-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, Mar 25, 2009 at 9:02 AM, William Allen Simpson <william.allen.simpson@gmail.com> wrote:
I've not recently seen an ISP account phish here. The last one I remember was circa 2003. It was a dictionary attack, arriving at my was@ account (long since rendered useless by spam volume and terminated).
However, I don't save phish/spam anymore. I used to save everything -- providing many of the examples for http://fraudgallery.com/ -- nowadays, just daily scan for false positives, report monetary phish to the few ISPs that actually promptly close down bad actors, and delete the rest.
The only recently successful scams that I am aware of which specifically targeted ISPs have been to obtain control of domain registrar accounts. Whether that was accomplished via phishing, or via some other nefarious method, is still unclear. - - ferg -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFJymASq1pz9mNUZTMRAiE4AKCLBejTuPz2U6fy+Tuw0cKiOoX77ACeMxrz T+OobJm3VwvGRY/337TZrOQ= =IQDP -----END PGP SIGNATURE----- -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/