Find the answer to your Linux question:
Page 1 of 4 1 2 3 4 LastLast
Results 1 to 10 of 33
so i get these emails everyday and it makes me mad because i think of all the people who fall for it. i get this email from this www.hm/totallyfreebanking.com url ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux Enthusiast carlosponti's Avatar
    Join Date
    Dec 2004
    Location
    Oklahoma
    Posts
    560

    Anyone else Tired of phishing scams?


    so i get these emails everyday and it makes me mad because i think of all the people who fall for it. i get this email from this www.hm/totallyfreebanking.com url and i do some digging and find this

    his account with www.hm/
    Domain name: www.hm/totallyfreebanking.com
    Registrant: ernest, Westman
    Email: fellx_sad@yahoo.com
    Registration date: 24. Jan. 2005 13:10
    i looked at the email header for kicks
    <myemailaddresswashere> via 206.190.37.25; Tue, 25 Jan 2005 04:19:12 -0800
    Authentication-Results: mta126.mail.sc5.yahoo.com from=charteronebank.com; domainkeys=neutral (no sig)
    X-Originating-IP: [194.232.88.65]
    Return-Path: <test@prod1-ho.local>
    Received: from 194.232.88.65 (EHLO prod1-ho.local) (194.232.88.65) by mta126.mail.sc5.yahoo.com with SMTP; Tue, 25 Jan 2005 04:19:11 -0800
    Received: by prod1-ho.local (Postfix, from userid 502) id 275ED1B3112; Tue, 25 Jan 2005 12:59:28 +0100 (CET)
    To: <myemailaddresswashere>
    Subject: Confirm your Online Banking account
    From: account@charteronebank.com Add to Address BookAdd to Address Book,
    Content-Type: text/html
    Message-Id: <20050125115928.275ED1B3112@prod1-ho.local>
    Date: Tue, 25 Jan 2005 12:59:28 +0100 (CET)
    Content-Length: 1846

    how stupid is this guy to begin with they can all be traced back using the email headers. i have started reporting these guys to whom ever i can but it doesnt seem to do any good. i kinda wish i had the skills and resources to attack these people.
    Blog
    Registered Linux user 396557

  2. #2
    Linux Guru
    Join Date
    Mar 2003
    Location
    Wisconsin
    Posts
    1,907
    It really gives Phish a bad name.

    Jeremy
    Registered Linux user #346571
    "All The Dude ever wanted was his rug back" - The Dude

  3. #3
    Linux Enthusiast carlosponti's Avatar
    Join Date
    Dec 2004
    Location
    Oklahoma
    Posts
    560
    another one i got was from http://www.tampabayfit.com/znou/Sign%20In.html

    i went to the base of the url and found it was a fitness website for tampa bay and they didnt even know someone had done this from thier domain i reported them as well. well after putting in bogus information into the site. i wish people everytime they got one would spend the time putting in bogus information so they would have to filter thru all of it. sure as hell make it more difficult on those guys. atleast that is the kind of attack i can do. they will have a database full of yousuck users with passwords of stupidphishers.
    Blog
    Registered Linux user 396557

  4. #4
    Linux Engineer
    Join Date
    Oct 2004
    Location
    Vancouver
    Posts
    1,366
    Who is it you report these people to?

  5. #5
    Linux Enthusiast carlosponti's Avatar
    Join Date
    Dec 2004
    Location
    Oklahoma
    Posts
    560
    i report them to the people they are spoofing the people they are using as hosts or redirects and whoever i can.
    Blog
    Registered Linux user 396557

  6. #6
    Linux Engineer
    Join Date
    Oct 2004
    Location
    Vancouver
    Posts
    1,366
    Thats a good idea, I need to start doing that...sick and tired of banking, student loans, and enlarging my penis ads

  7. #7
    Linux Enthusiast carlosponti's Avatar
    Join Date
    Dec 2004
    Location
    Oklahoma
    Posts
    560
    i reported two of these to ebay for attempts at scamming my account.
    Blog
    Registered Linux user 396557

  8. #8
    Linux Guru sarumont's Avatar
    Join Date
    Apr 2003
    Location
    /dev/urandom
    Posts
    3,682
    Unless you can trace it back to the originating IP in the header, reporting is pretty useless. I report things that show up in my logs that look like bugs trying to manifest themselves into my network (as they usually are), but SPAM is a ***** to report to any effect.

    The easy way is to just run your mail through spamassassin and teach spamassassin to find spam that it doesn't already (so we benefit from it, too! ).
    "Time is an illusion. Lunchtime, doubly so."
    ~Douglas Adams, The Hitchhiker's Guide to the Galaxy

  9. #9
    Linux Engineer adrenaline's Avatar
    Join Date
    Aug 2004
    Location
    Seattle, Washington
    Posts
    1,058
    I get the Ip addresses from the mail server and I do a whois
    Code:
    whois 1234.1234.1234.1234
    then I get their ISP I then send a copy of the log to their ISP. I have stopped a lot of these.
    As bad as AOL is they have done a lot to stop this crap. Even to people that spoof AOL.
    Some people have told me they don't think a fat penguin really embodies the grace of Linux, which just tells me they have never seen a angry penguin charging at them in excess of 100mph. They'd be a lot more careful about what they say if they had.
    -- Linus Torvalds

  10. #10
    Linux Engineer
    Join Date
    Oct 2004
    Location
    Vancouver
    Posts
    1,366
    Thanks adrenaline,

    I definately need to start playing with the whois command
    Operating System: GNU Emacs

Page 1 of 4 1 2 3 4 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •