Scams like these

[wandering_fred]

That last one looks sort of familiar, but in acy case here is a new one for me. I ignored the xls with the "reconciliation".

Just wandering
Fred

Attached are the Reconciliations of the Payroll email/Funding/and JE for payroll in September.

Note the ongoing discrepancies on the system generated payrolls. I think you looked at this last month and had the source(s) of the difference. We should re-visit this after close to update that JE Mapping in Paycom.

Regards,
Rene Dornier
Controller
Ofc: +44 xx_xx_xx_x

 

[VPS]

Can You Be My Partner

May peace be with you. My name is Amina Altwaijri, daughter of Khalid Altwaijri from Saudi Arabia.


I write with great confidence that you will protect my identity and help me. My father was one of those arrested by the Saudi authorities in November 2017.


Since they were released, the Saudi authorities have confiscated all of my father's property, finance and communication tools. Currently my family is under house arrest.


It was through the help of a security member that I used this computer to communicate with you. My father has a deposit of $20m with a financial institution in Europe.


My family will like you to help us secure it before the Saudi authorities confiscate it because that is the only thing left for my family now.


Please refer to me so I can provide more details on what to do to help us
BestRegards

Amina Altwaijri

---
This email has been checked for viruses by Avast antivirus software.
Avast | Download Free Antivirus & VPN | 100% Free & Easy

So pleased that it has been checked for viruses

 

[prozac]

Here is another beauty that I thought I should let you all know so that you do not have to worry about your cough usage.

Interestingly they have taken a stab at a password, which involves the actual year of a Fiji trip. I have never used such a dopey password. Obviously data from a 3rd party site, perhaps a hotel we stayed at has been hacked.

YOUR ACCOUNT WAS HACKED
Hello!
I'm a member of an international hacker group.

As you could probably have guessed, your account prozac@xx_xx_xx.com.au was hacked, because I sent message you from your account.

Now I have access to all your accounts!
For example, your password for prozac@xx_xx_xx.com.au: fiji20XX

Within a period from July 31, 2018 to October 3, 2018, you were infected by the virus we've created, through an adult website you've visited.
So far, we have access to your messages, social media accounts, and messengers.
Moreover, we've gotten full damps of these data.

We are aware of your little and big secrets...yeah, you do have them. We saw and recorded your doings on cough websites. Your tastes are so weird, you know..

But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched!
I think you are not interested show this video to your friends, relatives, and your intimate one...

Transfer $800 to our Bitcoin wallet: 1PwENLsmQ2Z6b4EJfXDeeXKBj9v878uHRf
If you don't know about Bitcoin please input in Google "buy BTC". It's really easy.

I guarantee that after that, we'll erase all your "data"

A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.

Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.

You should always think about your security.
We hope this case will teach you to keep secrets.
Take care of yourself.

 

[wandering_fred]

Here is another beauty that I thought I should let you all know so that you do not have to worry about your cough usage.
Interestingly they have taken a stab at a password, which involves the actual year of a Fiji trip. I have never used such a dopey password. Obviously data from a 3rd party site, perhaps a hotel we stayed at has been hacked.

I would taken odds on the linked in hacks.....
I have had more than a handful from various sources. All saying they turned on my web cam etc.

I don't have a web cam.

Just wandering
Fred

 

[QF WP]

Ah, you two just beat me to it, I have got 2 in 3 days - other than they have correctly nominated an old password of mine that I use for very few websites (as I changed to a new variety some years ago).

This one was first:

Hi, dear user of [family website used by my father and brother]

We have installed one RAT software into you device.

For this moment your email account is hacked (see on <from address>, I messaged you from your account).

Your password for [website]: xx_xx_x (but I've never used this password for that website - I don't access the website)
.
.
For the moment, the software has collected all your contact information from social networks and email addresses.

If you need to erase all of your collected data, send me $800 in BTC (crypto currency).

This is my Bitcoin wallet: [redacted]

You have 48 hours after reading this letter.

After your transaction I will erase all your data.

Otherwise, I will send video with your pranks to all your colleagues and friends!!!

And henceforth be more careful!

Please visit only secure sites!

Bye!

and then the same one as shown above by @prozac and the same password.

Humorous hackers, but I'm not about to bite. Wouldn't it be nice to be able to reverse it and drain their bitcoin account

 

[drron]

Yes I got one as well.
Interesting last week Malwarebytes offered a new service-investigate if your email has been hacked-they came up with 4 occasions.The first in 2011 when I was using that password.None since early 2017.

 

[prozac]

This morning two of my email accounts have been targeted with spam emails...well 7 emails apiece. I haven't worked out how they got past the server, time to re-edumacate it. They were all sent from Colo Crossing accounts which is a domain registered with GoDaddy.

 

[VPS]

The FBI needs some English lessons I think

OFFICIAL LETTER FROM FEDERAL BUREAU OF INVESTIGATION FBI
Christopher A. Wray EXECUTIVE DIRECTOR FBI FEDERAL BUREAU
OF INVESTIGATION FBI NEW YORK.
FBI SEEKING TO WIRETAP INTERNET

ATTENTION: BENEFICIARY,

The federal bureau of investigation (FBI) Through our intelligence-monitoring network has discovered that the transaction that the bank contacted you previously was legal. Recently the fund has been legally approved to be paid to you via ATM CARD.

So, we the federal bureau of investigation (FBI) NEW YORK, in conjunction with the United Nations (UN) financial department have investigate through our monitoring network regarding your payment of $10.5 million, You have the legitimate right to complete your transaction to claim your fund US$10.5,000,000.00 (Ten million five hundred thousand united states dollars)

Because of so much scam going on internet now We the federal bureau of investigation decided to contact the delivery Courier Company service for them to give us their procedures on how to sent this money to you without any further complain or delay. We just got an information from Xport Bank ATM CARD International Florida United States and they have loaded your US$10.5000,000.00 into an ATM CARD and will be submitted to the delivery courier company service for immediate delivery to your home address as soon as you send their required fee.

For your information, two Beneficiary have receive There ATM CARD worth US$10.5Million from DHL Delivery service Company This year 2018 as sign from federal bureau of investigation the donor and your own ATM CARD is only delay here.

Last weeks, CARROLLTON from DALLAS, TX - USA choose one Delivery option and the ATM CARD has being Deliver to him in DALLAS, TX - USA on September 19, 2018, if you have any doubt, just type www.dhl.com and enter shipment tracking number at (9607105336) for more proof.

2. CABRALES LICK live in SOUTH BURIEN USA also paid the DHL Courier fee and his ATM card worth US$10.500,00 has been deliver to him on Wednesday, September 19, 2018 , you can also track it if you have any doubt. here is the tracking number (5177697770) at www.dhl.com for more proof because your ATM CARD will get Deliver to you without any further demand again once you choose and pay for any Delivery option,

You are required to choose one Delivery option, which you will be able to pay and also ask the management of Xport Bank ATM CARD International Florida United States to give you the information where you will send the delivering fee and also convenient for you, for quick delivery of your parcel containing your ATM CARD and other two original back up documentations.

Service Type, Delivery, Duration Charges,Fees

FedEx Express (24hrs Delivery)
Mailing $180.00
Insurance $70.00
Vat $45.00
TOTAL $295.00

DHL Courier (2 Days Delivery)
Mailing $140.00
Insurance $90.00
Vat $25.00
TOTAL $255.00

UPS Express (4Days Delivery)
Mailing $120.00
Insurance$77.00
Vat (0%)0.
TOTAL $197.00

You are hereby required to advice the Xport Bank ATM CARD International Florida United States, on your parcel delivery option by filling the required form stated above.

Please note that the deadline for claiming your fund is exactly one week after the receipt of this email. At this period your fund will return back to the ordering costumer. That is the instruction given to us.

So take note. We advise you to contact Xport Bank ATM CARD International Florida United States with your mailing address and full name and your contact phone number to ensure conformity with our record for immediately dispatch of your parcel to you. Only valid residential, Office address and postal address are certified. We are here to protect you from any problem until you receive your package, But make sure you contact Xport Bank ATM International New york United states by yourself with below information and ask him to give you the info where you will send the delivery fee to enable quick releasing the ATM card to you without any more delay or hitch.

Below is Xport Bank ATM CARD International Florida United States contact details:


Contact Person::: Mr. Frank pham

TEXT ONLY: +1 (917) 936-4324
Email:::: {atmpayment_office@citromailxx_.hu }


Mr. Fran pham also always receive text message at +1 (917) 936-4324. You can text him anytime about your ATM CARD because too many fraud uses email address.


Looking forward to hear from you as soon as you receive this message

Best Regards,

Christopher A. Wray
Federal Bureau of Investigation
J. Edgar Hoover Building
935 Pennsylvania Avenue,
NW Washington, D.C.
Email: fbi.gov@onlinexx_.ee

 

[VPS]

This one is more concerning because it looks very similar to the real Linkedin notifications except it comes to an email address that is not registered on Linkedin and then you see the sender is [email protected]_

 

[JohnK]

10.5,000,000.00? My God! How can people so stupid scam anyone?

 

[prozac]

I only just joined Instagram. Got this message from Instagram this morning;

Hi prozac,

The email on your Instagram account was changed from prozac@xx_xx.com.au at 15:16 (PDT) on Wednesday, October 10 2018.

Your new email is zxsrbkls(at) xx_x.ru. If you didn't change your email address, revert this change.

 

[wandering_fred]

Complete with "pretty" graphics
Pity that telstra has relocated their account links to somewhere in France....

Dear customer,
Your TelstraID password expiration is active.
We would like to inform you that your TelstraID password will expire on 18 october 2018 at 18:55PM.

[Modify or deactivate password expiration ---- redacted]

In case you do not modify / deactivate your password expiration, the system will automatically block your TelstraID.

Thank you,
Telstra E-mail Staff

 

[OATEK]

Little do they realise that my Appleid expired a decade ago when Apple made my IPOD redundant.

---------

Dear oatek



We are contacting you today as you have not updated any of your personal details for some time as a security measure we have disabled your account.



What the problem?

We detect unauthorized login attempts to your account from other location. Some information on your account appears to be missing or incorrect. Please update your information promptly so that you can continue to enjoy all the benefits of your apple account.



What you can do next?

Please log in to your account to see the steps you'll need to complete your informations. We will review your account within 24 hours. If you do not complete your account can lead to permanent suspension of your account.



In order for us to safeguard your account information it is vital we hold the most up to date details regarding our customers. To restore access please click the link below to validate your information this process should only take you a few minutes to complete at <URL deleted>



Sincerely,



AppIe Support



Apple



ID|Support|Privacy



Policy

Copyright © 2018 Apple Pty Limited Level 13, Capital Centre, 255 Pitt Street, Sydney NSW 2000, Australia. All rights reserved.

 

[OATEK]

I seem to be getting one of these every hour at present!!

 

[Warks]

Not an email scam but a friend sent me a link to a guy running seminars on getting rich doing nothing while selling stuff on Amazon. It was dressed up as being a seminar BY Amazon Australia and my friend signed up to the free seminar. I did some research and found it was just some guy running a scam where he sells you the tools to get rich at the seminar ($5K thanks!) and you attend a boot camp where he hits you up for another big slug of cash. I sent my findings to my friend and he decided he wasn't going to attend now. The thing is he's got a business which needs to find other outlets for his goods and he's been looking at Amazon who haven't responded to any of his correspondence. Suddenly this comes out of the blue...

 

[Cossie]

Yawn......

Hello,

You have been selected to receive (950,000.00 EUR) from the Qatar Foundation Award, Get back with your full names and address through e-mail for more information;

Regards,
Sxx Al Mxx_xx.
Contact E-mail: xx_xx_x@xx_xx_xx_xx_

President of Qatar Foundation.





Love to, but I think it's a load of cough, so I won't be responding,

 

[Buzzard]

I think the poor grammar gives it away @wandering_fred

 

[QF WP]

Just had my first hack attempt via my enquiry function of my website. "Срочный ремонт домофонов в Москве" apparently means "Urgent repair of intercoms in Moscow". Sorry, back to normal programming...

 

[QF WP]

I've been getting the old : "I've got yoúr password and caught you looking at cougho via your webcam etc"...

Interestign, one of my suppliers sent this message through to us:

There’s a number of targeted ‘blackmail’ emails in circulation – whereby the recipient is informed that blackmailers have videos of the recipient watching coughography which they’ll share with the victim’s contacts - unless they are paid in cryptocurrency.

In some cases, the blackmailers reveal one of the victim's passwords in the email in the hope that it will further convince them that they have access to their computer, so that they’ll pay up.

They do this by using compromised user email addresses and passwords found in big breach data available for purchase on the dark web, such as LinkedIn, Dropbox and Yahoo.

This is a scam. Do not open any of the links and delete the email. This scam highlights the importance of never re-using the same password across multiple sites or services.

If you use Dropbox, Linkedin and Yahoo there’s a high probability that your email address and old passwords are already in the hands of hackers. Use haveibeenpwned.com to check if your personal and work addresses are in any known breaches. If they are listed - ensure you are not using the same password that was in any of the breaches where your user credentials were exposed.

Seems my personal email address is on 3 breached sites and my work one thankfully only on 1 (but a different one to the 3 for my personal one). Thankfully I use Dashlane premium and can smell out a scam courtesy of everybody who posts here.

 

[get me outta here]

A friend just paid a flooring company who'd been hacked. The hackers advised new bank details and he paid to the new details. The ANZ and the police said not much chance of getting his money back. Anyone got any other ideas?