Select Page

For more phishing samples, see my phishy email collection.

What could possibly go wrong with this offer? Just feed my Social Security Number to a website with a Chinese TLD (Top Level Domain name), blocked by default by the open source intrusion detection system, snort, and operated by somebody who wants to stay anonymous.

More than three years after the Equifax fiasco, phishers still use it to prey on the vulnerable. For more info, here is a presentation about what’s wrong with our credit reporting system, and another presentation about how to fix it.

Finally, notice the unsubscribe link at the bottom. Never follow unsubscribe links from a phishing email. This tells your attacker your email address is good.

Don’t phall for phishing!