Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.
From: "David B." <DavidB@nomail.afraid.invalid>

On 30/12/2016 20:50, Shadow wrote:

Telling me to change my password, and use two factor security, "for my safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

Sadly, it appears that your computer has been compromised. Sorry about
that. :-(

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG password.
HTH
[]'s

You are giving incorrect information.

https://en.wikipedia.org/wiki/Multi-factor_authentication

--
"Do something wonderful, people may imitate it."

--- ViaMAIL!/WC v2.00
* Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)

From: "James Wilkinson Sword" <imvalid@somewear.com>
Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

On Fri, 30 Dec 2016 20:50:09 -0000, Shadow <Sh@dow.br> wrote:

Telling me to change my password, and use two factor security, "for my safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG password.

I don't care about anyone stupid enough to fall for those.

--
Before you set out on a journey, ring your local radio station and say there's a terrible congestion on your road. Everybody avoids it and it's clear for you ! -- Jack Dee

--- ViaMAIL!/WC v2.00
* Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)

From: Shadow <Sh@dow.br>
Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

On Sat, 31 Dec 2016 22:06:02 +0000, "David B."
<DavidB@nomail.afraid.invalid> wrote:

On 30/12/2016 20:50, Shadow wrote:

Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

Sadly, it appears that your computer has been compromised. Sorry about
that. :-(

What a moron. If it had been compromised, they wouldn't need
to send the phishing mail.

OMG !!!!

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

You are giving incorrect information.

https://en.wikipedia.org/wiki/Multi-factor_authentication

Try using your brain. When you are sober.
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

--- ViaMAIL!/WC v2.00
* Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)

From: Shadow <Sh@dow.br>
Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

On Sat, 31 Dec 2016 22:23:36 -0000, "James Wilkinson Sword" <imvalid@somewear.com> wrote:

On Fri, 30 Dec 2016 20:50:09 -0000, Shadow <Sh@dow.br> wrote:

Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

I don't care about anyone stupid enough to fall for those.

Some of them are almost perfect, from the faked header to the
long link with a redirect so far to the right it does not appear on
the screen when you hover over it. You only see the "yahoo"or
"live.com" followed by the usual (expected) string of datamining.
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

--- ViaMAIL!/WC v2.00
* Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)

From: "James Wilkinson Sword" <imvalid@somewear.com>
Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

On Sun, 01 Jan 2017 02:55:10 -0000, Shadow <Sh@dow.br> wrote:

On Sat, 31 Dec 2016 22:23:36 -0000, "James Wilkinson Sword" <imvalid@somewear.com> wrote:

On Fri, 30 Dec 2016 20:50:09 -0000, Shadow <Sh@dow.br> wrote:

Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

I don't care about anyone stupid enough to fall for those.

Some of them are almost perfect, from the faked header to the
long link with a redirect so far to the right it does not appear on
the screen when you hover over it. You only see the "yahoo"or
"live.com" followed by the usual (expected) string of datamining.
[]'s

I've never seen one that even made me look twice. Spelling and grammatical err ors everywhere, bad alignment, wrong server used on all the links, blatantly ob vious.

--
There is no such thing as a law abiding motorist, just those who have been scam med and those yet to be scammed!

--- ViaMAIL!/WC v2.00
* Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)

From: "(PeteCresswell)" <x@y.Invalid>
Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

Per James Wilkinson Sword:

I've never seen one that even made me look twice. Spelling and grammatical er rors everywhere, bad >alignment, wrong server used on all the links, blatantly obvious.

One idea I have heard is that:

- Sending spam email is essentially cost-free, so you send
lots of the stuff.

- The overhead starts kicking in when the scam's followup involves
people contacting the target.

- They want to minimize the number of contacts with people above a
certain intelligence/sophistication level because they tend to
be unproductive ("False Positives") - yet eat up resources.

- Consequently they craft the email so that anybody with half a brain
will ignore it and the people left - who respond - are the easiest
of targets.

There is an interesting thread on this subject in Quora: https://www.quora.com/Why-are-email-scams-written-in-broken-English

Microsoft has a white paper on this subject:
http://tinyurl.com/hem9h9j https://www.microsoft.com/en-us/research/publication/why-do-nigerian-scammers-s ay-they-are-from-nigeria/

I didn't download the entire PDF - just read the abstract... but it
seems to be consistent with other comments.
--
Pete Cresswell

--- ViaMAIL!/WC v2.00
* Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)