Hi Don, Kaspersky stops this for us (and I assume anyone else who uses their product): Kaspersky Anti-Virus 6.0 for Windows Workstations Access denied The requested URL could not be retrieved URL: http://ipcacoal.org/ipcacoal/includes/ kiwi.htm Blocked by Anti-Phishing Reason: phishing URL Generated: 21/11/2011 10:10:02 a.m. Kaspersky Anti-Virus 6.0 for Windows Workstations Regards Shannon Walker -----Original Message----- From: nznog-bounces(a)list.waikato.ac.nz [mailto:nznog-bounces(a)list.waikato.ac.nz] On Behalf Of Don Gould Sent: Sunday, 20 November 2011 10:17 a.m. To: nznog(a)list.waikato.ac.nz Subject: [nznog] KiwiBank Security Alert http://ipcacoal.org/ipcacoal/includes/kiwi.htm Firefox/Thunderbird often picks up a lot of this crap. I don't know how it's done. I don't know how you give the browsers the heads up so this crap doesn't impact other users who have less clue than the likes of us. I don't know if ISPs are putting blocks in for this sort of crap in their proxys. I don't know if KiwiBank have an active team dealing with this sort of rubbish, though I get hit with them quite often, so clearly someone has KB in their sights. I do appreciate that some of this is just noise and business as usual, but I welcome any comment on or off list. As operators or people with some level of clue, I do consider it our role to take some ownership. D -- Don Gould 31 Acheson Ave Mairehau Christchurch, New Zealand Ph: + 64 3 348 7235 Mobile: + 64 21 114 0699 _______________________________________________ NZNOG mailing list NZNOG(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/nznog

On 20 November 2011 10:17, Don Gould wrote:

I don't know if KiwiBank have an active team dealing with this sort of rubbish, though I get hit with them quite often, so clearly someone has KB in their sights. Hi,

I'm not a KB customer but I did email them asking to fix their internet banking security KB Phising outnumbers other banks Phisisng 10 or 20 to 1 (on my email). My email to them was along the lines of seeing you don't have some type of two factor authentication on your internet banking you are a low hanging fruit for Phising compared to the other NZ banks, hence the high number of phishing emails. Their response was we try and make things easy for our customers, so we don't have two factor auth and we rely on anti fraud software to pick this up. (can dig up the email if anyone is interested) Also it would help if Gmail bounced emails at the border before accepting if they are a SPF hardfail as most banks have their SPF set up to hardfail so it would be nice if GMail's inbound server never accepted emails that had a hard SPF fail. Does mean having to do SPF at accept time rather than later. Dave