Re: [SPAM-TAG] Re: [SURBL-Discuss] Fw: Your August eNewsletter from U.S. Bank

OK I looked at the full newsletter Bill sent and the only reference outside of usbank-email.com or usbank.com was:

<img src="http://r.4at1.com/c/e/r/spacer.tif?sid=198.14567.545248.826.117836428" border="0" width="1" height="1">

Which is presumably some kind of tracking beacon. 4at1.com belongs to the mailer once.com.

Given that there are no destinations outside of the two official-appearing domains I'm going to whitelist usbank-email.com

I may try to phone the zone tech contact at the bank and ask about both domains.

If anyone has any other information, please speak up. I assume is able to differentiate phishing mails from real ones and not report legitimate references included in phishes.

Jeff C.