Second Life Forums Archive - Just got this email: Sept 2006 Security Incident - update to compromised accounts

MadamG Zagato

means business

Join date: 17 Sep 2005

Posts: 1,402

03-09-2007 12:29

Just got this in my inbox:
Looking at the email address it was sent from, I do not know if it's authentic
[email=LindenLab@mail.vresp.com]LindenLab@mail.vresp.com[/email] ???

Looking at the links I would say "no". I removed the linkes in this document to avoid confusion.

From: someone

Dear Second Life Resident:

As you may recall, last September we announced that an intruder gained
access to the Second Life database through our web servers. That
announcement was posted at
http://r.vresp.com/?LindenLab/2114ad089e/879774/99c2d50e24/5f46d1b
as well as emailed to all Residents. Since then, we have continued to
audit and improve our security measures. All the audit information
has been released to the credit card companies, and we believe that
the bank issuers of credit cards have followed their typical
procedures in informing consumers of potentially compromised credit
card numbers.

A third-party security audit revealed that 1,138 unique credit card
numbers existed unencrypted in the compromised database, out of over 1
million credit card records that Linden Lab possessed at the time of
the intrusion. This email is being sent to the email addresses that
we have on record for those 1,138 credit card numbers.

Although our audit was completed within a couple of months, we have
been unable to confirm in the following months whether or not all of
the banking institutions that issue the credit cards have updated the
1,138 cardholders regarding the audit. Our primary point of contact
is only with a merchant processor who has relationships with the
credit card companies, so we cannot confirm the nature of all
communications between the banks and the credit card holders.
Therefore, we are taking the extra step to contact this small group of
potentially affected Residents to make sure that they have all the
information necessary to judge the credit impact of the security
event.

- If you are receiving this email directly from Linden Lab, and you
have not already done so since September 2006, we recommend that you
cancel your credit card and request a new one from your issuing bank.

- If you have received this email from a source other than Linden Lab,
and you think that we may have the wrong email address on file for
you, and you are in fact among the 1,138 credit card holders, please
(1) login to
http://r.vresp.com/?LindenLab/a69a5d59e6/879774/99c2d50e24/5f46d1b
and update your email contact information, and then (2) email
support@lindenlab.com to request that we check your credit card number
on file with against the 1,138 credit card numbers. We will then
inform you by email if you are one of the affected credit card
numbers.

Thank you very much for your patience with us throughout this process.

Best regards,

Linden Lab Support

______________________________________________________________________
If you no longer wish to receive these emails, please reply to this
message with "Unsubscribe" in the subject line or simply click on the
following link:
http://unsub.vresp.com/u.html?8f0799ec70/99c2d50e24/5f46d1b

______________________________________________________________________
This message was sent by LindenLab

LindenLab
1100 Sansome Street
San Francisco, California 94111

MadamG Zagato

means business

Join date: 17 Sep 2005

Posts: 1,402

03-09-2007 12:31

Question is....how did these people get my email address that is stored in my account and not used anywhere else?

or is this a valid email from LL?

Colette Meiji

Registered User

Join date: 25 Mar 2005

Posts: 15,556

03-09-2007 12:34

=/

are they saying 1100 CC's info was lifted and one of them was yours?!

Im glad the CC I used on my account expired a long time ago.

MadamG Zagato

means business

Join date: 17 Sep 2005

Posts: 1,402

03-09-2007 12:35

From: Colette Meiji

=/

are they saying 1100 CC's info was lifted and one of them was yours?!

Im glad the CC I used on my account expired a long time ago.

I dunno
/me shrugs

Colette Meiji

Registered User

Join date: 25 Mar 2005

Posts: 15,556

03-09-2007 12:38

- If you are receiving this email directly from Linden Lab, and you
have not already done so since September 2006, we recommend that you
cancel your credit card and request a new one from your issuing bank.

This sounds pretty bad - Like they are admitting you might be at risk.

Tyci Kenzo

K2 Owner and Designer

Join date: 8 Dec 2005

Posts: 285

03-09-2007 12:41

i just got the same email and am calling my bank now

MadamG Zagato

means business

Join date: 17 Sep 2005

Posts: 1,402

03-09-2007 12:41

Looks valid when in the inbox, but the email address is not @LindenLab.com

MadamG Zagato

means business

Join date: 17 Sep 2005

Posts: 1,402

03-09-2007 12:43

From: Colette Meiji

- If you are receiving this email directly from Linden Lab, and you
have not already done so since September 2006, we recommend that you
cancel your credit card and request a new one from your issuing bank.

This sounds pretty bad - Like they are admitting you might be at risk.

What's worse is that if it IS a legit email, why are we just now getting this 6 months after the initial incident?

Alazarin Mondrian

Teh Trippy Hippie Dragon

Join date: 4 Apr 2005

Posts: 1,549

03-09-2007 12:48

I would presume it's a phising scam. Phone LL or contact a Linden in-world. Don't click on the link to 'update your email contact information'. That's a classic phishing email trick.

_____________________

My stuff on Meta-Life: http://tinyurl.com/ykq7nzt
http://www.myspace.com/alazarinmobius
http://slurl.com/secondlife/Crescent/72/98/116

Colette Meiji

Registered User

Join date: 25 Mar 2005

Posts: 15,556

03-09-2007 12:52

definitely we need to know if LL is sending out emails about the security now - seems to me they could respond since it relates to their biggest failure to date on secuirty.

Aggi Fitzgerald

Registered User

Join date: 1 Jan 2007

Posts: 7

03-09-2007 12:59

Might be a fake!

It seems better to FIRST contact Linden support whether thats authentic.
(BEFORE you even think about entering that well-prepared personalized login link!)

Or have a look at http://www.vresp.com (but dont use the abuse address there if you dont want to add a new entry to their email address database - they might just be waiting for that)

As you may find out using good old dnsstuff,
http://www.dnsstuff.com/tools/whois.ch?ip=vresp.com
vresp.com belongs to someone who also owns verticalresponse.com.
They do "Self-service direct marketing".

Probably they are not authorized and just want your credit card information.
Better contact LL first!

Gaybot Foxley

Input Collector

Join date: 15 Nov 2006

Posts: 584

03-09-2007 13:07

I entered a Help Request session trying to ask them if that email address is legitimate. I did not get a Linden response but instead a Help Request representative. This conversation should be considered unofficial.

[12:39] Gaybot Foxley: Hello, is [email]LindenLab@mail.vresp.com[/email] a legitimate Linden Lab email?
[12:39] Help Request representative: generally the @ is either secondlife.com or lindenlabs.com
[12:40] Gaybot Foxley: Someone I know was sent information saying their account was compromised from that email address.
[12:40] Help Request representative: sound like a phishing scam
[12:40] Gaybot Foxley: Ok, thank you.
[12:40] Help Request representative: np!
[12:41] Second Life: Help Request representative has left this session.

I IM'ed a few Lindens in world directly and await their responses. There are no Lindens at Linden Village at this time. I would wait if I were you and not do anything the email tells you to until more information is provided from secure sources.

Elanthius Flagstaff

Registered User

Join date: 30 Apr 2006

Posts: 1,534

03-09-2007 13:32

Good lord people. This is 100% obviously fake. No wonder these ridiculous scams are so succesful.

Masakazu Kojima

ケロ

Join date: 23 Apr 2004

Posts: 232

03-09-2007 13:41

I got the original announcement from [email]Linden_Lab@mail.vresp.com[/email] on 9/8/06, and I have lots of concierge and announcement emails from various addresses like [email]LindenLabConcierge@mail.vresp.com[/email] and [email]Linden_Lab_Concierge@mail.vresp.com[/email] and [email]cyn_lindenlab.com@mail.vresp.com[/email].

I've been getting them since 9/7/04 so I think it is pretty reliable.

Rockwell Ginsberg

Boss

Join date: 3 Oct 2006

Posts: 560

03-09-2007 13:46

Don't see how that proves reliability/validity of those emails. Sure sounds like a phishing scam to me. Especially the part about giving them your login information. LL certainly wouldn't need that information from you...

Masakazu Kojima

ケロ

Join date: 23 Apr 2004

Posts: 232

03-09-2007 13:53

Except it's only asking you to login and update your contact info if you didn't get the email from Linden Lab, which is presumably who it is from. If it is a phishing attempt it is a very elaborate and very stupid one. "We recommend that you call your bank and cancel your credit card" is not a very effective way to get anybody's information.

Rockwell Ginsberg

Boss

Join date: 3 Oct 2006

Posts: 560

03-09-2007 13:55

If they give you a link to a login screen, then they can get your login info. They might be after your L$, not your credit card.

Argus Collingwood

Totally Tintable

Join date: 5 Dec 2005

Posts: 600

03-09-2007 13:56

From: MadamG Zagato

Looks valid when in the inbox, but the email address is not @LindenLab.com

When you view source or details do the addresses still match up with known Linden Email data?

