Does Not Compute

Does Not Compute

Home Forums The Tea Room Does Not Compute

Viewing 24 posts - 1 through 24 (of 24 total)
  • Author
    Posts
  • #412120
    Neil Wyatt
    Moderator
      @neilwyatt

      I got this email (excerpt) from Santander yesterday.

      Spot the deliberate mistake?

      Neil

       

      Santander will never send you an e-mail asking you to click on a link, or to enter, reconfirm or change your security or card details. We will never ask you to tell us your passwords by e-mail or over the phone.

      If you think you may have revealed your security details in any way, please call us immediately on 0800 9 123 123.

      You can also help Santander by forwarding any Phishing email you receive to:

      [email protected]

      Edited By Neil Wyatt on 01/06/2019 21:51:23

      #35495
      Neil Wyatt
      Moderator
        @neilwyatt
        #412131
        V8Eng
        Participant
          @v8eng

          Yes HaHa. Better not click on it.wink

          Edited By V8Eng on 01/06/2019 23:13:52

          Edited By V8Eng on 01/06/2019 23:21:39

          #412146
          Chris Evans 6
          Participant
            @chrisevans6

            I had a Santander phishing email a few weeks ago. Called into a branch and showed to staff on my phone. They were totally disinterested.

            #412151
            David Colwill
            Participant
              @davidcolwill19261

              I tried clicking the link but it doesn't work smile p

              #412152
              Michael Gilligan
              Participant
                @michaelgilligan61133
                Posted by David Colwill on 02/06/2019 08:46:35:

                I tried clicking the link but it doesn't work smile p

                .

                Here's why:

                https://www.model-engineer.co.uk/forums/mailto%3Cimg%20src=

                MichaelG.

                #412157
                Plasma
                Participant
                  @plasma

                  Have to be so careful these days. I unplugged my home phone and just use the line for internet saves on a lot of junk calls. But mobiles create their own problems, especially when the scammers can clone genuine numbers.

                  Reminds me of an old police adage the A B C of investigators;

                  Accept nothing, Believe no one, Check everything….Mick

                  #412158
                  V8Eng
                  Participant
                    @v8eng

                    I rather thought the error was: Santander saying they would not send an e-mail asking you to click on a link but then went on to include a clickable link at the end.

                    perhaps Neil can tell us now.

                    Edited By V8Eng on 02/06/2019 09:03:48

                    #412159
                    Michael Gilligan
                    Participant
                      @michaelgilligan61133
                      Posted by V8Eng on 02/06/2019 09:02:51:

                      I rather thought the error was: Santander saying they would not send an e-mail asking you to click on a link but then went on to include a clickable link at the end.

                      .

                      Yes, of course … but we cannot check to see whether the link was valid or spoofed, because Neil's pasting of the message has inserted the address that I posted for David's benefit.

                      MichaelG.

                      #412162
                      Neil Wyatt
                      Moderator
                        @neilwyatt
                        Posted by V8Eng on 02/06/2019 09:02:51:

                        I rather thought the error was: Santander saying they would not send an e-mail asking you to click on a link but then went on to include a clickable link at the end.

                        Indeed. The irony being that it was an automated email generate when I sent them a secure message.

                        Even more ironic as (bear with me):

                        1 – The secure message system asks for an email to send the acknowledgement, notification of a reply etc.

                        2 – It won't accept my work email address because the top level domain fails their verification even though it's been valid for five years. I have previously asked them to fix this.

                        3 – So I have to enter my old email address.

                        4 – It sends the emails to my work email address anyway…

                        Santander's IT department? First up against the wall…

                        Neil

                        #412171
                        V8Eng
                        Participant
                          @v8eng

                          WI love this type of system (not) one of the recent automated oddities was when I reported a phishing email to one of the organisations.

                          I got a reply thanking me for reporting the suspect website that I had visited!

                          Edited By V8Eng on 02/06/2019 10:09:43

                          Edited By V8Eng on 02/06/2019 10:20:06

                          #412175
                          Alan Vos
                          Participant
                            @alanvos39612

                            Some mail clients look for plain text email addresses and turn them in to links. That address may have been entered as plain text. You can always re-type the address to avoid the risk of an obfuscated dangerous link.

                            #412177
                            Neil Wyatt
                            Moderator
                              @neilwyatt
                              Posted by Alan Vos on 02/06/2019 10:20:33:

                              Some mail clients look for plain text email addresses and turn them in to links. That address may have been entered as plain text. You can always re-type the address to avoid the risk of an obfuscated dangerous link.

                              No, it was a live link.

                              #412179
                              FMES
                              Participant
                                @fmes

                                Sorry, I'm confused (as usual).

                                Just logged in to the secure santander website and I see this message on the log in page:

                                Received a suspicious email?

                                If you get an email that's branded Santander but doesn't contain your name, do not reply, open any attachment or click on any link. Forward the email to [email protected] for us to investigate.

                                The correct contact number is quoted

                                What am I missing?

