Re: Phishing attempts getting through.

> Can someone expand on the ClamAV detecting phishing attempts. Or direct > me some where? Pick up some of the SARE rulesets. I think spoof or fraud is the one that contains an assortment of phishhooks. Won't get 'em all, but will sure cut down on the more common ones. Loren

Re: Phishing attempts getting through.

Joe Young wrote: > > Can someone expand on the ClamAV detecting phishing attempts. Or > direct me some where? > > Thank you, It just detects the message itself as a virus. Here's a sample report generated when MailScanner fed a phishing email to our virus scanners: The following e-mails were fo

Re: Phishing attempts getting through.

Can someone expand on the ClamAV detecting phishing attempts. Or direct me some where? Thank you, --Joe Matt Kettler wrote: Sunny Forro wrote: Hello, I've got a problem. I've got a lot of phishing attacks making it through my mailscanner setup. I do have phishing fraud detection turned

Re: Phishing attempts getting through.

Sunny depends where the problem is and what you mean by the phishing emails getting through? 1. Ask on the MailScanner list, I'll be there too.. 2. use the free ClamAV anti-virus system, this is quite good at catchingthis stuff. 3. Do you mean the MS phishing net or actual phishing emails? -- M

Re: Phishing attempts getting through.

On Tuesday, March 22, 2005, 10:58:30 AM, Sunny Forro wrote: > Hello, > I've got a problem. I've got a lot of phishing attacks making it > through my mailscanner setup. I do have phishing fraud detection turned > on, and I have not modifed the phishing safe sites list. Most(if not > all) of

Re: Phishing attempts getting through.

> From: "David B Funk" <[EMAIL PROTECTED]> > > I augmented 70_sare_spoof.cf to improve its coverage, added more > bank sites we've seen (EG: wamu.com, huntington.com, keybank.com > hiberniainfo.com, etc). If yould' be willing to share your rule enhancements with the rest of the community, we'd be

Re: Phishing attempts getting through.

Are you using the SARE anti-spoof rules? We catch the ebay stuff pretty well. Loren

Re: Phishing attempts getting through.

On Tue, 22 Mar 2005, Matt Kettler wrote: > Sunny Forro wrote: > > >Hello, > > I've got a problem. I've got a lot of phishing attacks making it > >through my mailscanner setup. I do have phishing fraud detection turned > >on, and I have not modifed the phishing safe sites list. Most(if not > >a

Re: Phishing attempts getting through.

And this has what to do with Spamassassin? Sunny Forro wrote: Hello, I've got a problem. I've got a lot of phishing attacks making it through my mailscanner setup. I do have phishing fraud detection turned on, and I have not modifed the phishing safe sites list. Most(if not all) of the phi

Re: Phishing attempts getting through.

Sunny Forro wrote: >Hello, > I've got a problem. I've got a lot of phishing attacks making it >through my mailscanner setup. I do have phishing fraud detection turned >on, and I have not modifed the phishing safe sites list. Most(if not >all) of the phishing emails are ebay account notices w

Phishing attempts getting through.

Hello, I've got a problem. I've got a lot of phishing attacks making it through my mailscanner setup. I do have phishing fraud detection turned on, and I have not modifed the phishing safe sites list. Most(if not all) of the phishing emails are ebay account notices with forged IP addresses.