I've always gotten phishing emails from large banks I don't do business with, but yesterday I started getting phishing spam purporting to come from a small local chain of banks up here in rural Northern California. Our domain here at work is easily resolvable to a location, either from our IP address, by geocoding our company address, or by using the ICBM tags (oops, talk about targeting) on our web site. So on the one hand, it's really no surprise to see this, though on the other hand our company is only 15 people so it's not exactly leveraging the massive scalability of spamming. But I guess since it is most likely totally automated and by filtering down your phishing effort to make it more credible by several orders of magnitude it must work out. Also, they direct you to a 1-800 number, not a web site, so they don't have to spoof a thousand different banks' web sites. It would we really interesting if their phone system then used caller-ID to determine where you were calling from and then give you the appropriate-sounding fake bank IVR to match the bank listed in the phishing message. Especially if it did it with speech-synthesis! However, I'm not interested in giving one iota of information to the spammer by dialing that number.
n Marc Pfister Technology Manager ENPLAN [EMAIL PROTECTED] 530/221-0440 x108 530/221-6963 Fax
_______________________________________________ Geowanking mailing list [email protected] http://geowanking.org/mailman/listinfo/geowanking_geowanking.org
