This morning I've received two fake paypal emails. Nothing so unusual there you might think. However I use one-off email addresses and the two that have been targetted this morning have only been used to register with the HJ site.
That makes me suspect that the site has suffered a data loss. When the site was hacked a little while ago did the attackers get a list of subscribers email addresses?
Subject line changed slightly following an e-mailed suggestion
Edited by Dynamic Dave on 23/06/2009 at 14:52
|
|
me too.
|
|
Yup.
|
Me too!
|
I received 2 this weekend - one from paypal and one from Cahoot - both were very amateur
Bob
|
|
I got one.
|
|
I'll alert Stephen.
|
Thanks Rob.
I know that in this case it was a rather poor attempt, but there are now some quite high quality phishers out there. Given that I feel 99.9% certain that this has originated from the site list I thought it was worth raising.
One of those addresses was used to register an account from a workplace some time ago, so I'm pretty sure it had minimal use and hasn't even swapped mails with any of the mods.
the addresses in question are only used for hj.
Edited by adverse camber on 21/06/2009 at 13:11
|
|
|
|
|
Me too, a paypal one this morning although my address on here is also used on other forums too, but not displayed
|
|
|
|
|
|
Ah, that's what those were. I dumped them of course without opening them. Spam is spam.
|
|
|
|
|
I've had a very amateur Paypal phishing email this morning but then I frequently do. The way email delivery works I very much doubt you can blame this site. The email addresses are generated and thrown out to see what sticks. That's why you should never reply - you confirm that a real email address has been found.
JH
|
Me too, Cahoot and Paypal with strange character accents.
You have a new security message From Cahoot Bank Plc .
Log on
Yours sincerely,
Online Customer Service
Cahoot Bank
-----------
service@int.Päypäl.com
ear Päypäl Customer,
This e-mail is to inform you of a recent update we have made to oursystems.
To avoid service interruption we require that you confirm
your account as soon as possible. Please click here and take a
moment to confirm your account.
Please follow the following steps:
SNIP
Edited by Hamsafar on 21/06/2009 at 11:26
|
|
Me too, both Cahoot & Paypal.
|
Me too both Cahoot & Paypal.
>>
And me too.
(Just checked my spam box )
I have never had any before.
|
|
|
|
When a site is broken into the email address list is targetted because it can be sold on to spammers. Typically these addresses will be real and active.
I recently gave a one off very specific email address to a very large car company to download a brochure. This used a domain I own. No one else knows this email address. I'm now seeing ~5 spam per day sent to this same email address. I cannot believe that the car company would give my email address to spammers willingly so it appears their mailing list has been compromised. I'm not seeing any spam sent to randomly generated email addresses on my own personal domain.
Edited by merlin on 21/06/2009 at 11:43
|
just checked,ive got the paypal one too now
i reported the cahoot one the other day on the computer questions thread,seems by blaming the car parts finder set up i was wrong as quite correctly the email address i gave them was the one i use on here and is one of 6 i have with virgin
now then hj i want a big jam buttie as recompense
|
|
I didn't get one......but then again, I direct all my emails to the trash drawer except for a chosen few.
Edited by Mr X on 21/06/2009 at 12:02
|
|
|
|
Me too. The one and only spam yet received in my month old Google email account..
|
I've have both types in recent days and this morning - the PayPal example included Russian style letters in the Subject field.
For some reason that made me very suspicious...:-)
However, it's not the first time I've had them so can't blame this website.
Genuine e-Bay and PayPal e-mails are easily worked out.
Edited by Stuartli on 21/06/2009 at 12:16
|
I spot them Ok and forward them to spoof@paypal.co.uk to help them trace the originator.
|
|
|
|
me too
Fron Paypal from email address as above!! also this is the only place I use that email address
|
|
|
|
|
|
Actually JH I can.
The joy of owning your own domains and managing your own mail service is that you can invent mail addresses at the drop of a hat.
Everytime I have to give an email address to a company or web site, the address they get is of the form websitename@mydomain.org So I can always ID those who share. Yes I do see all the random ones as well. But in this case it is not random.
|
|
I got one as well with those strange "a"s...
|
Me too - both of them.
Clk Sec
|
|
|
|
The Cahoot one landed in my in-box and I thought looked quite professional - maybe I'm easily fooled.
The Paypal one with the Russian accents was sent straight to junk by hotmail.
Don't usually bother looking in junk, and since it's on 'auto delete' I could have had many others.
|
|
|
|
|
I also got this odd message from Paypal. However there was also an error message at the lower left hand corner of the screen.
