<<< Date Index >>>     <<< Thread Index >>>

[IP] more on Citibank Security Update/spoof





From: J Yunke <yunke@xxxxxxxxxxxxxxxx>
Date: May 6, 2004 9:18:57 PM PDT
To: Sally Richards <Sally@xxxxxxxxxxxxxxxxx>
Cc: Dave Farber <dave@xxxxxxxxxx>, dewayne@xxxxxxxxxxxxx,
justin.yunke@xxxxxxxxxx
Subject: Re: [IP] Citibank Security Update/spoof

Hi Sally, Dave, Dewayne --

  I work for US Bank (www.usbank.com) and am one in a team of Java
developers that constantly works on and supports our Retail Internet
Banking offering.  We have a fraud department that handles various
Internet threats and takes it very seriously.  Our development team is
often tasked with digging up forensic information to help track people
down who implement these "fishing" attacks.  I have heard that we have
been successful on some occasions (mostly domestic), and that several
state/local/federal agencies have been quite responsive to our requests
for help.  It takes a lot of legwork, but it can be done.

  I've never heard of our company brushing off such a concern from a
customer, so I fear that you might not have reached the right "department"
at CitiBank.  Politics and bureaucracy might have sent you to people who
literally don't care because they literally can't do anything about it.
For a company as large as CitiBank to give you this type of experience is
suspicious.

  Without sounding too much like a commercial, I'd be happy to answer any
questions you have about US Bank services.  But in any case, I'm sorry to
hear you experienced this.  Some financial institutions will spend
enormous amounts of money to deal with things like check fraud, whilst
completely ignoring such a nefarious threat such as phishing.

  Regards,
  Justin Yunke

-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/