Feeds

Is this the worst scam email of all time?

Phishing illiterates trounce even 419ers in linguistic ineptitude

  • alert
  • submit to reddit

Top three mobile application threats

We have in the past made merry at the linguistic deficiencies of 419 advance fee fraudsters, but nothing the boys from Lagos have ever issued even comes close to what some chancer has just sent reader Joskyn Jones.

The email purports to come from Citibank, (not a new line of attack, as we previously reported) and is a bog-standard phishing scam, to wit: the recipient is asked to verify details online and thereby inadvertently gives his or her credit/debit card number and PIN to the waiting phishers.

However, this particular missive is so spectacular in its ineptitude that we are convinced it is unlikely ever to be bettered:

--- citi_bank_ <Fuereder@futbolamericano.com> wrote:
From citi_bank_ Sat Jan 31 02:19:56 2004
Date: Sat, 31 Jan 2004 05:19:56 -0500
From: citi_bank_ <Fuereder@futbolamericano.com>
To: Joskyn
Subject: citi_bank Email Veerification

Dear _citibank Mebmers,

This leter was sennt by_the Citi_Bank serevr to veerify your E-mail addres_. You must clomptee this psrecos by clicking on the link below and enntering in the litle winddow your Citbiank Debit_ full card nummber and PiN that you_use on_the Atm Machine. That is done for your pocetrtion -m- becourse some of_our memebrs no lengor have accses to their email addseesrs and we must verify it.

http://www.citibankonline.com:4%4e%50%74%708%4d%65%6e%50%57@%6c%6c%61%6b%724%646%62%2e%64%61%2e%52%75/%3f%70%44%6b%59%67%69

To veerify _your_ _email_ adress and access _your_ _citibank account, clic on_the link below_.

Thank you.



Read it and weep - with laughter. What is really special about this magnificent piece of imbecility is that it seemingly comes from "americanfootball.com", a really convincing touch.

The link, btw, really does give a pop-up window over the main Citibank site. Once you have obligingly entered your details, you are informed "Your E-Mail Address Was Successful Verified", so they couldn't even get that bit right.

Here's a bit of advice for the people behind this nasty little scam: in the unlikely event that you ever lay your hands on some authentic credit card details, use them to sign up for a crash course in English, a decent dictionary and, for the love of all that's Holy, an at least half-convincing email address. Please - you're killing us. ®

Related stories

Gone phishin'

Combat fraud and increase customer satisfaction

More from The Register

next story
Spanish village called 'Kill the Jews' mulls rebranding exercise
Not exactly attractive to the Israeli tourist demographic
Oz bank in comedy Heartbleed blog FAIL
Bank: 'We are now safely patched.' Customers: 'You were using OpenSSL?'
Happy 40th Playmobil: Reg looks back at small, rude world of our favourite tiny toys
Little men straddle LOHAN, attend tiny G20 Summit... ah, sweet memories...
Forget the beach 'n' boardwalk, check out the Santa Cruz STEVE JOBS FOUNTAIN
Reg reader snaps shot of touching tribute to Apple icon
Lego is the TOOL OF SATAN, thunders Polish priest
New minifigs like Monster Fighters are turning kids to the dark side
Dark SITH LORD 'Darth Vader' joins battle to rule, er, Ukraine
Only I can 'make an empire out of a republic' intones presidential candidate
Chinese company counters pollution by importing fresh air
Citizens line up for bags of that sweet, sweet mountain air
Google asks April Fools: Want a job? Be our 'Pokemon Master'
Mountain View is prankin' like it's 1999...
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.