Wilhelm Neumann

Runs with Crayons

Join date: 20 Apr 2006

Posts: 2,204

03-09-2007 14:16

rule of emails even if its real never ever use the link go to the website and do it the hard way its safer.

take the source code of that email and send it to linden labs and they will list as a phishing scam not many second life phishing scams i guess there is now enough users to warrant it

since i get at least 2 or 3 phishing emails per day for paypal my bank a credit card or somethign that is in peril and needs to be updated I do the delete thing very fast (wonder ifi got one and just pressed delete without noticing it)

Anyhow I think you will find if you examine the source code its not real no real company asks you to follow links directly from the email they tell you to go to your account and login that way

also the login link is to http not https never ever login to something that is not secure

secure websites are https not http its quite obviously fake and you should likely just have deleted and ignored it but since you still have it send it with the source code to linden labs and they might stick it in their blog

Masakazu Kojima

ケロ

Join date: 23 Apr 2004

Posts: 232

03-09-2007 14:16

I went to the login address in the email provided by the OP and it just forwards you to the "My Account" page on the Second Life website. The link was probably automatically changed by the vresp system when they sent out the email. If you are really paranoid you can go to the Second Life website manually (which I agree is what they should have advised you to do anyway) and make sure your email address is correct.

Here are two other threads talking about them using vresp on these forums
/120/4c/7617/1.html
/108/ba/69527/1.html

If you received this email and don't cancel your credit card, your paranoia is seriously misdirected.

edit: and another, with Linden confirmation /120/c8/53043/1.html

Wilhelm Neumann

Runs with Crayons

Join date: 20 Apr 2006

Posts: 2,204

03-09-2007 14:22

From: Masakazu Kojima

I went to the login address in the email provided by the OP and it just forwards you to the "My Account" page on the Second Life website. The link was probably automatically changed by the vresp system when they sent out the email. If you are really paranoid you can go to the Second Life website manually (which I agree is what they should have advised you to do anyway) and make sure your email address is correct.

Here are two other threads talking about them using vresp on these forums
/120/4c/7617/1.html
/108/ba/69527/1.html

If you received this email and don't cancel your credit card, your paranoia is seriously misdirected.

those threads are years old and in the archives hehe

Raudf Fox

(ra-ow-th)

Join date: 25 Feb 2005

Posts: 5,119

03-09-2007 14:26

From: Masakazu Kojima

Here are two other threads talking about them using vresp on these forums
/120/4c/7617/1.html
/108/ba/69527/1.html

If you received this email and don't cancel your credit card, your paranoia is seriously misdirected.

Yeppers, booted up two comps of and took one on your link, Madam, and took one through the normal channels.. and they are absolutely the same. If this was phishing this is the first time I've ever seen one this good.

*grins* I kinda remember the second thread posted... I just forgot. Gee, probably because I never receive any email from that one. Junk mail?

_____________________

DiamonX Studios, the place of the Victorian Times series of gowns and dresses - Located at http://slurl.com/secondlife/Fushida/224/176

Want more attachment points for your avatar's wearing pleasure? Then please vote for

https://jira.secondlife.com/browse/VWR-1065?

Aggi Fitzgerald

Registered User

Join date: 1 Jan 2007

Posts: 7

03-09-2007 14:29

Oh what a very, very bad idea... it's real, LL gives our confidential, personal information to professional spammers

And when will they start SELLING it?

Dnel DaSilva

Master Xessorizer

Join date: 22 May 2005

Posts: 781

03-09-2007 15:08

I can not vouch for the validity of the email, but her are my thoughts:

vresp.com is the mailing list provider tht LL uses, Im pretty sure its legit, I have LL emails from it too.

By definition it is NOT a phishing scam. They aren't asking for info.

Gaybot: Did you talk to a Linden in help, or somone else?

My suspicion: It's a legit email.

_____________________

Xessories in Urbane, home of high quality jewelry and accessories.

Coming soon to www.xessories.net

Why accessorize when you can Xessorize?

Dnel DaSilva

Master Xessorizer

Join date: 22 May 2005

Posts: 781

03-09-2007 15:10

From: Rockwell Ginsberg

Don't see how that proves reliability/validity of those emails. Sure sounds like a phishing scam to me. Especially the part about giving them your login information. LL certainly wouldn't need that information from you...

It doesn't ask for your login info. And the two links redirect to legit SL webpages.

_____________________

Xessories in Urbane, home of high quality jewelry and accessories.

Coming soon to www.xessories.net

Why accessorize when you can Xessorize?

Just got this email: Sept 2006 Security Incident - update to compromised accounts
MadamG Zagato means business Join date: 17 Sep 2005 Posts: 1,402	03-09-2007 12:29 Just got this in my inbox: Looking at the email address it was sent from, I do not know if it's authentic [email=LindenLab@mail.vresp.com]LindenLab@mail.vresp.com[/email] ??? Looking at the links I would say "no". I removed the linkes in this document to avoid confusion. From: someone Dear Second Life Resident: As you may recall, last September we announced that an intruder gained access to the Second Life database through our web servers. That announcement was posted at http://r.vresp.com/?LindenLab/2114ad089e/879774/99c2d50e24/5f46d1b as well as emailed to all Residents. Since then, we have continued to audit and improve our security measures. All the audit information has been released to the credit card companies, and we believe that the bank issuers of credit cards have followed their typical procedures in informing consumers of potentially compromised credit card numbers. A third-party security audit revealed that 1,138 unique credit card numbers existed unencrypted in the compromised database, out of over 1 million credit card records that Linden Lab possessed at the time of the intrusion. This email is being sent to the email addresses that we have on record for those 1,138 credit card numbers. Although our audit was completed within a couple of months, we have been unable to confirm in the following months whether or not all of the banking institutions that issue the credit cards have updated the 1,138 cardholders regarding the audit. Our primary point of contact is only with a merchant processor who has relationships with the credit card companies, so we cannot confirm the nature of all communications between the banks and the credit card holders. Therefore, we are taking the extra step to contact this small group of potentially affected Residents to make sure that they have all the information necessary to judge the credit impact of the security event. - If you are receiving this email directly from Linden Lab, and you have not already done so since September 2006, we recommend that you cancel your credit card and request a new one from your issuing bank. - If you have received this email from a source other than Linden Lab, and you think that we may have the wrong email address on file for you, and you are in fact among the 1,138 credit card holders, please (1) login to http://r.vresp.com/?LindenLab/a69a5d59e6/879774/99c2d50e24/5f46d1b and update your email contact information, and then (2) email support@lindenlab.com to request that we check your credit card number on file with against the 1,138 credit card numbers. We will then inform you by email if you are one of the affected credit card numbers. Thank you very much for your patience with us throughout this process. Best regards, Linden Lab Support ______________________________________________________________________ If you no longer wish to receive these emails, please reply to this message with "Unsubscribe" in the subject line or simply click on the following link: http://unsub.vresp.com/u.html?8f0799ec70/99c2d50e24/5f46d1b ______________________________________________________________________ This message was sent by LindenLab LindenLab 1100 Sansome Street San Francisco, California 94111
MadamG Zagato means business Join date: 17 Sep 2005 Posts: 1,402	03-09-2007 12:31 Question is....how did these people get my email address that is stored in my account and not used anywhere else? or is this a valid email from LL?
Colette Meiji Registered User Join date: 25 Mar 2005 Posts: 15,556	03-09-2007 12:34 =/ are they saying 1100 CC's info was lifted and one of them was yours?! Im glad the CC I used on my account expired a long time ago.
MadamG Zagato means business Join date: 17 Sep 2005 Posts: 1,402	03-09-2007 12:35 From: Colette Meiji =/ are they saying 1100 CC's info was lifted and one of them was yours?! Im glad the CC I used on my account expired a long time ago. I dunno /me shrugs
Colette Meiji Registered User Join date: 25 Mar 2005 Posts: 15,556	03-09-2007 12:38 - If you are receiving this email directly from Linden Lab, and you have not already done so since September 2006, we recommend that you cancel your credit card and request a new one from your issuing bank. This sounds pretty bad - Like they are admitting you might be at risk.
Tyci Kenzo K2 Owner and Designer Join date: 8 Dec 2005 Posts: 285	03-09-2007 12:41 i just got the same email and am calling my bank now
MadamG Zagato means business Join date: 17 Sep 2005 Posts: 1,402	03-09-2007 12:41 Looks valid when in the inbox, but the email address is not @LindenLab.com
