Slashdot Mirror

← Back to Stories (view on slashdot.org)

Scam Combines Patriot Act FUD With IE Bug

Posted by timothy on Saturday January 24, 2004 @09:19AM from the misery-loves-company dept.

LostCluster writes "CNET, Reuters, and the AP are all reporting this morning about a circulating e-mail scam that claims that people will lose their FDIC bank account insurance because they are suspected of violating the Patriot Act unless they confirm their bank account information with a website. The scammers then use the already documented bug in IE that allows a site in Pakistan to get 'www.fdic.gov' to appear in the URL bar. Where's an MS patch when we really need one?"

1 of 447 comments (clear)

Min score:

Reason:

Sort:

Still more fun with the PATRIOT act and MS bugs by Mr.+Darl+McBride · 2004-01-24 09:23 · Score: 5, Interesting

You can make your messages look like this to MS users: (PNG picture) and elicit fun responses like this, while your messages look normal to non-MS users.
This is a combination of using simple X- header lines for the top error part, as well as the "'begin'-then-two-spaces" bug, which lets you create a bogus MIME section that only MS mail readers fall for -- useful for suppressing the message part. The begin-with-two-spaces trigger makes an excellent quoted text header. :)