📧 The Official Spam Emails Thread™
-
Oh no! We update Terms Page Legal Agreements even more secure, but not fix broken English. And we don't try to mask what host we're sending this from either!
-
@dkf In Soviet Russia, Pay pal you.
-
-
@ben_lubar said in 📧 The Official Spam Emails Thread™:
For the record, this is the section they're talking about:
I was 13 years old when I wrote that post.
-
WTF? Are spambots scraping Mastodon addresses at this point?
(That's not an email address I have ever used for anything.)
-
@ben_lubar said in 📧 The Official Spam Emails Thread™:
I was 13 years old when I wrote that post.
"Blake Miranda" looks to be about 13 years old, too.
-
But its interesting how you do not respond to messages and yet send out a question two months later.
Is it really?
-
A client's idiot employee fell for the "I am really busy and cannot talk right now but I need you to urgently go out and buy a crapload of gift cards and send all the information to me ASAP" emails. Morons are really helping keep the Nigerian economy up and running.
-
Super personalised email there.
Weirdly, that's not how the email starts. The first line is
Good evening {my name}
-
@Jaloopa said in 📧 The Official Spam Emails Thread™:
Super personalised email there.
Weirdly, that's not how the email starts. The first line is
Good evening {my name}
Check the raw, they probably actually included a text portion.
-
got some REALLY weird ones today.
-
This is a good one:
The "Update my address" is actually a
mailto
link with 20 addresses where the names are all "Fedex" but then it goes to a bunch of shitty domains (reproduced in image form after putting into a text editor for clarity):
-
@boomzilla
I also choose to believe that the phallic name blackout was actually sent in the e-mail too.
-
-
-
@pie_flavor said in 📧 The Official Spam Emails Thread™:
@Cursorkeys said in 📧 The Official Spam Emails Thread™:
Hello sales.
Hello spambot.
Yeah, I think that was the reason it got flagged. I have a load of custom rules for greetings that are 'off' and it works surprisingly well.
My best performing rule is to eat everything with "bounce" in the Return-Path field, I don't have one for comic-sans...yet
-
I really have no words. Except, maybe we should fuck now? That's how it works, right?
-
@Tsaukpaetra said in 📧 The Official Spam Emails Thread™:
I really have no words. Except, maybe we should fuck now? That's how it works, right?
Are you going for the "Gain 15xp for completing pointless sidequest" end or the "Go to jail" end?
-
@Gribnit said in 📧 The Official Spam Emails Thread™:
@Tsaukpaetra said in 📧 The Official Spam Emails Thread™:
I really have no words. Except, maybe we should fuck now? That's how it works, right?
Are you going for the "Gain 15xp for completing pointless sidequest" end or the "Go to jail" end?
Yes
-
-
Oh, no, the Borg have access to email now!!! And they've figured out a way around google's SPAM filters.
Last week someone close to you opened an adaware application that spread around your company's connected network. I established a connection to via the opened remote desktop session, and got my hands not only on your financial summaries, but also on company's confidential information. A brief glance at your financial reports affirmed that you are in fact involved in tax non-compliance. Unless you want to suffer from the grave repercussions that can lead to major legal problems, you must pay a transaction to this btc address - 12YYHt8XmPcxycGArw9VQXMVbLpq7WspEW - 1.1217 Remind you the consequences for failing to do what is necessary of you will be that all of the reports that I've dug out will be sent to your state's department of taxation. After multiple inquiries, the IRS will have no choice but to perform an audit of your tax reporting. In the gravest scenario I'll make sure they know where to look. You have 2 days to complete the required task. * This inbox is only used to double check whether you've read the letter or not. Do not even try to persuade me to let you walk away or contact the authorities - resistance is futile.
-
@dangeRuss "hey, I'm gonna claim you committed tax fraud and on the off chance you believe me you'll help me commit regular fraud"
-
@ben_lubar said in 📧 The Official Spam Emails Thread™:
@dangeRuss "hey, I'm gonna claim you committed tax fraud and on the off chance you believe me you'll help me commit regular fraud"
Resistance is futile. You shall be assimilated.
-
@dangeRuss said in 📧 The Official Spam Emails Thread™:
@ben_lubar said in 📧 The Official Spam Emails Thread™:
@dangeRuss "hey, I'm gonna claim you committed tax fraud and on the off chance you believe me you'll help me commit regular fraud"
Resistance is futile. You shall be assimilated.
Your cryptographical and blockchain walkable distinctiveness will be segregated away from our own.
-
Found in the spam folder of the support address. Apparently it's playing with itself after hours ...
-
Wow, another super-targeted one. Thankfully our staff aren't stupid enough to fall for it:
In the file (opened in a gapped VM):
But what does it do?
-
phone numbers
They looked like plausible North American numbers, but on closer inspection it looks like the 524 area code is reserved for something
Other codes in reserve for this use: 522 (had been used for Mexico roaming), 588 (as with 522, "easily recognizable" codes as the second and third digits match), plus these "regular" 5xx codes: 521, 523, 524, 525, 526, 527, 528, 529 (other 52x codes for Mexico roaming), 532, 535, 538, 542, 543, 545, 546, 547, 549, 550, 552, 553, 554, 556, 558, 569, 578, and 589.
-
https://www.youtube.com/watch?v=bWjb0BQNIjY
What the hell is that email in the middle doing there
-
"I am Barrister Gilbert Benoit and I work with" ... "Please forgive me for not disclosing my identity to you at this stage for my security in case you report me."
LOL.
