U.S. Strategic Command officials are warning of a new email-based phishing scam aimed at American troops and their families.
Soldiers and their families have been receiving email messages that appear to be from USAA (United Services Automobile Association, an insurance company that serves military employees) and the Navy Federal Credit Union.
The messages look identical to those they'd normally get from these organizations, except these messages require the recipient to log in, and then provide personal information. Once that information has been harvested, the user is often redirected to the legitimate Web site. The result is many users have no idea they've just given away critical personal data to thieves.
Symantec reports they traced these attacks to servers located in Taiwan.
It goes without say (but I'm going to say it) that you should never, ever provide personal information in response to an email.
I know torture is frowned upon in polite society, but there's nothing that says we can't capture the jackasses ripping off our serving troops and subject them to watching the Sex and the City 2 movie, over and over again, 24/7. That'll teach 'em!