Ezilon.com - Target Your Audience, be Seen in Your Region
HomeTWF Feedback and General DiscussionOff-Topic Chat

Scams getting better

You are viewing this site as a guest. Join our community to get your questions answered and share knowledge. Active members may advertise and ask for a website critique.

Wapture posted this at 14:19—1st June 2004.

They have: 34 posts

Joined: Feb 2004

I just received another scam email, from the supposed Citi Bank.

The email is attached.

They are obviously getting better, but not as clever as they should be...

They ask you to click a link, and you enter your details.

The link looks very good...

If you take a look at the email this is the URL it tells you to use:

https://web.da-us.citibank.com/signin/scripts/login2/user_setup.jsp

Yet the link that is used when you click it is:

https://web.da-us.citibank.com/signin/scripts/Iogin2/user_setup.jsp

The thing is, if you click the link above, it doesnt work, yet, click it in email and it does...

(Thats the only reason I have posted the links)

Very clever ay? Not clever enough.

Then when you click the link, it has a redirection script, so it takes you to citi banks real website, yet a popup appears telling you to enter your details.

So it looks as if it really is Citi Bank asking for your details, yet it isn't. Even though citibanks website is there, it still is a scam popup.

Very clever, and as I said - not clever enough, as nearly all of the email messages sent, and half of the info in the popup window are pictures.

AttachmentSize
picture.gif5.49 KB

Suzanne posted this at 15:42—1st June 2004.

Suzanne's picture

She has: 5,512 posts

Joined: Feb 2000

The reason the links work in the email but not when copied and pasted into the address window is very simple -- they are fake.

<a href="spammerAddressURL">realLookingURL</a>

'

View the raw source of your email.


love me, love my brain :: iStockphoto portfolio

teammatt3 posted this at 23:45—1st June 2004.

teammatt3's picture
Moderator

He has: 1,855 posts

Joined: Sep 2003

I hear a lot of people get messages like that from the people at "Paypal" and "ebay"

Megan posted this at 13:38—2nd June 2004.

Megan's picture
Administrator

She has: 10,145 posts

Joined: Jun 1999

teammatt3 wrote: I hear a lot of people get messages like that from the people at "Paypal" and "ebay"

I've gotten a few from ebay spoofers. Some actually try to re-create the ebay site design in their e-mail so it looks like it's really from e-bay. It's so rediculous though, because they're such bad copies of the deisgn. I mean, they could literally copy the e-bay navbar and logo and everything. But instead they do a bad copy and it's obvious that it's not really from e-bay.

These people could also use proper spelling and grammar too! I have to wonder if people actually fall for these spoofs when they're so poorly written.

Megan
My web design blog

Busy posted this at 02:52—2nd June 2004.

Busy's picture
Modrater

He has: 6,151 posts

Joined: May 2001

I had one of those Citi Bank emails just the other day (don't have Citi Bank in NZ anyways) the real link on the login was to a msn based web page.

I always look at a links location in the status bar or copy and paste the url (without going there) to see where it goes and if my email addy is on it, remove it.

Slightly of topic:
What I used to do is find the companies that spam, ie: buy all your viagra from 'so and so ltd'. I then try find "so and so's" contact email addy or use one of the many common ones and opt out of other web based email sites using the previous spam companies email addy.
It's cruel but hey, if they want to spam they deserve to be spammed Laughing out loud
If anyone wantsto do this, don't use the reply email in the actually email, more often than not they are fake, forged or stolen.

<?bhb if(broken){ echo("It wasn't me Smiling "); } ?>
Learn HTML the ez way - EzHTML.net

Some people are like slinkies, they dont really serve any purpose but they still bring a smile to your face when you push them down the stairs ...

Wapture posted this at 08:28—2nd June 2004.

They have: 34 posts

Joined: Feb 2004

Actually, that is a really good idea.

And sometimes when you reply to a scam or spam email, it verify's your email address so they know to send more. Thats what I have heard anyway.

I think I will try that.

Busy posted this at 09:50—2nd June 2004.

Busy's picture
Modrater

He has: 6,151 posts

Joined: May 2001

yeah more often than not, opting out via spam links is only confirming your email is an active one which leads to more spam.
There are some legite companies that do have real opt out options but it's not worth the risk these days, never open spam, never reply, just delete them all

<?bhb if(broken){ echo("It wasn't me Smiling "); } ?>
Learn HTML the ez way - EzHTML.net

Some people are like slinkies, they dont really serve any purpose but they still bring a smile to your face when you push them down the stairs ...

