Phish of the Day: SouthTrust

This phish is nothing new, but I haven't seen one in a while, so I may as well report it. This is one of those phish that uses a single large GIF image instead of text. The excuse for you needing to click the link is some bull about a "software upgrade". The email was received from 195.174.222.231 (WHOIS: Cable Operator Network of Turk Telekom, Izmir, Turkey) on Mon, 13 Jun 2005 08:31:13 +0000. The phish website is at http://202.99.223.139/rpm/ (WHOIS: TaiYuan GPP Netbar, China). We've seen this phishy little URL used before, and it's appalling to see it still active. The site attempts to elicit First Name, Last Name, ATM/Debit Card, PIN, Expiration Date, Online Banking UserId/Password, and email address.