April 11, 2013

Phishing Test at INRIA

Lately I have been receiving about 4 to 5 emails with the following content

Dear Account Owner,

This is a message to you from the INRIA® Messaging Center to all our
Inria account owners.

We are currently carrying out scheduled maintenance,upgrade of our web
mail service and we are changing our web mail host server to privent scam
mails,as a result your original password will be reset.

We are sorry for any inconvenience caused.

To complete your Inria account upgrade, you must reply to this
email immediately and provide the information requested below.
Re-type Password:
Failure to do this will immediately render your email address deactivated
from our server.
********************************************************** *************
This E-mail is confidential and privileged. If you are not the intended
Recipient please accept our apologies; Please do not Disclose, Copy or
Distribute Information in this E-mail or take any action in Reliance on
its contents: to do so is strictly prohibited and may be Unlawful.

Please inform us that this Message has gone astray before deleting it.

Thank you for your Co-operation.
Copyright© INRIA WebMail 2013. All Right Reserved

I am really tempted to send them the following reply.

My beloved sys admin,

Please do not delete my account. I have experience in running a lot of man in the middle attacks, creating fake wifi hot spots, and gathering passwords and hijacking SSL content. If you really need the user names and passwords I can help you setup an infrastructure that give you access to a lot of the private content that you can ogle in your free time!

Thanking You, Yours Sincerely,



No comments: