Category Archives: phishing
They’re not even trying anymore…

Just got the following email in my Gmail Inbox:

Dear valued PayPal member:

Identity protection matters. And PayPal works day and night to help keep your identity safe. That’s why it has come to our attention that your PayPal account information needs to be updated as part of our continuing commitment to protect your account and to reduce the instance of fraud on our website. If you could take 5-10 minutes out of your online experience and update your personal records you will not run into any future problems with the online service.

However, failure to update your records will result in account suspension.

Once you have updated your account records, your PayPal session will not be interrupted and will continue as normal.

To login to your PayPal account and update your records click on the following link:

http://[redacted]/updateusersonlinesecurity.html

Thank You for using PayPal!

The PayPal Team

OK, there’s a few things wrong here but the most blatant is the fact that they didn’t even bother spoofing the URL of paypal.com, they just went ahead and put up the IP address of a server in the Czech Republic (thanks dnsstuff.com!)

Is this just an example of spammers/spoofers/phishers/whateverthefuckthey’recallingthemselvesnow not caring or just ineptitude? I’m betting on ineptitude myself.

The end of Nigerian Spam?

According to a Reuters article, Nigeria is considering passing a law making email spamming illegal.

Wow.

Here’s a clip:
Under the bill, which has to be approved by the National
Assembly to become law, convicted spammers face jail terms of
three to five years and could also be made to hand the proceeds
of crime to the government.

"Any person spamming electronic messages to recipients with
whom he has no previous relationship commits an offence," said
a section of the draft law obtained by Reuters on Wednesday. 
Sweet!

I’m sure you’ve received at least one Nigerian spam message if you use email.  It usually starts with a statement apologizing for intruding on your time, a sob story describing some sort of death of a government official with tons of money in the bank and goes on from there.  More people than you would think have fallen for it and it’s a scourge that has been plaguing the internet for a few years now.

Do I think this is a good idea?  Hells yes, I do.
Do I think this will change anything?  Hells no, I don’t.

Posted on October 19, 2005, 09:50 By
Categories: phishing, spoofing