USBank Money Wise[Apologies if this gets posted to the list twice, I inadvertently sent it from an e-mail address that I believe will be rejected by the list, since it is not subscribed to the list]
Jeff, since I never saw any response as to whether you were going to whitelist "usbank-email.MUNGEDcom" or not, I thought I would just go ahead and forward the actual newsletter to the list, just in case anyone still has any doubts or concerns as to its legitimacy (note that they even included a "Phishing Alert" in the newsletter).
Please let me know what you decide to do so that I have deal with this appropriately by whitelisting on my end, if necessary.
Bill ----- Original Message ----- From: U.S. Bank To: my e-mail address Sent: Tuesday, August 24, 2004 8:08 AM Subject: Your August eNewsletter from U.S. Bank
View this email as a Web page. Visit the U.S. Bank eNewletter Archive.
Managing Money in College Even students who don't study accounting need to have money management skills. With U.S. Bank Internet Banking, you have the tools to help them establish a solid financial foundation.
Internet Banking allows college students to view account activity, transfer funds and pay bills - all from their computer. Students can do the bulk of management, and you can monitor from afar, assuring that they develop financial independence, and that you get a good night's sleep. More >>
Check 21: What Does it Mean to You? Check 21 is short for the Check Clearing for the 21st Century Act, which was signed into law by President Bush last year.
Beginning on October 28, 2004, banks may begin to replace original paper checks with a "substitute check" if the check was cleared using an electronic image. This substitute check is the legal equivalent of the original check and meets certain characteristics, accurately representing all information on the original check and conforming to industry standards. More >>
Searching Files for a Cancelled Check Just Became a Thing of the Past! Sue Smith felt her blood pressure rise when she opened the bill from her son's recent hospital stay. It was for $582! "That can't be right," she thought. Further review of the bill indicated the hospital hadn't received her last payment. "I know I paid that bill, but now I have to go home, dig through my files for last month's bank statement and make a copy of the cancelled check to show the hospital. Like I have time for this!"
That might have been the case last month, but not today! Images of your cancelled checks and deposit slips are now online. More >>
Phishing Alert There's a new breed of criminal out there called "phishers." They send very realistic looking emails, pretending to be from your bank or some other organization that you trust. Then they ask you to provide sensitive account information, like a PIN, Social Security number, account number or passwords. Don't do it...never, never, ever, ever, ever...ever. More >>
Apply Now, Get a Decision Now Don't wait around for answers...get an immediate decision when you apply for our: a.. Checking & savings accounts b.. CDs c.. Home equity loans & lines d.. Credit cards e.. And much more! More >>
The Check's Not in the Mail Nowadays, research shows that it's much safer to pay bills online than through traditional "snail" mail. Why? Because your mailbox gives criminals an easy, convenient way to steal your personal information. When you pay your bills online, this information stays secure. And you won't have to worry about putting stamps on those bills either!
More great ideas >>
To ensure that you continue to receive email from us, please add us to your Address Book (1800USBanks@usbank-email.com). Thank you.
At U.S. Bank, protecting your privacy is our priority. For your safety, we will never request your personal information, such as IDs, passwords or PINs via email and recommend that you do not share this information with others. Sharing this information gives the recipient full access to your account. If you receive an email like this, please forward it to fraud_help@usbank.com or call our Fraud Liaison Center toll-free at 1-877-595-6256.
You are receiving this email as a courtesy from U.S. Bank. Please know that you can modify your preferences or be removed from our mailing list at any time.
View the U.S. Bank Privacy Policy. Our Web site address is usbank.com
Deposit products offered by U.S. Bank, Member FDIC, Equal Housing Lender.
U.S. Bank EP-MN-BB1R 2751 Shepard Road St. Paul, MN 55116
On Tuesday, August 24, 2004, 4:41:30 PM, Bill Landry wrote:
USBank Money Wise[Apologies if this gets posted to the list twice, I inadvertently sent it from an e-mail address that I believe will be rejected by the list, since it is not subscribed to the list]
Jeff, since I never saw any response as to whether you were going to whitelist "usbank-email.MUNGEDcom" or not, I thought I would just go ahead and forward the actual newsletter to the list, just in case anyone still has any doubts or concerns as to its legitimacy (note that they even included a "Phishing Alert" in the newsletter).
Please let me know what you decide to do so that I have deal with this appropriately by whitelisting on my end, if necessary.
Bill ----- Original Message ----- From: U.S. Bank To: my e-mail address Sent: Tuesday, August 24, 2004 8:08 AM Subject: Your August eNewsletter from U.S. Bank
Bill, That's not too useful without headers and it doesn't prove it's not a phish.
How did you determine that usbank-email.MUNGEDcom really belongs to U.S. Bank?
Jeff C.
----- Original Message ----- From: "Jeff Chan" jeffc@surbl.org
That's not too useful without headers and it doesn't prove it's not a phish.
Yep, didn't realize it would look like garbage once it got posted to the list
How did you determine that usbank-email.MUNGEDcom really belongs to U.S. Bank?