MadamG Zagato means business Join date: 17 Sep 2005 Posts: 1,402	03-09-2007 12:43 From: Colette Meiji - If you are receiving this email directly from Linden Lab, and you have not already done so since September 2006, we recommend that you cancel your credit card and request a new one from your issuing bank. This sounds pretty bad - Like they are admitting you might be at risk. What's worse is that if it IS a legit email, why are we just now getting this 6 months after the initial incident?
Alazarin Mondrian Teh Trippy Hippie Dragon Join date: 4 Apr 2005 Posts: 1,549	03-09-2007 12:48 I would presume it's a phising scam. Phone LL or contact a Linden in-world. Don't click on the link to 'update your email contact information'. That's a classic phishing email trick. _____________________ My stuff on Meta-Life: http://tinyurl.com/ykq7nzt http://www.myspace.com/alazarinmobius http://slurl.com/secondlife/Crescent/72/98/116
Colette Meiji Registered User Join date: 25 Mar 2005 Posts: 15,556	03-09-2007 12:52 definitely we need to know if LL is sending out emails about the security now - seems to me they could respond since it relates to their biggest failure to date on secuirty.
Aggi Fitzgerald Registered User Join date: 1 Jan 2007 Posts: 7	03-09-2007 12:59 Might be a fake! It seems better to FIRST contact Linden support whether thats authentic. (BEFORE you even think about entering that well-prepared personalized login link!) Or have a look at http://www.vresp.com (but dont use the abuse address there if you dont want to add a new entry to their email address database - they might just be waiting for that) As you may find out using good old dnsstuff, http://www.dnsstuff.com/tools/whois.ch?ip=vresp.com vresp.com belongs to someone who also owns verticalresponse.com. They do "Self-service direct marketing". Probably they are not authorized and just want your credit card information. Better contact LL first!
Gaybot Foxley Input Collector Join date: 15 Nov 2006 Posts: 584	03-09-2007 13:07 I entered a Help Request session trying to ask them if that email address is legitimate. I did not get a Linden response but instead a Help Request representative. This conversation should be considered unofficial. [12:39] Gaybot Foxley: Hello, is [email]LindenLab@mail.vresp.com[/email] a legitimate Linden Lab email? [12:39] Help Request representative: generally the @ is either secondlife.com or lindenlabs.com [12:40] Gaybot Foxley: Someone I know was sent information saying their account was compromised from that email address. [12:40] Help Request representative: sound like a phishing scam [12:40] Gaybot Foxley: Ok, thank you. [12:40] Help Request representative: np! [12:41] Second Life: Help Request representative has left this session. I IM'ed a few Lindens in world directly and await their responses. There are no Lindens at Linden Village at this time. I would wait if I were you and not do anything the email tells you to until more information is provided from secure sources.
Elanthius Flagstaff Registered User Join date: 30 Apr 2006 Posts: 1,534	03-09-2007 13:32 Good lord people. This is 100% obviously fake. No wonder these ridiculous scams are so succesful.
Masakazu Kojima ケロ Join date: 23 Apr 2004 Posts: 232	03-09-2007 13:41 I got the original announcement from [email]Linden_Lab@mail.vresp.com[/email] on 9/8/06, and I have lots of concierge and announcement emails from various addresses like [email]LindenLabConcierge@mail.vresp.com[/email] and [email]Linden_Lab_Concierge@mail.vresp.com[/email] and [email]cyn_lindenlab.com@mail.vresp.com[/email]. I've been getting them since 9/7/04 so I think it is pretty reliable.
Rockwell Ginsberg Boss Join date: 3 Oct 2006 Posts: 560	03-09-2007 13:46 Don't see how that proves reliability/validity of those emails. Sure sounds like a phishing scam to me. Especially the part about giving them your login information. LL certainly wouldn't need that information from you...
Masakazu Kojima ケロ Join date: 23 Apr 2004 Posts: 232	03-09-2007 13:53 Except it's only asking you to login and update your contact info if you didn't get the email from Linden Lab, which is presumably who it is from. If it is a phishing attempt it is a very elaborate and very stupid one. "We recommend that you call your bank and cancel your credit card" is not a very effective way to get anybody's information.
Rockwell Ginsberg Boss Join date: 3 Oct 2006 Posts: 560	03-09-2007 13:55 If they give you a link to a login screen, then they can get your login info. They might be after your L$, not your credit card.
Argus Collingwood Totally Tintable Join date: 5 Dec 2005 Posts: 600	03-09-2007 13:56 From: MadamG Zagato Looks valid when in the inbox, but the email address is not @LindenLab.com When you view source or details do the addresses still match up with known Linden Email data?
