RE: Abuse report email for CitiBank/CitiCards?

From: Lance James (lance.james_at_bakbone.com)
Date: 01/13/04

Next message: mandrag_at_mandragore.solidshells.com: "exploit for HD Soft Windows FTP Server 1.6"

Previous message: John.Airey_at_rnib.org.uk: "RE: [Fwd: [TH-research] OT: Israeli Post Office break-in]"
Maybe in reply to: winstrel: "Abuse report email for CitiBank/CitiCards?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: 'Nicholas Weaver' <nweaver@CS.berkeley.edu>, winstrel <winstrel@ewall.org>
Date: Mon, 12 Jan 2004 17:25:52 -0800

www.securityfocus.com/infocus/1745

for a better and clear experience with Citibank folks and their responses.

-----Original Message-----
From: Nicholas Weaver [mailto:nweaver@CS.berkeley.edu]
Sent: Monday, January 12, 2004 11:07 AM
To: winstrel
Cc: bugtraq@securityfocus.com
Subject: Re: Abuse report email for CitiBank/CitiCards?

On Sat, Jan 10, 2004 at 03:36:28PM -0500, winstrel composed:
> Anyone know valid email addresses for reporting potential abuse or fraud
at
> to CitiBank.com/CitiCards.com?
>
> I'd like to forward some fraud emails (e.g. "Please go to this link and
> enter your card number and PIN that you use for ATM access...") for their
> information, but most of the usual suspects (abuse@XXX, webmaster@XXX,
etc.)
> bounce and using their web searches or Google comes up with nothing about
> reporting this kind of thing.
>
> Also, any recommendations for other places where such reports should be
> sent, for the general public's good (especially since companies like
> CitiBank are apparently reluctant to admit that such fraud exists)?

I had slightly better luck contacting the hosting firm which had the
corrupted site for one phishing scheme.

However, it seems to me that the actually really is pretty much "we
just don't care" overall. You can get a particular instance shut
down, but there doesn't seem to be a serious attempt to backtrack &
prosecute, probably becaues things just cross so many boundries of
responsibility.

-- 
Nicholas C. Weaver                                 nweaver@cs.berkeley.edu

Next message: mandrag_at_mandragore.solidshells.com: "exploit for HD Soft Windows FTP Server 1.6"

Previous message: John.Airey_at_rnib.org.uk: "RE: [Fwd: [TH-research] OT: Israeli Post Office break-in]"
Maybe in reply to: winstrel: "Abuse report email for CitiBank/CitiCards?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Started roasting, now pours fast and pale...any tips? (longish)
... just reporting that I did more roasts today ... [Using a Black & Decker Hot 'n Pop] ... Seems I was definitely adding heat too slowly before (popper ... Thanks again for the responses. ...
(alt.coffee)
Re: One IE Favorite Not Working
... Thanks for reporting back. ... > I have found that the problem was flash player plugin that turned out to ... Thank you again for your responses and I have ... > bookmarked your sites for future problems. ...
(microsoft.public.windows.inetexplorer.ie6.browser)
Re: Print report directly using reporting service with ASP.net
... you could have more responses... ... Microsoft SQL newsgroups ... > I am new to reporting service. ... > I need a button for users to click to directly print a report generated ...
(microsoft.public.sqlserver.programming)