CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
October 1st, 2008

Fort Jennings State Bank Website Hacked, Hosting A Phishing Page For Italian “Poste Italiane” Bank

SophosLabs reports an unusual bank phishing spam campaign where particular image phish targets the Italian bank Poste Italiane. The phishing email itself (in Italian) entices users to go to the link in order to receive 250 Euros worth of “loyalty bonus”. This scheme is fairly typical and the link in the message goes to a compromised domain controlled by the phisher. Instead of the phishing hosting on this compromised domain, a HTTP redirect is used to send the user to a second domain, where the phish page resides.

Whats unusual is that the domain hosting the phishing page, fjsb.com, seems to be owned by Fort Jennings State Bank, a private, local bank serving the state of Ohio. The site’s design was a throwback to the early days of HTML and the site itself does not have a lot of features most today banks sites use. The domain WHOIS confirms the ownership of the domain:

Domain Name: FJSB.COM
Registrant:
The Fort Jennings State Bank
PO Box 186
120 N Water Street
Fort Jennings, OH 45844-0186
US

Administrative Contact:
Edelbrock, Mark
FJSB
302 DELPHOS RD
COLUMBUS GRV, OH 45830-9201
US
(419) 659-2527 fax: (419) 659-2509

Technical Contact:
Burkhart, Tim
North West Net, Inc.
PO BOX 159
FORT JENNINGS, OH 45844-0159
US
419-286-3346 fax: 419-286-5345

Record expires on 30-Mar-2013.
Record created on 29-Mar-1997.

It would seem that a bank in the US hosting a phishing site of an Italian bank. This just shows that all sites (even bank or military sites) may be compromised and be used for malicious purposes, such as a phish campaign in this case, or infect visitors with malware, in other cases. The phishing site has since been taken down and the compromised site linked directly by the phish message itself now redirects to another compromised site.

Share this item with others:

More on CyberInsecure:
  • UK Home Office Crime Reduction Website Hosted Italian Phishing Scam
  • Royal Bank of Canada Phishing
  • Bank of Ireland Lost Laptops Affect 10000 customers
  • Forcht Bank Disables 8500 Debit Cards After Breach
  • Yahoo! Groups Are Used By Phishers To Send Personalized Scam Emails

    • Posted in Breaches And Incidents, Hacked, Phishing, Spam | Print This Post Print This Post

    This entry was posted on Wednesday, October 1st, 2008 at 3:56 pm and is filed under Breaches And Incidents, Hacked, Phishing, Spam. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Fort Jennings State Bank Website Hacked, Hosting A Phishing Page For Italian “Poste Italiane” Bank

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »