Jan 06, 2009
Earlier this evening, my wife recieved an unusual text message to her phone:
"From: No Caller ID
"Date: 1/6/09 5:55 pm
"This is an automated message from Arlington Virginia FCU. Your ATM card has been suspended. To reactivate call urgent at (800) 295-3174."
I don't think I have to state that neither Lyssa nor myself have accounts with the Arlington, VA Federal Credit Union.
So I've been doing some detective work on who sent this and I've found out a few things. Unfortunately, because the initial contact came via a text message I don't have any way of looking at transmission headers (though if anyone knows of an SMS forensics utility that'll work with a Palm Treo, by all means leave me a comment). First of all, a number of people in the Virginia area have been contacted in this fashion, and none of them are exactly pleased with it.
My first stop was our Googley Pre-Singularity Lord and Master. The first link to appear is a link to an outfit called Get800Today.com, which appears to be a service from which you can rent an 800 number in much the same manner as you can use a pre-paid cellular telephone (first 60 minutes or month free, whichever comes first). You set the number they give you to forward to another line (which could be anything from a cellphone to a voicemail box to a VoIP line), which effectively covers your trail. They also have a toll-free customer support line (888-528-9892), which I plan on calling tomorrow during office numbers. If you dial the 800 number in question (which I just did from another phone, using *67 to block my caller ID), you will find that the line's been terminated.
Next, numberzoom.com has an extensive list of suspicious 800 numbers, which lists the 800 number in question as being up to something shady, but that's about it. Not too helpful save that it suggests that others have been contacted with this number referenced.
A handy site called phoneowner.info keeps a list of phone numbers and complaints about them, and this number in particular with the same complaint.
So, nothing, really.
From what I've seen in the field over the past few years, I've got a rough guess as to what's going down here. The fact that it's a phishing scam is pretty obvious. What I think the perpetrators did is SMS spam large blocks of cellphone numbers; certain cell providers will let you send a short e-mail to
I hope that nobody out there fell for this scam.