Abhishek Reddy posted this at 10:35—2nd June 2004.

Abhishek Reddy's picture
Moderator

He has: 3,285 posts

Joined: Jul 2001

http://www.citigroup.com/citigroup/global/nzl.htm

I'm sure Citibank has a footing here. Confused

Busy posted this at 01:04—3rd June 2004.

Busy's picture
Modrater

He has: 6,151 posts

Joined: May 2001

heres a classic paypal scam email (got this one today)

Quote: Dear PayPal valued member,
Due to concerns, for the safety and integrity of the PayPal
community we have issued this warning message.

It has come to our attention that your account information needs to be renew due to
inactive members, spoof reports and frauds.
You must to renew your records and you will not
run into any future problems with the online service.
However, failure to update your records will result in account deletation.
This notification expires on June 05, 2004.

Once you have updated your account records your PayPal will not be
interrupted and will continue as normal.

Please follow the link below
and renew your account information.

https://www.paypal.com/cgi-bin/webscr?cmd=login-run

PayPal Service Department

Just above the "PayPal Service Department" is even paypals logo. and the web address above is actually a link. Looks legite doesn't it (well not really, bad grammer among other problems), looking at the source you'd see the link is actually:

Quote: https://www.paypal.com/cgi-bin/webscr?cmd=login-run
PayPal

notice also the scammers actually link to paypals icon directly.
They didn't do the window staus thing properly so it doesn't work.

Sad thing is people do fall for it.

spammers and scammer are idiots Laughing out loud

[edit] Must be my lucky day, got another one of these, 2 in one day, same everything. Also noticed though the reply email addy is actually wrong, is Reply-To: the From and Return-Path are both right, pal with a l instead of a capital i. [/edit]

<?bhb if(broken){ echo("It wasn't me Smiling "); } ?>
Learn HTML the ez way - EzHTML.net

Some people are like slinkies, they dont really serve any purpose but they still bring a smile to your face when you push them down the stairs ...

brady.k posted this at 13:55—3rd June 2004.

brady.k's picture

He has: 1,383 posts

Joined: Feb 2002

Yea, I just got one from "US Bank"

Dear U.S. Bank valued customer,

Due to concerns, for the safety and integrity of the online
banking community we have issued this warning message.

It has come to our attention that your account information needs
to be updated due to inactive customers, fraud and spoof reports.
If you could please take 5-10 minutes out of your online experience and renew
your records you will not run into any future problems with the online service.
However, failure to update your records may result in your account suspension.
This notification expires on June 10, 2004.

Once you have updated your account records your internet banking
service will not be interrupted and will continue as normal.

Please follow the link below and renew your account information.

U.S. Bank Internet Banking

'

The links, again, were IP addresses, but no logos or anything...and I'm not even a member of US Bank (does it even exist?)!

Kyle Brady, President, Intuitive Industries LLC.
http://www.int-ind.com
[EMAIL=brady.k@gmail.com]brady.k@gmail.com[/EMAIL] - [EMAIL=brady.kyle@int-ind.com]brady.kyle@int-ind.com[/EMAIL]

Megan posted this at 14:38—3rd June 2004.

Megan's picture
Administrator

She has: 10,145 posts

Joined: Jun 1999

The sad thing is that people must fall for this stuff or the spammers wouldn't keep trying it. Same goes for spam in general. They wouldn't do it if they weren't getting results...

Megan
My web design blog

Suzanne posted this at 15:30—3rd June 2004.

Suzanne's picture

She has: 5,512 posts

Joined: Feb 2000

It is sad -- and it doesn't take a lot of results to make it worth it, either! They send out millions of ads, say .01% of the recipients people believe them a day, they make boatloads of cash. That's still 100s of people a day saying, hey, you know, I'll buy that, do that. And there is a higher rate of return than that... Sad

The erection sustaining drugs, of course, do have a market. As do the "no credit, we'll save your bum" ones, and sadly all the "oh, my clothes seem to have fallen off!" ones. The thing that gets me is the ones that get through to me lately are missing valid contact information or even a way to respond, lol.


love me, love my brain :: iStockphoto portfolio