went to the citibank page, and this warning popped up.

IIRC, the page looks a tad different. i wouldnt have noticed if this warning hadnt popped up.

i guess its a good thing

1/18/2007 9:43:53 AM

yes, it is actually. a lot of my finanical websites now have a picture and a word that i picked out that they display after i type in my user name but before i type in my password. if i dont see the correct picture and word, i know im being dupped.

1/18/2007 9:46:02 AM

what site is that? I just went to http://www.citicards.com and got no warning

1/18/2007 9:51:41 AM

yeah I got that warning when I went there. Thanks FF

1/18/2007 9:58:37 AM

I got the same warning. Get me out of here!

1/18/2007 10:29:24 AM

yeah i got that warning too - but i imagine it's a fake warning that some other credit card company is trying to pull off or some bored pranksters

1/18/2007 10:31:38 AM

Citibank changed their layout to that a week or two ago.

1/18/2007 10:38:04 AM

I got the warning too, but citicards.com is definitely the correct site.

1/18/2007 10:38:40 AM

that is a Firefox phishing warning. it's a service FF offers along with Google. Google keeps a big list of sites that are suspected or confirmed to be phishing sites, and when FF goes to one of those sites it gives you that warning.
http://www.mozilla.com/en-US/firefox/phishing-protection/
http://www.google.com/tools/firefox/safebrowsing/

In this case, though, I see no reason why this would be suspected as phishing. You usually get these warnings if you click on a link from an email or another site. For example, you get a phishing email that looks like it's from citibank and it has a link that says click here to go to citicards.com, but when you click it, it actually takes you somewhere that looks like citicards.com but actually isn't. You're generally pretty safe by looking at the Address Bar at the URL to see if it matches where you think you are, like citicards.com/xxx. (note that if it says something like citicards.asite.com/xxx, that probably is phishing, but anything like asite.citicards.com/xxx or just citicards.com/xxx probably is not phishing)

But you get this warning when you type citicards.com directly into the address bar, so I think this must be a mistake on FF or Google's part. Maybe it doesn't like the fact that it automatically redirects you to another page on the site. But either way, unless there is a brand new, huge security hole in Firefox (unlikely), if you type in citicards.com you should be safe, regardless of what the warning says.

1/18/2007 10:44:50 AM

Quote :

" Registrant: Citibank, N.A. Sort 1710 New York, NY 10043 US Domain name: CITICARDS.COM Administrative Contact: Administration, Domain domain.admin@citigroup.com Sort 1710 New York, NY 10043 US +1.7182480307 Fax: +1.2128012650 "

1/18/2007 10:55:19 AM

yes, we know that citicards.com is a valid domain belonging to citibank

1/18/2007 11:03:40 AM

I once reported a legit cite as fraudulent in the new IE just to see if it would go through. It did.

1/18/2007 11:06:17 AM

did you just contact the site? how did you go about reporting this.

1/18/2007 12:54:44 PM

what if a hacker could reset your dns server to his dns server, and when you tried to visit http://www.wachovia.com or http://www.ebay.com or whatever it sent you to a fake site...but in the address bar it would look like the real thing...is that possible? [/n00b question]

1/18/2007 12:59:43 PM

I'm not a web junkie but I've heard the same thing

1/18/2007 3:17:18 PM

Quote :

"I once reported a legit cite as fraudulent in the new IE just to see if it would go through. It did."

lol you spell like a moron

1/18/2007 5:57:12 PM

i've been getting some emails from "chase bank" saying that they need me to verify my information for security purposes or they'll cancel my account. i got all freaked out till i remembered i don't have a chase account

apparently its pretty common

1/18/2007 7:09:19 PM

Any messages threatening account cancellation that you have no prior knowledge about are clearly fake.

1/18/2007 7:24:58 PM

i use citibank.com to access the credit cards section.

ill try it again

1/18/2007 7:57:57 PM

http://en.wikipedia.org/wiki/Phishing

1/18/2007 10:03:43 PM

Quote :

"did you just contact the site? how did you go about reporting this. "

There's a button you click somewhere in IE.

1/18/2007 10:19:25 PM

Quote :

"yes, we know that citicards.com is a valid domain belonging to citibank"

except the OP apparently.

1/19/2007 12:58:54 AM

Quote :

"what if a hacker could reset your dns server to his dns server, and when you tried to visit http://www.wachovia.com or http://www.ebay.com or whatever it sent you to a fake site...but in the address bar it would look like the real thing...is that possible? [/n00b question]"

Yes. It's called DNS poisoning, but it only happens when ISP's have improperly configured DNS servers.
But it does happen.

1/19/2007 11:14:07 AM

confirmed by SearchEngineLand to be a real problem - http://searchengineland.com/070120-152644.php

1/20/2007 5:38:27 PM

when i read this title i thought it said "web faggotry"

1/21/2007 10:17:58 AM