                                 

                                Edited By FMES on 02/06/2019 10:29:40

                                #412188
                                John Haine
                                Participant
                                  @johnhaine32865
                                  Posted by Plasma on 02/06/2019 09:02:33:

                                  Have to be so careful these days. I unplugged my home phone and just use the line for internet saves on a lot of junk calls. But mobiles create their own problems, especially when the scammers can clone genuine numbers.

                                  Reminds me of an old police adage the A B C of investigators;

                                  Accept nothing, Believe no one, Check everything….Mick

                                  This is not a mobile issue. It is very easy for an automated calling system to spoof the caller ID, whether calling a mobile or fixed number.

                                  #412190
                                  vintage engineer
                                  Participant
                                    @vintageengineer

                                    I received a phone call the other day from my bank, when I asked them to prove it they said we don't have to as we are your bank! At which point I suggested they put the phone where the sum doesn't shine! The then sent me a letter asking me to ring them!

                                    #412216
                                    Stuart Bridger
                                    Participant
                                      @stuartbridger82290

                                      A couple of years back I got a call from my local bank branch.
                                      As a security validation I asked if I could call back. The answer was no, we have no facilities to call a branch direct. Also if I called their call centre there was no way to redirect the call to the branch…..

                                      #412219
                                      Harry Wilkes
                                      Participant
                                        @harrywilkes58467
                                        Posted by Chris Evans 6 on 02/06/2019 08:16:28:

                                        I had a Santander phishing email a few weeks ago. Called into a branch and showed to staff on my phone. They were totally disinterested.

                                        Had the same responce from TSB got that 'what do you exspect me to do about it' !

                                        H

                                        #412250
                                        Enough!
                                        Participant
                                          @enough

                                          Getting back to the original theme …

                                          I still don't get this. A construction such as [email protected] in the text of an email is simply a request to your email client to open up a new email window with that address and is not inherently dangerous since you can bail out at that point.

                                          It (perhaps) could be dangerous if the sender has attached a hidden IP link to it (if that's even possible) and the user clicks on it unawares but I suspect most decent email clients would recognise the dichotomy and barf.

                                          So was there a hidden IP link?

                                           

                                          Edited By Bandersnatch on 02/06/2019 17:06:50

                                          #412253
                                          Enough!
                                          Participant
                                            @enough

                                            OK. having done some experimenting on my own system, I get it now.

                                            (forgot about "mailto:"  )

                                            Edited By Bandersnatch on 02/06/2019 17:38:03

                                            #412263
                                            old mart
                                            Participant
                                              @oldmart

                                              I can't see anything wrong with the address "Santander.co.uk", and the "phishing@" is just a department.

                                              #412264
                                              duncan webster 1
                                              Participant
                                                @duncanwebster1
                                                Posted by Stuart Bridger on 02/06/2019 13:13:23:

                                                A couple of years back I got a call from my local bank branch.
                                                As a security validation I asked if I could call back. The answer was no, we have no facilities to call a branch direct. Also if I called their call centre there was no way to redirect the call to the branch…..

                                                Quite a few years ago I had an issue with HMRC so I booked an appointment to go in and see them in the local office. They then told me that they didn't deal with that issue and I'd have to do it on line. I asked them to ring someone up who did understand it as I'd tried and failed. They then informed me that they could not make outgoing calls! They didn't have an adequate response to my next question " so what do you do if the building catches fire, send a runner to the fire station?"

                                                #412272
                                                Enough!
                                                Participant
                                                  @enough
                                                  Posted by old mart on 02/06/2019 17:55:45:

                                                  I can't see anything wrong with the address "Santander.co.uk", and the "phishing@" is just a department.

                                                  It would be just a department if it were an email link …. but without the ' mailto: ' in front of it, it isn't. It hides a hyperlink that could be taking you anywhere.

                                                  I presume that was Neil's point (and a good one).

                                                  #412427
                                                  Neil Wyatt
                                                  Moderator
                                                    @neilwyatt
                                                    Posted by Bandersnatch on 02/06/2019 17:04:50:

                                                    Getting back to the original theme …

                                                    I still don't get this. A construction such as [email protected] in the text of an email is simply a request to your email client to open up a new email window with that address and is not inherently dangerous since you can bail out at that point.

                                                    It (perhaps) could be dangerous if the sender has attached a hidden IP link to it (if that's even possible) and the user clicks on it unawares but I suspect most decent email clients would recognise the dichotomy and barf.

                                                    So was there a hidden IP link?

                                                    Edited By Bandersnatch on 02/06/2019 17:06:50

                                                    Phishing emails usually spoof links so just because it looks like an email doesn't mean it is.

                                                    It's not only poossible, it's easy – I'll set one up here in a few seconds:

                                                    [email protected]

                                                    Click that one – it's safe, but it won't send me a message or make your email client barf – and only took me about ten seconds.

                                                    Also, there were two URLs in the footer of the email as well.

                                                  Viewing 24 posts - 1 through 24 (of 24 total)
                                                  • Please log in to reply to this topic. Registering is free and easy using the links on the menu at the top of this page.

                                                  Latest Replies

                                                  Home Forums The Tea Room Topics

                                                  Viewing 25 topics - 1 through 25 (of 25 total)
                                                  Viewing 25 topics - 1 through 25 (of 25 total)

                                                  View full reply list.