Wilhelm Neumann Runs with Crayons Join date: 20 Apr 2006 Posts: 2,204	03-09-2007 14:16 rule of emails even if its real never ever use the link go to the website and do it the hard way its safer. take the source code of that email and send it to linden labs and they will list as a phishing scam not many second life phishing scams i guess there is now enough users to warrant it since i get at least 2 or 3 phishing emails per day for paypal my bank a credit card or somethign that is in peril and needs to be updated I do the delete thing very fast (wonder ifi got one and just pressed delete without noticing it) Anyhow I think you will find if you examine the source code its not real no real company asks you to follow links directly from the email they tell you to go to your account and login that way also the login link is to http not https never ever login to something that is not secure secure websites are https not http its quite obviously fake and you should likely just have deleted and ignored it but since you still have it send it with the source code to linden labs and they might stick it in their blog
Masakazu Kojima ケロ Join date: 23 Apr 2004 Posts: 232	03-09-2007 14:16 I went to the login address in the email provided by the OP and it just forwards you to the "My Account" page on the Second Life website. The link was probably automatically changed by the vresp system when they sent out the email. If you are really paranoid you can go to the Second Life website manually (which I agree is what they should have advised you to do anyway) and make sure your email address is correct. Here are two other threads talking about them using vresp on these forums /120/4c/7617/1.html /108/ba/69527/1.html If you received this email and don't cancel your credit card, your paranoia is seriously misdirected. edit: and another, with Linden confirmation /120/c8/53043/1.html
Wilhelm Neumann Runs with Crayons Join date: 20 Apr 2006 Posts: 2,204	03-09-2007 14:22 From: Masakazu Kojima I went to the login address in the email provided by the OP and it just forwards you to the "My Account" page on the Second Life website. The link was probably automatically changed by the vresp system when they sent out the email. If you are really paranoid you can go to the Second Life website manually (which I agree is what they should have advised you to do anyway) and make sure your email address is correct. Here are two other threads talking about them using vresp on these forums /120/4c/7617/1.html /108/ba/69527/1.html If you received this email and don't cancel your credit card, your paranoia is seriously misdirected. those threads are years old and in the archives hehe
Raudf Fox (ra-ow-th) Join date: 25 Feb 2005 Posts: 5,119	03-09-2007 14:26 From: Masakazu Kojima Here are two other threads talking about them using vresp on these forums /120/4c/7617/1.html /108/ba/69527/1.html If you received this email and don't cancel your credit card, your paranoia is seriously misdirected. Yeppers, booted up two comps of and took one on your link, Madam, and took one through the normal channels.. and they are absolutely the same. If this was phishing this is the first time I've ever seen one this good. grins I kinda remember the second thread posted... I just forgot. Gee, probably because I never receive any email from that one. Junk mail? _____________________ DiamonX Studios, the place of the Victorian Times series of gowns and dresses - Located at http://slurl.com/secondlife/Fushida/224/176 Want more attachment points for your avatar's wearing pleasure? Then please vote for https://jira.secondlife.com/browse/VWR-1065?
Aggi Fitzgerald Registered User Join date: 1 Jan 2007 Posts: 7	03-09-2007 14:29 Oh what a very, very bad idea... it's real, LL gives our confidential, personal information to professional spammers And when will they start SELLING it?
Dnel DaSilva Master Xessorizer Join date: 22 May 2005 Posts: 781	03-09-2007 15:08 I can not vouch for the validity of the email, but her are my thoughts: vresp.com is the mailing list provider tht LL uses, Im pretty sure its legit, I have LL emails from it too. By definition it is NOT a phishing scam. They aren't asking for info. Gaybot: Did you talk to a Linden in help, or somone else? My suspicion: It's a legit email. _____________________ Xessories in Urbane, home of high quality jewelry and accessories. Coming soon to www.xessories.net Why accessorize when you can Xessorize?
Dnel DaSilva Master Xessorizer Join date: 22 May 2005 Posts: 781	03-09-2007 15:10 From: Rockwell Ginsberg Don't see how that proves reliability/validity of those emails. Sure sounds like a phishing scam to me. Especially the part about giving them your login information. LL certainly wouldn't need that information from you... It doesn't ask for your login info. And the two links redirect to legit SL webpages. _____________________ Xessories in Urbane, home of high quality jewelry and accessories. Coming soon to www.xessories.net Why accessorize when you can Xessorize?

Welcome to the Second Life Forums Archive

Just got this email: Sept 2006 Security Incident - update to compromised accounts