The controller of a small business received the following e-mail with an authentic-looking e-mail address and logo:
From: | Big Bank [[email protected]] |
To: | Justin Lewis, Controller, Small Business USA |
Subject: | Official Notice for all users of Big Bank! |
Due to the increased incidence of fraud and identity theft, we are asking all bank customers to verify their account information on the following web page: www.antifraudbigbank. Com
Please confirm your account information as soon as possible. Failure to confirm your account information will require us to suspend your account until confirmation is made.
A week later, the following e-mail was delivered to the controller:
From: | Big Bank [[email protected]] |
To: | Justin Lewis, Controller, Small Business USA |
Subject: | Official Notice for all users of Big Bank! |
Dear Client of Big Bank,
Technical services at Big Bank is currently updating our software. Therefore, we kindly ask that you access the website shown below to confirm your data. Otherwise, your access to the system may be blocked.web.da-us.bigbank.com/signin/scripts/login2/ user_setup.jsp
We are grateful for your cooperation.
REQUIRED
a. What should Justin do about these e-mails?
b. What should Big Bank do about these e-mails?
c. Identify the computer fraud and abuse technique illustrated.
We need at least 10 more requests to produce the solution.
0 / 10 have requested this problem solution
The more requests, the faster the answer.