Having read these warning from you good people, I pressed the "Block sender" button.
|
it'll come again from a slightly different address.
MD
|
|
I've just checked my email and yes I have both the spoof Paypal and Cahoot ones. I must say that I am slightly annoyed by this as up until this point I have received almost no spam/spoof emails to my current main email address. I think that we have established beyond reasonable doubt that the Honest John site is to blame so am I now to expect a raft of spam to appear in my inbox daily? I am not amused!
|
Pay pal today and I'm fairly sure I deleted something fron Cahoot earlier in the week Email address is effectively on my own domain but it's the one I use for nearly everything so cannot blame this site.
Spam happens, no point in worrying about it.
|
|
|
I think that we have established beyond reasonable doubt that the Honest John site is to blame so am I now to expect a raft of spam to appear in my inbox daily? I am not amused!
Chill guys :) :) its only spam, take it as part of life. I'm sure HJ and Stephen will be looking at this and I'm sure all us BR's are all savvy enough to know a spoof email from a genuine one.
P.S I got one too! :)
|
Chill guys :) :) its only spam, take it as part of life. >>
Does your double smiley mean that you are joking? If so, this is not something to joke about.
IMO, it is a serious breach of confidentiality and privacy agreements you enter into with HJ's website when you sign on. Either the iste has been hacked and security of data creached, or the data sold without consent.
|
|
No I wasn't joking, it makes no difference to me as I get spammed to death anyway. I've got more important things to worry about.
Edited by TimOrridge on 21/06/2009 at 18:46
|
|
|
|
|
|
|
Me too.
|
Me too. My email on this site is not used for any other purpose, and has been made known only to this site. So it is definitely points to the site having been hacked.
Both emails caught by my spam filter.
|
It pales into insignificance for me - contrasted with the heap of spam I received from a certain last gasp holiday company when we bought tickets to the Far East.
Last gasp really piled them in so I sent formal complaints in (as unsubscribe had no effect) *taking their energy*.
They then had to respond formally each time a spam arrived. Funny that - they stopped dead shortly after. And yes, I did tick the box asking for no contact.
Should these emails be forwarded and diverted to Webmaster...;-)
Just a little Joke....... ;-)
|
|
Me too...... PayPal yesterday. First one I've ever had. Fairly amateur if you're vaguely aware but must catch a few by sheer weight of numbers.
|
We had one too. As it happens we don't have a Paypal account any more and I manage OK without. Never open anything like that anyway.
Some time ago we had an internet bank fraud (which was made good by the bank on condition we co-operated with a police investigation). The first question the police asked was 'do you use Paypal?'
|
|
|
|
And me, both cahoot and paypal. The email address is only used on this site. I dont have accounts with either outfits.
Edited by Old Navy on 21/06/2009 at 18:01
|
I'm so confident in Gmail's spam filters that I'm quite happy to post my email address on open fora, such as this!
I use Thunderbird as my email client, set to use Gmail's own SSL servers, thus bypassing my ISP's rubbish mail servers completely, so rarely log on to Gmail's web mail. I've just done so to check and I'm pleased to tell you I havent been left out!
The dodgy Paypal message was duly sitting in the spam folder there, along with 68 other various pieces of ordure. (I cleared out all the junk a day or so ago).
There have been occasions when there have been upward of 300 spam mails in the folder!
|
|
|
|
|
Yep - a Cahoot and a Päypäl, both yesterday. Why the umlauts were put on the Paypal one I have no idea ...
|
|
I didn't get any - yet. Why have I been left out?
|
|
I'm not sure how I would tell if I got them - I get about 100 spam emails a day to each of my accounts. Doesn't really bother me, Google gets rid of all of them for me.
|
I had one from Paypal as well.
Ted
|
|
are you sure you lot haven't been looking at some Frankie Vaughan?...;-)
|
|
|
I got one too and had a look at the html coding behind the message.
The address behind the "click here to get screwed" is "http:**//smpdarmapatria-bks.sch.id/en/" which doesn't look PayPally! (The two ** I put in to stop the URL from working)
The source of the message is ns0.triad.uk.com which is listed as owned by LondonLink Hostmaster whose address I have. I do love "nslookup" and "Whois"!
eProf
|
Two new ones overnight, both supposedly from Abbey.
Shame really as I don't usually get any Spam.
|
|
|
|
Yep - a Cahoot and a Päypäl both yesterday. Why the umlauts were put on the Paypal one I have no idea ...
Maybe the originators are 70's heavy metal fans ? :-)
Yes, I've had them too :-(
|
|
|
|
