topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Thursday March 28, 2024, 9:51 am
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Author Topic: Interesting Phishing Email - Seen This?  (Read 3685 times)

Renegade

  • Charter Member
  • Joined in 2005
  • ***
  • Posts: 13,288
  • Tell me something you don't know...
    • View Profile
    • Renegade Minds
    • Donate to Member
Interesting Phishing Email - Seen This?
« on: October 24, 2012, 07:24 AM »
I just got a very interesting phishing email.

The subject was "Hey Ryan", so they got my name right, and the email address was "First Last <[email protected]>", where the "First Last" is the name a friend of mine uses on Facebook.

The body was a simple phishing link and no more.

I'm not sure how that happened. Some spammer/scammer obviously figured out a way to look at friend relationships on Facebook and send out phishing emails. But there are so many possible vectors there... God only knows how.

Anyone seen this before?
Slow Down Music - Where I commit thought crimes...

Freedom is the right to be wrong, not the right to do wrong. - John Diefenbaker

wraith808

  • Supporting Member
  • Joined in 2006
  • **
  • default avatar
  • Posts: 11,186
    • View Profile
    • Donate to Member
Re: Interesting Phishing Email - Seen This?
« Reply #1 on: October 24, 2012, 09:25 AM »
They could have compromised his yahoo account.  That would account for them having his name and yours.

Renegade

  • Charter Member
  • Joined in 2005
  • ***
  • Posts: 13,288
  • Tell me something you don't know...
    • View Profile
    • Renegade Minds
    • Donate to Member
Re: Interesting Phishing Email - Seen This?
« Reply #2 on: October 24, 2012, 09:38 AM »
^^ Oh, the Yahoo account was just a spam account. It wasn't my friend's account. I should have clarified that.
Slow Down Music - Where I commit thought crimes...

Freedom is the right to be wrong, not the right to do wrong. - John Diefenbaker

wraith808

  • Supporting Member
  • Joined in 2006
  • **
  • default avatar
  • Posts: 11,186
    • View Profile
    • Donate to Member
Re: Interesting Phishing Email - Seen This?
« Reply #3 on: October 24, 2012, 08:48 PM »
Hmmm... maybe something else compromised his contact list?  And this is just that rolling downhill?

Renegade

  • Charter Member
  • Joined in 2005
  • ***
  • Posts: 13,288
  • Tell me something you don't know...
    • View Profile
    • Renegade Minds
    • Donate to Member
Re: Interesting Phishing Email - Seen This?
« Reply #4 on: October 24, 2012, 10:27 PM »
I'm not sure. We both use antivirus, so that's highly unlikely. My guess is that it's some kind of funny business going on with how Facebook shares data.
Slow Down Music - Where I commit thought crimes...

Freedom is the right to be wrong, not the right to do wrong. - John Diefenbaker

anandcoral

  • Honorary Member
  • Joined in 2009
  • **
  • Posts: 777
    • View Profile
    • Free Portable Apps
    • Donate to Member
Re: Interesting Phishing Email - Seen This?
« Reply #5 on: October 25, 2012, 02:02 AM »
You do not have to hack any one's account to get a list of names and corresponding email address.
Just look at the mails forwarded to you or your friend. The geek in us use 'bcc' but the rest of the world will fill the 'to' with loads of addresses.

We are having festive season 'Durga Puja' and 'Dushera' now in India. I am getting lots of wishes emails and I now have tons of emails to forward 'whatever', if I wish.

Also with so many web accounts been compromised, where do you think those emails end up to.

Regards,

Anand

Renegade

  • Charter Member
  • Joined in 2005
  • ***
  • Posts: 13,288
  • Tell me something you don't know...
    • View Profile
    • Renegade Minds
    • Donate to Member
Re: Interesting Phishing Email - Seen This?
« Reply #6 on: October 25, 2012, 02:51 AM »
You do not have to hack any one's account to get a list of names and corresponding email address.
Just look at the mails forwarded to you or your friend. The geek in us use 'bcc' but the rest of the world will fill the 'to' with loads of addresses.

I know that's not it. Thing is, his name is A B C D, and he uses B D in real life, but uses A C on Facebook, which is what I saw in the phishing email, so I KNOW that it's from Facebook somehow. I'm just not sure HOW that information got collected from Facebook.

Slow Down Music - Where I commit thought crimes...

Freedom is the right to be wrong, not the right to do wrong. - John Diefenbaker