. When I clicked on it they already had my checking account information. This info was stored in Verizon.
I believe it was a security breech in Verizon. Verizon will not admit to anything or answer me! SEE EMAIL MESSAGE BELOW:

This is HTML source of message you composed. Do not modify here. To modify this message press HTML Messages Editor button.
Dear Verizon Wireless Customer:

The credit card we have on file for your Verizon Wireless Internet service was declined
when we attempted to bill you on 03/07/2014 for your most recent service fees.

For this reason, your service could be suspended. Please visit our Account Information pages, located at

»securelogin.verizonwireless.com/···UI/Login ,and update your credit card information as soon as possible.

Once your credit card information is updated, you will be charged immediately, as soon as
payment is received.

**Account ID: 85547522000111477898
**Email ID: DNIE5345HTF44R
**Online Session PID: 003594649100

@2014 Verizon Wireless Customer Service
HNWGIIVPFUYHNHHNBXSDPBFDWIWKTFYVXUCOOP


nwrickert
sand groper
Premium,MVM
join:2004-09-04
Geneva, IL
kudos:7
Reviews:
·AT&T U-Verse
Sorry, but this is useless.

If it is really a phishing email, then submit to phishtracker. And make sure that you include full headers.

Without seeing the full headers and the raw html, there is very little to see. And without that information, it is impossible to tell whether you received a phish or a valid business email. And, without that information, it is impossible to tell whether Verizon bears any responsibility.
--
AT&T Uverse; Buffalo WHR-300HP router (behind the 2wire gateway); openSuSE 13.1; KDE 4.11.5; firefox 27.0.1


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
OKAY


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
Reviews:
·Verizon Online DSL
reply to nwrickert
From - Thu Mar 06 12:55:26 2014
X-Account-Key: account1
X-UIDL: 15144-1370069514
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys: $label2 $label1
Return-path:
Received: from 345trgf ([unknown] [74.71.163.19]) by vms173001.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTPA id ; Thu,
06 Mar 2014 11:52:02 -0600 (CST)
Date: Thu, 06 Mar 2014 19:51:32 +0200
From: Verizon Wireless
Subject: Verizon Notification ID : VZWXDHXLIC
To: customer@verizonwireless.com
Reply-to: mbxbuf@verizonwireless.com
Message-id:
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
Content-type: text/html; charset=Windows-1251
Content-transfer-encoding: 7bit
X-Priority: 3
X-MSMail-priority: Normal
X-Brightmail-Tracker: AAAAAxrot4ENQpHjHl+Qfw==
X-Brightmail-Tracker: AAAAAA==

This is HTML source of message you composed. Do not modify here.
To modify this message press HTML Messages Editor button.


Dear Verizon Wireless Customer:


 


The credit card we have on file for your Verizon Wireless Internet service was declined


when we attempted to bill you on 03/07/2014 for your most recent service fees.


 


For this reason, your service could be suspended. Please visit our Account Information pages, located at


 


http://securelogin.verizonwireless.com/amserver/UI/Login ,and update your credit card information as soon as possible.


 


Once your credit card information is updated, you will be charged immediately, as soon as


payment is received.


 


**Account ID: 85547522000111477898


**Email ID: DNIE5345HTF44R


**Online Session PID: 003594649100


 


@2014 Verizon Wireless Customer Service


HNWGIIVPFUYHNHHNBXSDPBFDWIWKTFYVXUCOOP


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
reply to nwrickert
I don't know how to submit to phishtracker. I'm very sick, please forgive me.

harald

join:2010-10-22
Columbus, OH
kudos:2
reply to Robert1010
it is phishing. The link which appears to go to verizon does not.


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
How would they get my secure info from Verizon, they even knew what my bill from Verizon was now. My bill had changed slightly do to a change in service. The only one who knew about the change was Verizon.


nwrickert
sand groper
Premium,MVM
join:2004-09-04
Geneva, IL
kudos:7
Reviews:
·AT&T U-Verse

1 recommendation

reply to Robert1010
When posting raw mail, it is best to use code tags
[code]
raw message
[/code]

Otherwise some of the content is corrupted.

In this case, enough survived that we can see it was phishing. The email appears to have originated at 74.71.163.19, which maps to cpe-74-71-163-19.nyc.res.rr.com.

The link that appears to be for verizon is actually for
http://supportverizonwireless.savedusers.is-saved.org/verifyverizon/serversupport/verizon.html
 

(there's an example of using code tags).

How would they get my secure info from Verizon, they even knew what my bill from Verizon was now.

It's hard to say. I do recommend a full malware scan of your own computer, and perhaps ask close friends to do the same.

Yes, it is possible that they broke into a verizon site. But there isn't enough information to be able to conclude that. It is more likely that they got your information some other way.

--
AT&T Uverse; Buffalo WHR-300HP router (behind the 2wire gateway); openSuSE 13.1; KDE 4.11.5; firefox 27.0.1


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
I have ran Malwarebytes, Spybot, Norton360,Glary utiultes. And all have the latest update. It just bather me How they had the new bill, that I have never payed before? Only Verizon and there person on Verizon chat knew about the new amount.


nwrickert
sand groper
Premium,MVM
join:2004-09-04
Geneva, IL
kudos:7
Reviews:
·AT&T U-Verse
said by Robert1010:

Only Verizon and there person on Verizon chat knew about the new amount.

That's something you would have to bring up with verizon. And if their bureaucracy is as bad as that of my ISP, you probably won't get very far.
--
AT&T Uverse; Buffalo WHR-300HP router (behind the 2wire gateway); openSuSE 13.1; KDE 4.11.5; firefox 27.0.1


Robert1010
Premium
join:2007-04-26
Philadelphia, PA
You are very correct! Thank You