Title: spam/phising
ZeRoRaVeN - March 18, 2006 10:51 PM (GMT)
It's been getting ridious(sp?), recently, I've gotten over 26 spam emails since last night.
It's probably because I'm using gmail, when I was using some little name english webmail serivice that eventually got swallowed up by a russian company, I never knew what spam was. I recall reading these spam articles and wondering, why do these people make a big deal out of this? I mean I wonder what spam is even like.
Then I got a gmail account and I've been assualted by spam.
I'm sure that while I've never clicked on any of the links, I'm sure they work by sending email to random addresses, and if they get a automated postmark email unable to send, then they "white list" the email address. Otherwise, if they don't get one, then they contine sending emails to it.
Anyway, one piece of email got thought to my inbox. Which was a poorly made phising attack.
| QUOTE |
We recently noticed an attempt to log in to your PayPal account from a foreign IP address and we have reason to belive that your account was used by a third party without your authorization.
If you recently accessed your account while traveling, the unusual log in attempts may have been initiated by you. Therefore, if you are the rightful account holder, click on the link below to log into your account and follow the instructions.
https://www.paypal.com/cgi-bin/webscr?cmd=_login-run
If you choose to ignore our request, you leave us no choice but to temporarily suspend your account.
If you received this notice and you are not the authorized account holder, please be aware that it is in violation of PayPal policy to represent oneself as another PayPal user. Such action may also be in violation of local, national, and/or international law. PayPal is committed to assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that impersonators are prosecuted to the fullest extent of the law.
Thank you for your patience as we work together to protect your account.
Sincerely,
PayPal Account Review Department
PayPal, an eBay Company |
Now I instantly realized some werid things;
#1 The email did not come from the paypal domain (which means this phiser must be a complete noob because it's so easy to fake the email sender, it's not funny)
#2 While the link says:
https://www.paypal.com/cgi-bin/webscr?cmd=_login-runit actually led to:
http://adanabadajoz.com/PayPal/PayPal/index.htmWhich is NOT a paypal domain, I won't say how, but it's also very easy to fake the URL you see in the address bar.
#3 It was missing the Verisign thing and even had ads to it.
Compare the fake paypal webpage to the real one.
I actually believed it as I've never gotten a phising attack really, but I never had money in my paypal account or used it in the first place (it doesn't even have a credit card or bank account associated) so I didn't really care.
But I read it again and it sounded werid, why would I need to login?
It was too obvious, well just giving everyone a heads up.
~This has been a public service announcement this is only a test~
grimm73 - March 19, 2006 03:04 AM (GMT)
You too, huh <_<
Just recently got this, my first blatant phishing email.
| QUOTE |
From: <service@paypal.com>
Subject: -Important Notification-
BQYYNGPRVK
Date: Tue, 14 Mar 2006 07:03:42 -0800
Dear PayPal Customer,
We regret to inform you that this account has been locked.
To unlock your account please follow the link below and complete all
the
steps.
http://www.paypal.com.signin-webpage.info
Please Note:
If your account informations are not updated within the next 72 hours,
then we will assume this account is fraudulent and your account will be
deleted.
Message 2073
Problem Description:
Suspicious account behavior possible account theft
PayPal Corp.
PayPal Account Review Department
|
This one was fairly amauterish and easy to spot, "Dear Paypal customer", pffffffttttt :rolleyes: Needless to say was immediately forwarded on to Paypal's fraud department. My written in stone rule: no clickie on linkies in emails, ever! I always just log in to the whatever site directly, better safe than sorry.
ZeRoRaVeN - March 19, 2006 03:09 AM (GMT)
lol, they managed to fake the header but not the link at least eh?
It makes me laugh at how pathetic their attempts are. I mean, a person new to the interaweb might be fooled. But most of us are well versed in using the interweb.
I click "report phishing" on the gmail thingy. But I bet they already get alot of reports.
K-62 - March 19, 2006 03:25 AM (GMT)
It doesnt work, done it many times with spam and phishes(sp?). I sometimes get the 'you are second place of an auction, the winner had to pull his/her bid'. Its basicly some scam site that looks exactly like ebay but the url has '-' in it and ebays doesnt, its like ebay.com/customer-servic-something-something.something. Most of the things are linked to ebay, searches etc. Its a really evil scam, trys to get your info for fake IDs and such.
ZeRoRaVeN - March 19, 2006 03:29 AM (GMT)
I tried and it just got me "invalid user name", I entered the email from the address from the scam email. XD
Anyway, it usually is missing the security certificate, and the verisign certificate.
HaTcH - March 19, 2006 03:40 AM (GMT)
I get phishing scams all the time. One of my favorites is in the form of:
The message greets you and says that the writer is like the inheritor of LOTS of money and either they or some organization they represent needs a way to disperse it.
So they contact me. XD Yeah, right.
But anyway, I've also seen scams from "amazon" asking to visit a site and change your password... w/e
And just so everyone knows, spoofing an email address is just as easy as writing a regular message. With php there is a mail() function which will send a message from your web server and have the return and sender address be whatever you set the function to.
Maybe its changed since then to reduce spam but it may still work with older versions of the program. You really can't trust email.
ZeRoRaVeN - March 19, 2006 03:45 AM (GMT)
HATCH! I got in trouble for mentioning that in another topic. Take. That. Out.
Oh I got those, and I guess they're phishing too, but they take less work and aren't as interesting/elaborate. Besides I got too many of those already.
HaTcH - March 19, 2006 04:28 AM (GMT)
ZeRoRaVeN - March 19, 2006 04:47 AM (GMT)
JammerLea - March 19, 2006 06:37 AM (GMT)
I haven't gotten any Japanese spam to gmail in a while. That makes me sad. D= Now it's all English crap that I CAN understand and... yuck. >_<
Yeah, I've suddenly gotten a lot more spam through gmail too, it's weird. I'm used to it with Yahoo! Mail, but... alas... such is life.
P.S. it's "ridiculous" =3
ZeRoRaVeN - March 19, 2006 06:53 AM (GMT)
| QUOTE (JammerLea @ Mar 19 2006, 01:37 AM) |
I haven't gotten any Japanese spam to gmail in a while. That makes me sad. D= Now it's all English crap that I CAN understand and... yuck. >_<
Yeah, I've suddenly gotten a lot more spam through gmail too, it's weird. I'm used to it with Yahoo! Mail, but... alas... such is life.
P.S. it's "ridiculous" =3 |
*throws another stale "THE COOKIE"* =D (you started calling it like that!)
The level of spam I'm getting is going too far, do people even really buy these things? I mean isn't getting hundreds of these show you that you shouldn't buy products shown in the email?
And they're almost always a sex product. 90% of the time it is. The rest, it's cheap software.