• Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

    From Davidb@nomail.afraid.invalid@1:261/20 to All on Saturday, December 31, 2016 16:06:00
    Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.
    From: "David B." <DavidB@nomail.afraid.invalid>

    On 30/12/2016 20:50, Shadow wrote:


    Telling me to change my password, and use two factor security, "for my safety". Apparently I can send a hash of my fingerprints, my cell
    phone number or my social security details.

    The headers appear to be authentic, but the Yahoo emails redirect to a
    site in Bosnia, and the Microsoft emails to a rent-an-IP company in
    Brazil.

    Sadly, it appears that your computer has been compromised. Sorry about
    that. :-(

    No serious company would ever demand you use two factor
    authentication. It's two vulnerabilities to exploit. Just use a STRONG password.
    HTH
    []'s

    You are giving incorrect information.

    https://en.wikipedia.org/wiki/Multi-factor_authentication

    --
    "Do something wonderful, people may imitate it."

    --- ViaMAIL!/WC v2.00
    * Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)
  • From Imvalid@somewear.com@1:261/20 to All on Saturday, December 31, 2016 16:23:00
    From: "James Wilkinson Sword" <imvalid@somewear.com>
    Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

    On Fri, 30 Dec 2016 20:50:09 -0000, Shadow <Sh@dow.br> wrote:



    Telling me to change my password, and use two factor security, "for my safety". Apparently I can send a hash of my fingerprints, my cell
    phone number or my social security details.

    The headers appear to be authentic, but the Yahoo emails redirect to a
    site in Bosnia, and the Microsoft emails to a rent-an-IP company in
    Brazil.

    No serious company would ever demand you use two factor
    authentication. It's two vulnerabilities to exploit. Just use a STRONG password.

    I don't care about anyone stupid enough to fall for those.

    --
    Before you set out on a journey, ring your local radio station and say there's a terrible congestion on your road. Everybody avoids it and it's clear for you ! -- Jack Dee

    --- ViaMAIL!/WC v2.00
    * Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)
  • From Sh@dow.br@1:261/20 to All on Saturday, December 31, 2016 20:48:00
    From: Shadow <Sh@dow.br>
    Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

    On Sat, 31 Dec 2016 22:06:02 +0000, "David B."
    <DavidB@nomail.afraid.invalid> wrote:

    On 30/12/2016 20:50, Shadow wrote:


    Telling me to change my password, and use two factor security, "for my
    safety". Apparently I can send a hash of my fingerprints, my cell
    phone number or my social security details.

    The headers appear to be authentic, but the Yahoo emails redirect to a
    site in Bosnia, and the Microsoft emails to a rent-an-IP company in
    Brazil.

    Sadly, it appears that your computer has been compromised. Sorry about
    that. :-(

    What a moron. If it had been compromised, they wouldn't need
    to send the phishing mail.

    OMG !!!!

    No serious company would ever demand you use two factor
    authentication. It's two vulnerabilities to exploit. Just use a STRONG
    password.

    You are giving incorrect information.

    https://en.wikipedia.org/wiki/Multi-factor_authentication

    Try using your brain. When you are sober.
    []'s
    --
    Don't be evil - Google 2004
    We have a new policy - Google 2012

    --- ViaMAIL!/WC v2.00
    * Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)
  • From Sh@dow.br@1:261/20 to All on Saturday, December 31, 2016 20:55:00
    From: Shadow <Sh@dow.br>
    Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

    On Sat, 31 Dec 2016 22:23:36 -0000, "James Wilkinson Sword" <imvalid@somewear.com> wrote:

    On Fri, 30 Dec 2016 20:50:09 -0000, Shadow <Sh@dow.br> wrote:



    Telling me to change my password, and use two factor security, "for my
    safety". Apparently I can send a hash of my fingerprints, my cell
    phone number or my social security details.

    The headers appear to be authentic, but the Yahoo emails redirect to a
    site in Bosnia, and the Microsoft emails to a rent-an-IP company in
    Brazil.

    No serious company would ever demand you use two factor
    authentication. It's two vulnerabilities to exploit. Just use a STRONG
    password.

    I don't care about anyone stupid enough to fall for those.

    Some of them are almost perfect, from the faked header to the
    long link with a redirect so far to the right it does not appear on
    the screen when you hover over it. You only see the "yahoo"or
    "live.com" followed by the usual (expected) string of datamining.
    []'s
    --
    Don't be evil - Google 2004
    We have a new policy - Google 2012

    --- ViaMAIL!/WC v2.00
    * Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)
  • From Imvalid@somewear.com@1:261/20 to All on Sunday, January 01, 2017 12:34:00
    From: "James Wilkinson Sword" <imvalid@somewear.com>
    Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

    On Sun, 01 Jan 2017 02:55:10 -0000, Shadow <Sh@dow.br> wrote:

    On Sat, 31 Dec 2016 22:23:36 -0000, "James Wilkinson Sword" <imvalid@somewear.com> wrote:

    On Fri, 30 Dec 2016 20:50:09 -0000, Shadow <Sh@dow.br> wrote:



    Telling me to change my password, and use two factor security, "for my
    safety". Apparently I can send a hash of my fingerprints, my cell
    phone number or my social security details.

    The headers appear to be authentic, but the Yahoo emails redirect to a
    site in Bosnia, and the Microsoft emails to a rent-an-IP company in
    Brazil.

    No serious company would ever demand you use two factor
    authentication. It's two vulnerabilities to exploit. Just use a STRONG
    password.

    I don't care about anyone stupid enough to fall for those.

    Some of them are almost perfect, from the faked header to the
    long link with a redirect so far to the right it does not appear on
    the screen when you hover over it. You only see the "yahoo"or
    "live.com" followed by the usual (expected) string of datamining.
    []'s

    I've never seen one that even made me look twice. Spelling and grammatical err ors everywhere, bad alignment, wrong server used on all the links, blatantly ob vious.

    --
    There is no such thing as a law abiding motorist, just those who have been scam med and those yet to be scammed!

    --- ViaMAIL!/WC v2.00
    * Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)
  • From Petecresswell@1:261/20 to All on Sunday, January 01, 2017 19:10:00
    From: "(PeteCresswell)" <x@y.Invalid>
    Subject: Re: Lots of phishing emails "from" Yahoo and Hotmail this week.

    Per James Wilkinson Sword:
    I've never seen one that even made me look twice. Spelling and grammatical er rors everywhere, bad >alignment, wrong server used on all the links, blatantly obvious.

    One idea I have heard is that:

    - Sending spam email is essentially cost-free, so you send
    lots of the stuff.

    - The overhead starts kicking in when the scam's followup involves
    people contacting the target.

    - They want to minimize the number of contacts with people above a
    certain intelligence/sophistication level because they tend to
    be unproductive ("False Positives") - yet eat up resources.

    - Consequently they craft the email so that anybody with half a brain
    will ignore it and the people left - who respond - are the easiest
    of targets.

    There is an interesting thread on this subject in Quora: https://www.quora.com/Why-are-email-scams-written-in-broken-English

    Microsoft has a white paper on this subject:
    http://tinyurl.com/hem9h9j https://www.microsoft.com/en-us/research/publication/why-do-nigerian-scammers-s ay-they-are-from-nigeria/

    I didn't download the entire PDF - just read the abstract... but it
    seems to be consistent with other comments.
    --
    Pete Cresswell

    --- ViaMAIL!/WC v2.00
    * Origin: ViaMAIL! - Lightning Fast Mailer for Wildcat! (1:261/20)