Consumer Fraud Reporting
FDIC and VeriSign
Reporting on the Latest Frauds, Scams, Fake Lotteries, Spams and Hoaxes

Home Email this page GovernmentAgencies Recognize a scam Report a Scam If you are scammed Your wallet is stolen? Prevent scams Free Publications Recommended Feedback to CFR Glossary Search Credit Card Rights Bookmark and Share
 

Up

Recommended:
books


Recommended
AV product:

Phishing - The FDIC and/or VeriSign, Inc. Email Scam

From February, 2007, there are emails that are made to look as if they are sent from the FDIC or VeriSign, Inc.  These scam emails ask recipients to run a "security guard script" to secure Web sites. Currently, the emails have false return addresses of:

  •  "FDIC Legal Information Technology,"
  • "FDIC Information Security," or
  • "Verisign Inc."

and the subject lines include the phrases:

  •  "Regular Security Maintenance" or
  • "Regular Hosting Security Maintenance."

The emails are frauds and they were not sent by the FDIC or VeriSign, Inc.

How to report the scams

Information about counterfeit items, cyber-fraud incidents and other fraudulent activity may be forwarded to the FDIC's Cyber-Fraud and Financial Crimes Section, 550 17th Street, N.W., Room F-4004, Washington, D.C. 20429, or transmitted electronically to alert@fdic.gov. Questions related to federal deposit insurance or consumer issues should be submitted to the FDIC using an online form that can be accessed at http://www2.fdic.gov/starsmail/index.asp.

Below is an alert published by the FDIC to warn of these scams:

Special Alert

SA-46-2007
February 22, 2007


 
TO: CHIEF EXECUTIVE OFFICER (also of interest to Security Officer)
SUBJECT: Fraudulent E-Mails Claiming to Be From the FDIC
Summary: E-mails fraudulently claiming to be from the FDIC or VeriSign, Inc. are attempting to deceive financial institutions in to installing unknown software on their computer networks.

The Federal Deposit Insurance Corporation (FDIC) has become aware of e-mails that appear to be sent from the FDIC or VeriSign, Inc. and ask recipients to run a "security guard script" to secure Web sites. Currently, the e-mails are purportedly from "FDIC Legal Information Technology," "FDIC Information Security," or "Verisign Inc." and the subject lines include the phrase "Regular Security Maintenance" or "Regular Hosting Security Maintenance." The e- mails are fraudulent and were not sent by the FDIC or VeriSign, Inc.

The fraudulent e-mails state that "to secure your websites, please use the attached file and (for UNIX/Linux Based servers) upload the file "vprotect.php" in: "./public_html" or (for Windows Based servers) in: "./wwwroot" in your site." The e-mails also provide instructions for recipients who "do not know how to use" the file.

The FDIC is working with the United States Computer Emergency Readiness Team to determine the exact effects of the executable file. Recipients should consider this file to be a malicious attempt to collect personal or confidential information. Financial institutions and consumers should NOT download the executable file attached to the e-mails. Consumers and financial institutions should report any similar situations by following the procedures below.

Information about counterfeit items, cyber-fraud incidents and other fraudulent activity may be forwarded to the FDIC's Cyber-Fraud and Financial Crimes Section, 550 17th Street, N.W., Room F-4004, Washington, D.C. 20429, or transmitted electronically to alert@fdic.gov. Questions related to federal deposit insurance or consumer issues should be submitted to the FDIC using an online form that can be accessed at http://www2.fdic.gov/starsmail/index.asp.

  Sandra L. Thompson
Director
Division of Supervision and Consumer Protection
 
 

Distribution: All FDIC-Insured Institutions

NOTE: Paper copies of FDIC Special Alerts may be obtained through the FDIC's Public Information Center (1-877-275-3342 or 703-562-2200).



 

For more information about phishing, see this page.
 


Copyright CFR 2005, 2006, 2007, 2008, 2009  - Definition of scam, fraud, etc.Legal disclaimer / corrections / complaints  -  Privacy Policy
Names used by scammers in the examples on this page and others often belong to real people and businesses who often have no knowledge of nor connection to the scammer's use of their name and information.  Sample scam emails and other documents are copies of the scam to help potential victims recognize and avoid it.  You should presume that any names used and presented here in a scam are either fictitious or used without their legitimate owner's permission.
Email us at: