On Friday, 30 January 2004 9:42 AM, Steve Withers mailto:swithers(a)mmp.org.nz wrote:

In my e-mail this morning, with a clickable button to take me to their 'secure site':

From: security(a)visa-security.com

Dear Sir/Madam,

[snip] A similar thing had an "honourable" mention in Bruce Schneier's CryptoGram this month. Nice pice of social engineering - the victim already believes there are unauthorised transactions on their card which are being dealt with by Visa and so doesn't chase them up when they appear on their statement. http://www.schneier.com/crypto-gram-0401.html#10 -- Andrew This email with any attachments is confidential and may be subject to legal privilege. If it is not intended for you please reply immediately, destroy it and do not copy, disclose or use it in any way.