Fished Before My Very Eyes

The Financial Cryptography blog has an interesting first-person account of a phishing victim’s experience. From reading the description, it appears that his account was being cleaned out by a pro, a person who is called a “cashier.” The reason that the victim (George) was able to see what happened is that Ameritrade didn’t process the “change of e-mail address” query fast enough, so the victim got to see all of the stocks being changed.

Highly recommended reading.