Under normal circumstances, in a fishing contest, the prize goes to the man with the biggest catch. It would be nice if we could apply the same rules for prize-giving in a Phishing contest. Unfortunately we cannot,  because contestants are reluctant to tell you exactly how many they caught (or how much they made.)

Dammit, the contestants are even uninterested in bragging rights and they are a little reluctant to provide their personal details (but if you’d like to buy some personal details from them, then: hey, they’re open for business.)

The prize in any Phishing contest would have to be awarded for “quality of Phish”, and I have to say, the following exemplar would win awards in the “cleverest Phish” category.

You’ll notice that this particular Phish has successfully spoofed the Lloyds TSB email address. I’ll not be surprised if I discover that a number of people who don’t even have accounts with Lloyds TSB has followed the link and faithfully filled in their personal details.