I read the article and could not find any evidence of phishing as defined at
formatting link
at all. Was something left out of the article? I see evidence of fraud due to lax security, lack of data protection, lack of verifying "authorized" agents, but no phishing.
[TELECOM Digest Editor's Note: 'Phishing' as strictly defined, was probably the wrong term to use. Phishing is when one individual does social engineering to obtain details from other (usually not as smart individuals is it not? What is the correct term for building in a 'back door' or amending the software to cause the computer to do things it was not intended to do? PAT]