[Warning] New Phishing email "MTGox Security Update Notification"

[ataranlen]

Received a fairly obvious phishing email a few minutes ago.

DO NOT CLICK ANY LINKS IN THIS EMAIL!
DO NOT submit your information on any site this email links to!

Remember, If the address bar does not show MtGox.com, Do not enter your password!

If you did submit your information, change your MtGox password ASAP!
If you used the same password anywhere else- And you shouldn't have- but if you did, change those too!

https://i.imgur.com/yqBvH.png

I have forwarded this email and the full headers to abuse@hostgator.com

[alexmat]

Received it as well. Forwarded to Mt. Gox support.

[phorensic]

Yep I just got this e-mail.  Looks pretty legit until you see the link at the bottom goes to a totally different domain.  Nice try kids.

[Gladamas]

Wow. They didn't even try to make the domain look like MtGox.

[sethsethseth]

Just got this one.  How has gmail not flagged it already....

[zvs]

i reported it to that place in italy, where the server it directs you to is hosted at

[eleuthria]

Was going to post this as well.  It's an EXTREMELY OBVIOUS phishing email even without the links.

Looks like somebody found that old DB leak from last year, since it hit the email that I used only at Gox.

[zvs]

Was going to post this as well.  It's an EXTREMELY OBVIOUS phishing email even without the links.

Looks like somebody found that old DB leak from last year, since it hit the email that I used only at Gox.

i used my "main" email address on gox... still get phishing emails from that.. =((

How has gmail not flagged it already....

it got through hotmail junk filter too

bizarre

[ninjarobot]

Yup, just received that email 10 minutes ago. Thanks for the heads-up! :)

It could be either from the MtGox db, or the perhaps Bitcoinica db that was recently compromised?

If you received it in your gmail account, please report this email as phishing (more > report phishing).

[Rassah]

Received, and replied with bogus password info. GGave then my real email, since they obviously already have that. I think filling their database with garbage and making them waste time finding out what works is more productive and satisfying than just deleting the email.

[Gladamas]

Oftentimes when I receive a suspicious email I enter the incorrect password just to see if it accepts it or not. The more sneaky phishers will say that the password is incorrect the first time and then accept it the next time you enter it in.

[rjk]

Strange, it shows SPF as Hardfail, and still let it through? Usually softfail will let it through and mark it as spam, but hardfail should delete it immediately.

[Nubarius]

Yahoo! Mail didn't flag it as spam either. If the URL link had been anything resembling a legit one I might have fallen for this.