Here is what my search came up with: ========== whois usbank.com: Registrant: U.S. Bancorp Licensing, Inc. (NACLVTHKBD) 800 Nicollet Mall, EP-MN-BB02 Minneapolis, MN 55402 US
Domain Name: USBANK.COM
Administrative Contact, Technical Contact: Administrator, Domainname ContactMiddleName (CPESDLZPEI) domainadmin@usbank.com U.S. Bancorp 2751 Shepard Rd, EP-MN-BB2 St. Paul, MN 55116 US (651) 205-0265 fax: 123 123 1234
Record expires on 15-Feb-2009. Record created on 14-Feb-1995. Database last updated on 24-Aug-2004 20:06:49 EDT.
Domain servers in listed order:
NS3.USBANK.COM 170.135.240.25 NS1.USBANK.COM 156.36.1.18 =========== whois usbank-e-mail.com: Registrant: U.S. Bancorp Licensing, Inc. (AWMADPAZID) 800 Nicollet Mall, EP-MN-BB02 Minneapolis, MN 55402 US
Domain Name: USBANK-EMAIL.COM
Administrative Contact: Administrator, Domainname ContactMiddleName (CPESDLZPEI) domainadmin@usbank.com U.S. Bancorp 2751 Shepard Rd, EP-MN-BB2 St. Paul, MN 55116 US (651) 205-0265 fax: 123 123 1234
Technical Contact: Network Solutions, LLC. (HOST-ORG) customerservice@networksolutions.com 13200 Woodland Park Drive Herndon, VA 20171-3025 US 1-888-642-9675 fax: 571-434-4620
Record expires on 24-Feb-2007. Record created on 24-Feb-2004. Database last updated on 24-Aug-2004 20:07:42 EDT.
Domain servers in listed order:
NS.ONCE.COM 207.189.106.105 NS2.ONCE.COM 207.189.106.108 NS3.ONCE.COM 207.162.212.83 ==========
Both domains were registered through Network Solutions. Same corporate address and phone number, and when I called the phone number listed above, I got the voice mail of a US Bank employee named Mark Marrow (probably the zone technical contact). And, most importantly, the account logon links take you to the official US Bank web site, not some spoofed URL.
I have forwarded the newsletter e-mail as an attachment this time, so hopefully it will come through intact for viewing, including the original message headers.
I have seen many US Bank, Pay-Pal, E-Bay, Citi Bank, etc., phishing e-mails, and this is clearly not one. Anyway, let me know what you plan to do with this one.
Thanks,
Bill
OK I looked at the full newsletter Bill sent and the only reference outside of usbank-email.com or usbank.com was:
<img src="http://r.4at1.com/c/e/r/spacer.tif?sid=198.14567.545248.826.117836428" border="0" width="1" height="1">
Which is presumably some kind of tracking beacon. 4at1.com belongs to the mailer once.com.
Given that there are no destinations outside of the two official-appearing domains I'm going to whitelist usbank-email.com
I may try to phone the zone tech contact at the bank and ask about both domains.
If anyone has any other information, please speak up. I assume is able to differentiate phishing mails from real ones and not report legitimate references included in phishes.
Jeff C.
Hello,
Please whitelist surbl.org. They do not send out spam. :)
Now, should the surbl.org domain be whitelisted because:
1. It is not in any RBL
2. Not found in any Google search of NANAS
3. I know the owner of the domain
4. Because I said that they do not send out spam
At 17:30 24-08-2004, Bill Landry wrote:
How did you determine that usbank-email.MUNGEDcom really belongs to U.S. Bank?
Here is what my search came up with:
whois usbank.com:
There is no proof that usbank.com has any affiliation with usbank-email.com unless you provide the whois information.
The whitelisting process could be streamlined if people provided factual information when they ask for a domain to be whitelisted.
Regards, -sm
On Tuesday, August 24, 2004, 11:01:09 PM, SM SM wrote:
There is no proof that usbank.com has any affiliation with usbank-email.com unless you provide the whois information.
Even that many not be absolute proof, depending on how strictly the registrars check the contact information.
The whitelisting process could be streamlined if people provided factual information when they ask for a domain to be whitelisted.
It would definitely help if people provided explanations and documentation.
Jeff C.
P.S. surbl.org is whitelisted. ;-)
----- Original Message ----- From: "SM" sm@resistor.net
There is no proof that usbank.com has any affiliation with
usbank-email.com
unless you provide the whois information.
If you check again, you will see that I _did_ also provide the whois information for usbank-email.com.
The whitelisting process could be streamlined if people provided factual information when they ask for a domain to be whitelisted.
Agreed.
Bill
Hi Bill, At 23:21 24-08-2004, Bill Landry wrote:
If you check again, you will see that I _did_ also provide the whois information for usbank-email.com.
Yes, I saw that. The point of my previous email was to explain that people should provide more information when they first ask to have a domain whitelisted.
Regards, -sm
Sorry for the newsletter post, I didn't realize that all of the HTML would be stripped from the message.
Bill ----- Original Message ----- From: "Bill Landry" billl@pointshare.com To: discuss@lists.surbl.org Sent: Tuesday, August 24, 2004 4:41 PM Subject: [SURBL-Discuss] Fw: Your August eNewsletter from U.S. Bank