Results 1 to 11 of 11

Thread: TSP Phishing Scam?

  1. #1

    Default TSP Phishing Scam?

    I'm passing this along from a post on our Facebook Page:

    Hello TSP Talkers,

    Have any of you recently received an email from someone purporting to be the TSP? This is a phishing scam. We're doing a story and I'm looking for feds who got these fake emails. Please contact me? Lisa.Rein at(@) washpost dot com . Thank you so much.

    Lisa Rein
    Tom
    Market Commentary | My Blog | TSP Talk Plus | |

    I am not a Registered Investment Advisor and this is not investment advice. Please do your own due diligence.


  2.  
  3. #2

    Join Date
    Jun 2004
    Location
    Boiled Peanut, Georgia, USA
    Posts
    76,396

    Default Re: TSP Phishing Scam?

    Not me, thanks Tom!



  4.  
  5. #3

    Default Re: TSP Phishing Scam?

    I was going to point Lisa to this thread but it sounds like nobody has received one of these emails?
    Tom
    Market Commentary | My Blog | TSP Talk Plus | |

    I am not a Registered Investment Advisor and this is not investment advice. Please do your own due diligence.

  6.  
  7. #4

    Join Date
    Aug 2008
    Location
    Pensacola, FL
    Posts
    6,312

    Default Re: TSP Phishing Scam?

    Quote Originally Posted by tsptalk View Post
    I was going to point Lisa to this thread but it sounds like nobody has received one of these emails?
    Is Lisa legit or is she phishing for our emails?

  8.  
  9. #5

    Default Re: TSP Phishing Scam?

    The real question is: are you legit? Only someone this suspicious would think of something so devious. jk, but just in case: who won the 1941 World Series?


    She appears to be real. The facebook page she sent her request from looks legit. https://www.facebook.com/lisa.rein.18/about

    USDA budget includes more funding for broadband access to rural communities
    Tom
    Market Commentary | My Blog | TSP Talk Plus | |

    I am not a Registered Investment Advisor and this is not investment advice. Please do your own due diligence.

  10.  
  11. #6

    Join Date
    Aug 2008
    Location
    Pensacola, FL
    Posts
    6,312

    Default Re: TSP Phishing Scam?

    Quote Originally Posted by tsptalk View Post
    The real question is: are you legit? Only someone this suspicious would think of something so devious. jk, but just in case: who won the 1941 World Series?


    She appears to be real. The facebook page she sent her request from looks legit. https://www.facebook.com/lisa.rein.18/about

    USDA budget includes more funding for broadband access to rural communities
    NY Yankees..... Brooklyn Dodgers lost. If she tells ya otherwise, I'd be suspicious

    I posted too soon. I checked out the Washington post and both her emails are in there.

  12.  
  13. #7

    Default Re: TSP Phishing Scam?

    [QUOTE=tsptalk;447024]The real question is: are you legit? Only someone this suspicious would think of something so devious. jk, but just in case: who won the 1941 World Series?


    She appears to be real. The facebook page she sent her request from looks legit. https://www.facebook.com/lisa.rein.18/about

  14.  
  15. #8

    Default Re: TSP Phishing Scam?

    HI all, I am legit, although I don't know who won the 1941 World Series, sorry! To the person who wondered if I'm legit--did you or anyone you know get the TSP phishing email? Thanks for much for helping me with this.Lisa

  16.  
  17. #9

    Join Date
    Aug 2008
    Location
    Pensacola, FL
    Posts
    6,312

    Default Re: TSP Phishing Scam?

    Quote Originally Posted by Reinl View Post
    HI all, I am legit, although I don't know who won the 1941 World Series, sorry! To the person who wondered if I'm legit--did you or anyone you know get the TSP phishing email? Thanks for much for helping me with this.Lisa
    Welcome to TSPTalk, Lisa No, I didn't get any phishing emails and don't know anyone else that has.


  18.  
  19. #10

    Join Date
    Jul 2007
    Location
    Europe
    Posts
    8,430
    Blog Entries
    297

    Default Re: TSP Phishing Scam?

    Updated 24 Feb 2014 on the TSP website: Phishing, E-mail Scams, and Bogus Websites
    Retired, 55G/15C/15S/15I (Paper Trading)_ BLOG: Stats for March, Stats for Q1, 2024 Stats

  20.  
  21. #11

    Join Date
    Apr 2005
    Posts
    14,685
    Blog Entries
    13

    Default Re: TSP Phishing Scam?

    More information on that Phishing scam back in Feb and March::

    Thrift Savings Plan officials went into damage control mode in February when a stranger appropriated the TSP trademark and propped up a fake federal retirement fund website for a phishing scheme. Internal emails reveal that officials governmentwide struggled for two weeks to positively identify the perpetrator.

    It turned out the bogus email campaign was innocuous -- part of an Army cybersecurity training exercise. But nobody bothered to tell TSP. Now the agency is buying brand management software and changing password requirements to make sure friends or foes don't do this again.
    Officials at TSP, which suffered a real breach in 2011 that compromised the identities of 123,000 retirement savers, have some experience in threat containment. The agency’s chief information security officer and others saw the messages spreading online around Feb. 19and quickly traced the hoax back to an Army server and confronted Defense Department officials with their findings.

    "Everything is intentionally fake. Street is MyStreet, organization is MyOrg,” TSP CISO John Ramsey said in an email, while trying to pinpoint the culprit with his colleagues. “I will give their CISO the politically 'what for' for not coordinating with us first.”

    Nextgov obtained his messages and other internal correspondences through an open records request.

    The sham emails were sent by accountservices@tspgov.us and contained the subject head, "Thrift Saving Plan Alert: Passcode Reset;” and urged recipients to verify changes made to their accounts by visiting "www.tspgov.us." The message quickly went viral among participants of the retirement plan, which serves 4.6 million federal employees and retirees.

    The purpose of the bungled phishing drill, first reported in March by a number of news outlets was to test whether troops would divulge their credentials.
    The Pentagon, for its part, took 13 days, from Feb. 11 to Feb. 24, trying to confirm the Army was to blame.







    What a disaster. TSP was spoofed, and didn't say anything to members. I bet a lot of folks when and changed their passwords too. Yuk.


    More: It Took Feds 13 Days to Unravel a TSP Cyber Hoax Perpetrated by... Feds - Nextgov.com

  22.  

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
S&P500 (C Fund) (delayed)
TSP Phishing Scam?
(Stockcharts.com Real-time)
DWCPF (S Fund) (delayed)
TSP Phishing Scam?
(Stockcharts.com Real-time)
EFA (I Fund) (delayed)
TSP Phishing Scam?
(Stockcharts.com Real-time)
BND (F Fund) (delayed)
TSP Phishing Scam?
(Stockcharts.com Real-time)

Yahoo Finance Realtime TSP Fund Tracking Index Quotes