[2962] in WWW Security List Archive
RE: Can you say "fraud"? (fwd)
daemon@ATHENA.MIT.EDU (Vince L. Reed)
Tue Sep 17 16:58:26 1996
From: vreed@mail03.mitre.org (Vince L. Reed)
Reply-to: vreed@mitre.org (Vince L. Reed)
To: www-security@ns2.rutgers.edu
Date: Tue, 17 Sep 96 13:47:38 -0400
Errors-To: owner-www-security@ns2.rutgers.edu
>This is probably a bit off-topic; if so I apologize.
>
>Can anybody comment on the item forwarded below my sig file? It claims
>there's a database w/ people's credit card no's etc on it and you have to
>give your name and social security number to get off of it. This strikes
>me as being a scam to get your ssn, but this went around at work and
>people are actually calling and giving it out. I know ssn's aren't really
>as secure as they're supposed to be, but still...
>
>So, does anybody know if this database is for real or if it's just a scam?
>
>TIA,
Mary,
LEXIS-NEXIS has a longstanding reputation as a respectable company. It is
highly unlikely, but I concede not impossible, that they would place their
reputation at risk just to scam your SSN. You can checkout their view of the
P-Trax database by looking at URL:
http://www.lexis-nexis.com/lncc/about/ptrak.html.
Vince Reed, CISSP (Mail Stop ALAB)
Senior Systems Security Engineer
The MITRE Corp., Secure Information Technology Dept.
1500 Perimeter Pkwy., Suite 310, Huntsville, AL 35806-3578
Phone: +1.205.890.3323, FAX: +1.205.830.2608
