Fraudulent content being published at:
URL:
http://codeiseasy.info/wp/CheseFullI...ihwpihpwihpwh/
Target of Phishing Attack: Chase Bank
Initial Detection Date: 2/14/2010
Dear Network Administrator:
Internet Identity has received information that the website address (URL),
http://codeiseasy.info/wp/CheseFullI...ihwpihpwihpwh/
which appears to be on a server under your control, is an illegitimate website that attempts to mimic or "spoof" the Chase Bank site.
We recommend that you investigate this website as soon as possible. In order to protect innocent visitors to the site from being misled or victimized, we request that you remove the fraudulent pages located on that machine.
We are working on behalf of Chase Bank to deactivate such fraud websites. The website attempts to collect personal login and financial information of visitors including credit card details. Based on our investigation, this website is unauthorized and unrelated to Chase Bank, and likely constitutes an improper attempt to obtain personal details of unsuspecting visitors. A practice also known as "phishing."
We also request that you sequester any data related to this site for future investigation by law enforcement. This would include files, source code, and any data stored that is associated with it. It would also include any log entries of access to the server for the site, connections to upload or download data to the site, or records of the account being created.
If you are not the appropriate staff to handle this matter, we ask that you immediately escalate this matter to the attention of those within your organization who can resolve this network abuse issue.
Additionally, we invite you to help us and the Anti-Phishing Working Group (APWG) in the fight against phishing with two important activities.
First, please help us to educate consumers who are fooled by this criminal web site. You can do this by pointing the illegal URL to an educational page at:
http://education.apwg.org/r/en?ORIGI...randing=497126
The instructions on how to implement it can be found here:
http://education.apwg.org/r/how_to.html
Second, we would appreciate your participation in an anonymous survey looking into the ways phishers break into websites and servers to set-up phishing sites like this one. The survey will take 10 minutes or so to complete, and we are hoping to share results with the webhosting, webmaster, and website owner communities to let you know how to better protect yourselves from such attacks in the future.
The survey and instructions for completing it are here:
http://www.zoomerang.com/Survey/?p=WEB229GLB7E43E
If you have any questions, please contact us by replying to this email or at the phone number listed below. We greatly appreciate your prompt attention to this matter. Please advise us regarding what actions you take.
Thank you!
--
Security Incident Response Team
Internet Identity -- on behalf of Chase Bank
Expert Phishing Prevention and Response
http://www.internetidentity.com
TEL: +1-253-590-4100, ext 0
FAX: +1-425-699-6597
II Email Number 64611 II
Case Number: SIT60553