We have received reports from a lot of different places that they have received apparent phishing messages, including a couple of Finnish banking sites who have also published phishing alerts.

It appears, though, that these phishing messages are always targeted to the domain of the recipient. In other words, if your address is [email protected], you would receive a message which looks like it's from, with a subject of " ID: [email protected]", urging you to click on a link in order to verify your account details (if you can make this out from the message ... the samples we have received are so obfuscated as to be nearly unintelligible). F-Secure : News from the Lab

Linked by shanmuga Tuesday, 15th November 2005 11:41AM