Don't get phished. (Being a Democrat today is bad enough.)

Just to warn people here that some creeps are trying to steal credit card information under the pretense of being your IP, your bank, your phone company. Last week my wife got an e-mail supposedly from Verizon; today I got one from someone caliming to be Earthlink.

Watch out for anything resembling the following:

http://msmvps.com/donna/archive/2004/10/13/15593.aspx

Anti-Phishing: Earthlink - 'Verify your billing information at Earthlink.' Summary
Email title: 'Verify your billing information at Earthlink.', various other subjects.
Scam target: Earthlink customers
Email format: HTML email, containing a single image linking to the phish site.
Sender: EarthlinkAccounting Supporting <27790 @ rotario.com>
Sender spoofed? No
Scam call to action: 'We've encountered a problem due to the fact that we could not verify the data that you provided... To verify your information please follow the link...'
Scam goal: Getting victim's Earthlink username/password, credit card and bank account information, SSN.
Call to action format: Image link
Visible link: h++ps://start.earthlink.net/track?billing.asp
Called link : h++p://218.22.141.202/2/index.html
Phish website hosted on : 218.22.141.202

E-mail

This phish is getting spreaded both as an email and IM message. They both are essentially an image linking to a phish site

same scam basically

Purportedly using Citibank.

I got the full headers out and reported it. But here's the thing, the page they were trying to send me to was sooooo amateurishly bad I can't help but wonder if they were after any possible stored passwords on my comp, rather than - or in addition to - anything I might have input.

Here's the addy they were sending me to:

http://61.186.252.167/ver/

netname: CHINANET-CQ
descr: CHINANET Chongqing Province Network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CQ235-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-CQ
changed: hostmaster@ns.chinanet.cn.net 20010219
status: ALLOCATED NON-PORTABLE
source: APNIC
role: CHINANET CQ
address: The mainstreet 3 daping ,chongqing data communication bureau
country: CN
phone: +862368614888
fax-no: +862368602314
e-mail: abuse@cta.cq.cn
trouble: send spam reports to abuse@cta.cq.cn
trouble: and abuse reports to abuse@cta.cq.cn
admin-c: ZL235-AP
tech-c: ZL235-AP
nic-hdl: CQ235-AP
remarks: http://www.cta.cq.cn
notify: abuse@cta.cq.cn
mnt-by: MAINT-CHINANET-CQ
changed: abuse@cta.cq.cn 20030917
source: APNIC
person: Chinanet Hostmaster
address: No.31 ,jingrong street,beijing
address: 100032
country: CN
phone: +86-10-66027112
fax-no: +86-10-58501144
e-mail: hostmaster@ns.chinanet.cn.net
e-mail: anti-spam@ns.chinanet.cn.net
nic-hdl: CH93-AP
mnt-by: MAINT-CHINANET
changed: hostmaster@ns.chinanet.cn.net 20021016
remarks: hostmaster is not for spam complaint,please send spam complaint to anti-spam@ns.chinanet.cn.net
source: APNIC