Phishing & Gazzag

1.Phishing ::

Much like Niranj got this email from paypal, I got a mail from UTI bank(??) I dont have a single bank account and its funny to read this mail. This is what it was

—————————MAIL CONTENT ————————————

UtiBank <customersservice@utibank.com> to me
Subj :: Important Message From UtiBank

Dear Utibank customer

We regret to inform you that your Utibank account could be suspended if you don’t re-update your account information. To resolve this problems please click here and re-enter your account information. If your problems could not be resolved your account will be suspended for a period of 24 hours, after this period your account will be terminated.

For the User Agreement, Section 9, we may immediately issue a warning, temporarily suspend, indefinitely suspend or terminate your membership and refuse to provide our services to you if we believe that your actions may cause financial loss or legal liability for you, our users or us. We may also take these actions if we are unable to verify or authenticate any information you provide to us.

Due to the suspension of this account, please be advised you are prohibited from using Utibank in any way. This includes the registering of a new account. Please note that this suspension does not relieve you of your agreed-upon obligation to pay any fees you may owe to Utibank.


Regards,Safeharbor Department Utibank, Inc

The Utibank team.

This is an automatic message. Please do not reply.

———————————END OF MAIL————————————————–

Now click that link, poor fellow tried to create a website(kinda exact replica though) in geocities primarily aimed at people 60+ who use internet only for e-banking, It just requires common sense to detect it. UTI folks what are you doing?

2. Gazzag ::

Nirenjan (Another Niranj in same post!!) wrote what i exactly felt about Gazzag and why i will never join it.Its again a hack network which steals your personal information and even your email. Check out what he has to say here .So a word of caution, never sign up in any online service that asks your mail ID(any existing account) and password to intimate your friends.Actually in TOS each service(be it yahoo or google) will mention clearly that dont issue use ID & password anywhere else which doesnt have their logo.

Comments 7

  • did you report this website to the UTI bank authorities and Geocities? This reminds me of how DreamHost CEO’s wife fell for something similar (http://blog.dreamhost.com/2006/08/31/phishing-phor-phishers/). One definite thing to note while doing online money transactions is to look for a trusted Web Certificate (say from a company like verisign). Most browsers change the colour of the adress bar when such a certificate exists for the website.

  • @Prashanth

    I did report to UTI.Hope they take action soon.

    And btb the geocities did have a “verisign” certificate. Chk left side,it has a link about SSL certification.

  • Ya da. these kinds of fake things are a headache. As for I too thought of the same thing. I mean any site who asks for other username and pwd, well it is always risky..

  • Ya da. these kinds of fake things are a headache. As for GAZZAG, I too thought of the same thing. I mean any site who asks for other username and pwd, well it is always risky..

  • No No No! A verisign image does not mean it is signed. You need to look at the status bar. Does it show a lock symbol? If it _does_ then it is certified. If not.. then it is not.

  • Have been getting a lot of requests from Gazzag lately. Never even bothered to find out what the heck it was about. Thanx for the info, though. 🙂

    One social network tool is enough for me..

Leave a Reply

Your email address will not be published. Required fields are marked *

%d bloggers like this: