|
rasputinn (m)
|
I never do bank transactions via the internet
|
|
|
|
|
|
rasputinn (m)
|
Phishing indeed
|
|
|
|
|
|
Opoki (m)
|
You might not believe this, These fraudsters have allies among the bank officials
who give out vital information that could aid clonning of a website and ftp,
This was personally revealed by my uncle who is working with cybercrime.
|
|
|
|
|
|
Opoki (m)
|
You might not believe this, These fraudsters have allies among the bank officials
who give out vital information that could aid clonning of a website and ftp,
This was personally revealed by my uncle who is working with cybercrime.
|
|
|
|
|
|
faakay (m)
|
I usually get this mails too,
This people extract emails from this website. Most of NL members get this email.
|
|
|
|
|
|
na2day? (m)
|
look at it on the bright side, it shows that the future of IT and IT security will be very strong in Nigeria, thats jobs baby jobs  |
|
|
|
|
|
webdezzi (m)
|
I saw a thread here about a month now, this particular website was hacked.
how come? how can they let it happen again.
how come i see my previous post on the reply page but doesn't show up on the threads is it also coming down to Nairaland? |
|
|
|
|
|
larimo
|
Its not a new thing, looking for the gullible ones. It only calls for vigilance and wisdom.
If one has a problem with his ATM, he should see his bank. I am sure no one ever got his card directly from Interswitch.
|
|
|
|
|
|
lagerwhenindoubt (m)
|
Just on the side, for those who have complained about time-outs or 501 errors. and slow posts. If you have VISTA then it is very likely that Auto-Tune is enabled. See this article to solve this problem Disable TCP Auto-Tuning to Solve Slow Network, Cannot Load Web Page or Download Email Problems in Vista http://www.mydigitallife.info/2007/03/22/disable-tcp-auto-tuning-to-solve-slow-network-cannot-load-web-page-or-download-email-problems-in-vista/When Windows Vista is connected to high speed broadband Internet connection, there may be some incompatibilities and conflict problem or error such as the following: * Poor intermittent network performance. * Slow network loading. * Unable to open and load some websites or webpages using Internet Explorer or Firefox, where the blue loading bar keeps running for a long time, but the pages fail to load. |
|
|
|
|
|
kshow1 (m)
|
Its not a new thing, looking for the gullible ones. It only calls for vigilance and wisdom.
If one has a problem with his ATM, he should see his bank. I am sure no one ever got his card directly from Interswitch.
Good talk and advice. |
|
|
|
|
|
jusx50
|
I've not received such an email though but i guess unemployment/laziness causes it and if govt creates job opportunities for youths, this crime rate will stop, brilliant job by these scammers but beware !!!!
|
|
|
|
|
|
babaogun (m)
|
@Everyone
Important points for online banking
Your bank is never going to request for any information via email. they can tell you to go to the nearest branch to verify any detail.
Cheers folks.
|
|
|
|
|
|
mboma (m)
|
i almost fall for that stuff, i was thinking its was from interswicth dat day the server was very slow so i decide to go the next day only to here the info on my radio set dat scam guyzz are foreging the interswich web.immidiatley i delected all the message. i think God ho! i for don wreck!
|
|
|
|
|
|
mboma (m)
|
i almost fall for that stuff, i was thinking its was from interswicth dat day the server was very slow so i decide to go the next day only to hear the info on my radio set dat scam guyzz are foreging the interswich web.immidiatley i delected all the message. i think God ho! i for don wreck!
|
|
|
|
|
|
webdezzi (m)
|
mboma, congrat. Just on the side, for those who have complained about time-outs or 501 errors. and slow posts. If you have VISTA then it is very likely that Auto-Tune is enabled. See this article to solve this problem Disable TCP Auto-Tuning to Solve Slow Network, Cannot Load Web Page or Download Email Problems in Vista http://www.mydigitallife.info/2007/03/22/disable-tcp-auto-tuning-to-solve-slow-network-cannot-load-web-page-or-download-email-problems-in-vista/When Windows Vista is connected to high speed broadband Internet connection, there may be some incompatibilities and conflict problem or error such as the following: * Poor intermittent network performance. * Slow network loading. * Unable to open and load some websites or webpages using Internet Explorer or Firefox, where the blue loading bar keeps running for a long time, but the pages fail to load. How come it happens only on nairaland. i spend most of my lifetime online but i dont see that happening elsewhere |
|
|
|
|
|
lagerwhenindoubt (m)
|
just stickin my thumb in the air here,
could it be that nl gets at minimum 1000 posts within a second such that the web-server crawls to a halt even with asynchronous processing?
|
|
|
|
|
|
soludo2008 (m)
|
 Bank fraudsters are on rampage. I hope that someone will not call for my head if I say that over 80% bank fraud have traces to the bankers themselves  . A member of the Association of Christian Bankers should confirm my guessing.
|
|
|
|
|
|
Dr. Lorenz (m)
|
@ post I don't fall for such scams. I've been sent such emails before and i don't bother opening them. I could just for fun just to see if the scammers would use the info i put in there lol. When they see that the info is wrong, body go tell them.  . I have a friend who wanted me to help him and his group of friends design a page on a fake nokia website supposedly top be used like they do for MTN Winners scam. I posted him so tay he had to leave me alone @aeso Where do you stay in Australia? |
|
|
|
|
|
soludo2008 (m)
|
Bank fraudsters are on rampage. I hope that someone will not call for my head if I say that over 80% bank fraud have traces to the bankers themselves . A member of the Association of Christian Bankers should confirm my guessing.
|
|
|
|
|
|
xzile
|
man i see.its high time people should wise up.i've goten such few many times.like mode nine i only press delete cuz they cant hustle a hustla.
|
|
|
|
|
|
ayodeji1 (m)
|
i almost fell for it as well.i recieved so many of such until i decided to call all the banks i have account with to verify if its truly from them before i finally realised it was a scam.but what is this country turning into?i wonder.
|
|
|
|
|
|
adeomos (m)
|
one needs to be very carefull this days
|
|
|
|
|
|
agabaI23 (m)
|
Dear value customer,
We noticed that you need to update your Halifax Online Account . However, You will need to update some of your records in our Resolution center, if not, this will result in your online account been suspended. Please update your records with us on or before June 8th, 2009.
please contact us immediately by clicking on this link below:
Click Here To Start
Thank you for your prompt attention to this matter.
We apologize for any inconvenience.
Thank you for using Halifax !
The Halifax plc.
Information on protecting yourself from fraud, please review the Security Tips in our Security Center.
|
|
|
|
|
|
Everbright (f)
|
Just got one now. But you know what! Just click on delete when you get such to avoid being tempted.  |
|
|
|
|
|
aeso (m)
|
look at it on the bright side, it shows that the future of IT and IT security will be very strong in Nigeria, thats jobs baby jobsĀ Unfortunately senior management in Nigeria and elsewhere never make IT security a priority and it is always pushed down the list if it ever gets discussed at management meetings. This is because it is seen as an unnecessary cost and an obstacle to a rich customer experience. However, once a security breach occurs, it becomes top agenda in an emergency meeting. Let's hope it creates more jobs so guys like us can relocate back and contribute to Naija's development. |
|
|
|
|
|
aeso (m)
|
For those lamenting on the web administrator!
You should ask yourself if the bank took the proper procedure in employing the better guys to maintain their online server.
2) How much was "positively" invested in the so-called ETB online website.
3) What checks and balances was put to place on those maintaining the website and how do they respond to problems when encountered; DO this people (ETB) even consider their customer's protection/safety.
Lastly, the web admin doesn't have to give access before a less secured site can be compromised. I give kudos to aeso for sharing his thoughts here, but believe me phishing has gone way beyond how it seem.
My contribution
- nitation
Thanks. How is it possible that this criminals got into ET Bank's website control panel and created a subdomain to upload a phishing website. believe me, the person incharge of managing ET Bank's website is directly responsible for this. As someone who has grounded knowledge in Etical soiling and forency investigation, i know well, how a website is hacked into, so u wont tell me to believe that the fraudstars actually hacked into ETB's website and used it to upload a fraud page.
Please other web programmers here should know what am talking about. Its only if the bank uses a kanel shell code which is vulnerable to attacks, or any other easy web uploading scripts that this happens. Moreso, this fraudstars are not even hackers because what they do is not regarding as soiling so they would not possibly be able to go into their cpanel.
I'm open to more arguments on this
The bank should question their site admin for this! PERIOD!
Have you heard of famous websites that have been hacked in the past? CNN, White House by Chinese hackers? Do a google search to find out. I don't dispute your view of a possible collusion with an ETB officer in this, but as a forensic or "forency" expert you claim to be, you should bear a more flexible approach in your investigations. Believe me it is quite easy, although may require some patience. Here's one avenue: 1. Run an nslookup to get web server's IP address. 2. Scan andĀ probe server for services running, do OS fingerprinting to discover what OS is running. Possibly detect which web server is in use as well. 3. Scan to see if there are vulnerabilities on the server that have not been patched. If none found, subscribe to mailing lists for zero-day attacks and wait till patiently new vulnerability is reported. Quickly run an exploit before web/server admins have time to patch systems. 4. Run an exploit to hijack web server. Elevate your privileges/permissions and plant a backdoor for future privileged access. Design your [fake] interswitch web page and upload on server using ssh. Design exactly like real interswitch, or just download copy of the real site if you don't have the time. 5. Create new database on existing database server. Link [fake] interswitch web page form to database to "harvest" proceeds of phish. 6. Send bogus email to several thousands of users. 7. Run operation for a few hours only to escape detection. Clear funds in "mugu" accounts. 8. Cover your tracks by clearing the system logs of all traces of activity. So it's as [easy] as that. The problem I see is that most webmasters are ignorant of security issues. Ask yourself who gets the best jobs? It has never been, and never will be, the most suited/skilled. It's always the individual who blows his trumpet the most with a 10-page CV or who gets there on merit. The lesson here is that web servers must always be patched regularly. Users must also look for a padlock/key sign on their browser when posting confidential info. If you don't see a padlock, close the page immediately. If you do see a padlock, click on it to check the site's certificate to ensure it the real Interswitch, as anyone can easily setup a secure server. I am open to more argv on this, |
|
|
|
|
|
aeso (m)
|
@ post I don't fall for such scams. I've been sent such emails before and i don't bother opening them. I could just for fun just to see if the scammers would use the info i put in there lol. When they see that the info is wrong, body go tell them. . I have a friend who wanted me to help him and his group of friends design a page on a fake nokia website supposedly top be used like they do for MTN Winners scam. I posted him so tay he had to leave me alone @aeso Where do you stay in Australia? brotha, na Melbourne I dey oh! U dey my side? |
|
|
|
|
|
aeso (m)
|
@ webpro: http://cyberinsecure.com/white-house-network-hacked-by-chinese-on-multiple-occasions/So kpanel or cpanel access isn't needed here as you believe. The chinese gained access to the white house networks over and over again and the American cybersecurity experts had no clue what had happened. They even served malware (viruses, Trojans, etc.) to visitors to the site on one occasion and probably used that to gain access to those PCs that downloaded the Trojans as well! So we are in an insecure online world!   |
|
|
|
|
|
joobreel (m)
|
Internet security!!! How secure can it be some people work 24/7 to breach it. I bow o
|
|
|
|
|
|
femzy (m)
|
I am open to more argv on this,
Why argue with him about what Blackhats can do , |
|
|
|
|
|
cystein (m)
|
Well guys this aint a difficult thing to do. What happens in this case is the scammers pick the page source but edit the form action for example. If i have a form that i want to defraud you with i can easily set it as follows. <form action=" http://mywebsite.com/snb/9071:8080" that instead posts me your card details enough to give me access to your account. Always call the bank on the original numbers and not the contacts issued on the site |
|
|
|
|
|
![Nairaland [Nigerian Forum] Home](http://www.nairaland.com/Themes/default/images/english/home.gif)
Author
lampard_bg.gif (55.26 KB, 300x250 )
