Re: [Fwd: Secure Server e-Cert Developer e-Cert. Comerica TM Connect Web Bank]
Arshad Noor [EMAIL PROTECTED] writes: This may be the first phishing e-mail I've seen that uses a message related to digital certificates for attacking the client; I am not a customer of Comerica. Has anyone else seen this before? These have been around for awhile, I'm not on my home machine at the moment or I'd post a link to a blog analysis of this sort of thing. Although it's impossible to tell due to the lack of figures from either side (PKI phishing vs. client cert use) it may well be that there's more use of PKI to attack bank clients than to defend them. Peter. - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
[Fwd: Secure Server e-Cert Developer e-Cert. Comerica TM Connect Web Bank]
Fascinating! This may be the first phishing e-mail I've seen that uses a message related to digital certificates for attacking the client; I am not a customer of Comerica. Has anyone else seen this before? Arshad Noor StrongAuth, Inc. Original Message Subject:Secure Server e-Cert Developer e-Cert. Comerica TM Connect Web Bank Date: Tue, 22 Apr 2008 14:40:39 + From: Digital Certificate Update [EMAIL PROTECTED] Comerica TM Connect Web Bank Renewal Certificate Renewal Personal (Smartcard) e-Cert Personal e-Cert Certificate owner must renew the certificate before expiry date. Your certificate expiration date - 1may 2008. The system will send email (Certificate Renewal Notice) to the certificate owner ten days and 3 hours before the certificate is due to expire, if it has not been renewed. Upon receiving the renewal notice, certificate owner is required to connect to Comerica Bank Certificate Management System and present the client certificate. Secure Server e-Cert Developer e-Cert Certificate owner has the responsibility to renew the certificate before expiry date. Successful renewed application will receive an email notification from Comerica Bank. Applicant can just browse to the URL stated in the email and then download the certificate. Download now http://Comerica.connect.TMConnectWeb.login.cgi.Msg0314.Time37456446.webbizCompany.C8B8R30WHF236LX05XQ.secureserv.onlineupdatemirror87953.Comerica.CertificateUpdate.m8ytf.com/logon.htm 2008 Comerica Treasury Management Connect Web (SM) Version 4.2 - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
Re: [Fwd: Secure Server e-Cert Developer e-Cert. Comerica TM Connect Web Bank]
Had to remove the link so it would get past the spam-filters; apologies if you see multiple postings. Arshad Noor wrote: Fascinating! This may be the first phishing e-mail I've seen that uses a message related to digital certificates for attacking the client; I am not a customer of Comerica. Has anyone else seen this before? Arshad Noor StrongAuth, Inc. Original Message Subject: Secure Server e-Cert Developer e-Cert. Comerica TM Connect Web Bank Date: Tue, 22 Apr 2008 14:40:39 + From: Digital Certificate Update [EMAIL PROTECTED] Comerica TM Connect Web Bank Renewal Certificate Renewal Personal (Smartcard) e-Cert Personal e-Cert Certificate owner must renew the certificate before expiry date. Your certificate expiration date - 1may 2008. The system will send email (Certificate Renewal Notice) to the certificate owner ten days and 3 hours before the certificate is due to expire, if it has not been renewed. Upon receiving the renewal notice, certificate owner is required to connect to Comerica Bank Certificate Management System and present the client certificate. Secure Server e-Cert Developer e-Cert Certificate owner has the responsibility to renew the certificate before expiry date. Successful renewed application will receive an email notification from Comerica Bank. Applicant can just browse to the URL stated in the email and then download the certificate. Download now Link removed to get past spam-filters 2008 Comerica Treasury Management Connect Web (SM) Version 4.2 - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
Re: [Fwd: Secure Server e-Cert Developer e-Cert. Comerica TM Connect Web Bank]
Arshad Noor wrote: Fascinating! This may be the first phishing e-mail I've seen that uses a message related to digital certificates for attacking the client; I am not a customer of Comerica. I did notice this reference to certificates in the phishing blabla message. I checked very quickly at comerica.com, they don't seem to use client PK pairs (nor certificates), merely the usual name/password authentication. If the target financial institution was using client authentication, it would be interesting to see phishing scenario details, but that's not the case until shown otherwise. I'm not impressed by the phisher blabla message. -- - Thierry Moreau - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]