Beware of email spam

mtm2 and other sensible chat
Post Reply
User avatar
Phineus
Glow Ball
Posts: 24
Joined: Tue Feb 02, 1999 7:00 pm

Beware of email spam

Post by Phineus »

I got this a few minutes ago. The html tags were visible, and it was addressed from paypal. However, a reverse look up and a whois search found the url to be bogus. So, always remember and never forget to deal only with reputable companies, and never update credit card info via an email, even if it contains a link. Always always always go to the site in question and log in through normal channels. There is no anti virus or spyware program in the world that can stop you from blinding giving out your personal or bank info. Only you can do that.

Code: Select all

<html> 
<head>
<TITLE>bla bla bla</TITLE>
</head>
<body>
During our regular update and verification of the accounts,
we couldn't verify your current information. 

Either your information has changed or it is incomplete.
Please update and verify your information by signing in your
account.

If your account information is not updated within 5 days, 
your access will be restricted.

please go to the link below and enter the information required:
*** Please Do Not Reply To This E-Mail As You Will Not Receive A
Response ***

Sincerely,
PayPal Account Review Department
<a href="http://www.spam.com//">Please click here to continue</a>
Top
gravefan

Post by gravefan »

Thank you very much Phin. It was addressed to my mtm2.com address but I dont have a pay pal account and the html mark up was a tip off.

Gravefan
Top
User avatar
ZOtm_BigDOGGe
Member
Posts: 881
Joined: Wed Nov 06, 2002 2:01 pm
Location: Silicon Valley, California. USA
Contact:
Contact ZOtm_BigDOGGe

Post by ZOtm_BigDOGGe »

I've received 3 of those "Phishing" emails in the last several months.

All three were from different Banks (citibank being one of the names,), yet all three letters were worded exactly the same! Only the bank''s name on the form was different!. Lol!

Very funny, since I have had no accounts with any of the three banks. I deleted them immediately.

I have received a paypal version of the scam a few times, but I never used paypal before either, so again it was an obvious scam email. Trashed 'em!
--> "Obstacles are those frightful things you see when you take your eyes off your goals." -- Henry Ford
Top
User avatar
Malibu350
easy company
Posts: 2036
Joined: Tue Feb 29, 2000 2:01 pm
Contact:
Contact Malibu350

Post by Malibu350 »

I got seven exactly like Phins above today and all within five minutes of each other. I must say that of all the email scams I've ever recieved, that was the worst and very poorly concieved... there's some real bone head idiots behind that one. On the other hand the one I get every so often about my earthlink account about to be pulled because my credit card is no longer valid is very well done up to look exactly like a legit message from earthlink. The first time I got one I called up EL to find out what was going on because I pay by check lolol... they assured me it was bogus.

Just beware everyone.. there are some very clever low lifes out there who'd cheat their own gradma outa her life savings and never give a rats but about who they hurt... When in doubt make a phone call, when the potential scam comes via the net, Always Be In Doubt and seek additional verification.
Top
User avatar
ZOtm_BigDOGGe
Member
Posts: 881
Joined: Wed Nov 06, 2002 2:01 pm
Location: Silicon Valley, California. USA
Contact:
Contact ZOtm_BigDOGGe

Post by ZOtm_BigDOGGe »

Just got my copy of the paypal scam email Phin mentioned.....Nice to be remembered (heh heh).

Image
--> "Obstacles are those frightful things you see when you take your eyes off your goals." -- Henry Ford
Top
Kdawg
Member
Posts: 360
Joined: Mon Mar 13, 2000 2:01 pm

Post by Kdawg »

I'd like to point out that anything paypal posts asking for your personal/credit card information will have a s next to the http.
something like this: https://
Top
User avatar
ZOtm_BigDOGGe
Member
Posts: 881
Joined: Wed Nov 06, 2002 2:01 pm
Location: Silicon Valley, California. USA
Contact:
Contact ZOtm_BigDOGGe

Post by ZOtm_BigDOGGe »

Even checking the URLs may not save you anymore, according to this article posted today:


QUOTE:
------------------------------------------------------------------------

Banking site hijacked by fraudsters

16:28 07 December 04

NewScientist.com news service



Fraudsters have used a clever web-programming trick to turn a legitimate banking site into a tool for stealing account information.

Suntrust, a bank based in Georgia, US, has fallen foul of the deception, according to web security experts who received emails designed to swindle customers.

Researchers at UK-based web-monitoring firm Netcraft received emails claiming to come from Suntrust that ask customers to verify their account information using a link embedded in the message.

But the email was not sent from the bank's own servers and the web page it linked to contained extra characters in the URL address line - added on to the bank’s legitimate web address. So, while the page was hosted by the bank’s servers, hackers had overlaid it with altered elements to give the appearance of a legitimate “Account Verification” page.

Decoding these altered elements revealed a link to an alternative server controlled by the hackers. Customers entering their account information onto the overlaid page were inadvertently sending their details to be recorded by the hackers’ web server.

Netcraft engineer Paul Mutton says the "phishing" trick is made worse because it exploits the bank’s own site. "As far as the user is concerned, they are visiting a legitimate site," he says.

----------------------------------------------------------------------

More info here:

http://www.newscientist.com/news/news.jsp?id=ns99996770
--> "Obstacles are those frightful things you see when you take your eyes off your goals." -- Henry Ford
Top
Post Reply

Return to “General Discussion”