-
I didn't open it, nor am I going to, but I found the subject amusing.
Hey, handsome with a stunned smile and gorgeous figure
That's a swing and a miss! While I have been called handsome (but not recently), I have never been accused of having a gorgeous figure, even 30 years ago, when I was fit enough to do 75 mile bike rides. I have probably had a stunned smile from time to time, but I've never thought of that as being desirable.
-
I was just contacted by a man named Ben who informed me that the UN wants to pay me $800,000.00. All I have to do is contact another man named Roger at his Gmail address.
-
@mott555 do it, that one is legit. I have already received over 3 million Armenian yen.
-
A salesdroid has been trying to ring me for weeks, and been skilfully deflected by the receptionist every time. Today he managed to weasel an email address out of her, the email contained a PDF 'portfolio' which was this, in its entirety:
Why not save time and just have one big circle that just says 'IT' in it.
-
We are business customers! Send us price catalogues!
https://i.imgur.com/UmdTdf6.jpg
-
A weird one!
OK... so it's not valid HTML which is why we're getting just some links. But it's referencing Firefox's AppID 'ec8030f7-c20a-464f-9b0e-13a3a9e97384'. Looks like the contents of some config file, and it's even cut off.
So, do we get any hits in Google?
Open for a snapshot in a sandbox and:
It doesn't even seem to be trying to do anything malicious. Weird. Deeply Weird.
-
@Cursorkeys said in 📧 The Official Spam Emails Thread™:
trying to do anything malicious
It's trying to load a Java applet. Have you downloaded that and run it?
-
@Tsaukpaetra said in 📧 The Official Spam Emails Thread™:
@Cursorkeys said in 📧 The Official Spam Emails Thread™:
trying to do anything malicious
It's trying to load a Java applet. Have you downloaded that and run it?
Currently I can't make it offer me one. Maybe it just likes you
-
@Cursorkeys said in 📧 The Official Spam Emails Thread™:
@Tsaukpaetra said in 📧 The Official Spam Emails Thread™:
@Cursorkeys said in 📧 The Official Spam Emails Thread™:
trying to do anything malicious
It's trying to load a Java applet. Have you downloaded that and run it?
Currently I can't make it offer me one. Maybe it just likes you
And I (sometimes) like spam! Yum!
-
-
@M_Adams
Thankfully everyone knows I’m a perv
-
@M_Adams I know someone who's been receiving a fair amount of that exact message. Maybe we should compare bitcoin keys?
-
Maybe I should forward this one to Alex
-
en-US
We've got a new message for you
An email containing confidential personal information was sent to you
I'm quite confused about this message... so many questions....
-
I got this one last night:
Central Intelligence Agency - Case #87632549
My name is Pok Hope and I am a technical collection officer working for Central Intelligence Agency.
It's kind of long, so I'll just summarize. Alleged CIA employee sees that I am scheduled to be arrested along with a bunch of other people in an international crime roundup. CIA allegedly has extensive records of my online activity. Alleged CIA tries to blackmail me. Transfer $10000 in BTC to some wallet in exchange for tampering with files and making my name disappear.
There are a few problems with this, besides the obvious extortion scam.
Let's start with a supposed US government official using an email account @ cia-gov-int.cf. I don't think so, but at least it's not Nigeria, so one point for originality.
I would hope that an actual CIA employee would have the smarts to contact would-be blackmail victims through a method a little less public than unencrypted email. I mean, if the CIA is already spying on my DNS queries, they're certainly reading my email.
The alleged crime for which this scammer is attempting to blackmail me would be handled in the US by the FBI, not the CIA, even if it crossed national borders. I don't think a real CIA employee would be stupid enough to publicly admit that the CIA is illegally spying on US citizens.
Given the risk to the "CIA employee," $10000 seems like a rather low reward/risk ratio. Since the CIA is (allegedly) already spying on me and knows many details of my life, the risk undertaken by the employee in informing me of this and tampering with files (don't tell me they don't have some kind of backup they could compare with the active files to detect modifications when they see the blackmail attempt in my email) is very high. Even if the employee got a payoff from all of the people to be arrested, it's still not much of a reward for that amount of risk.
Finally, "I know you are a wealthy person who may be concerned about reputation." Concerned about reputation, sure, but wealthy?
A CIA employee who really had access to this information about me would know that I am not wealthy. Yes, I have an income that is well above the median, enough that I can live fairly comfortably even in outrageously expensive Silly Valley. But I am also saddled with debts that are 10x my liquid assets, and if I were to sell every single thing I own, I could maybe pay half my debts. A real CIA employee would know that my net worth is negative; I'm a lousy blackmail target.
-
@HardwareGeek said in 📧 The Official Spam Emails Thread™:
Transfer $10000 in BTC to some wallet
I've been regularly getting the ones "I broke into your email and computer and used the camera to record you doing naughty things". I always want to response in a
way, but they've faked the email headers (to me). And
to do any more research than that. Oh, did I mention I don't have a camera on the computer?
-
@dcon said in 📧 The Official Spam Emails Thread™:
Oh, did I mention I don't have a camera on the computer?
Yeah, I get those, too. I don't have a camera, either.
-
@dcon said in 📧 The Official Spam Emails Thread™:
Oh, did I mention I don't have a camera on the computer?
Ah, so you admit to doing naughty things that might otherwise have been recorded by said non-existent camera?
-
@HardwareGeek said in 📧 The Official Spam Emails Thread™:
Finally, "I know you are a wealthy person who may be concerned about reputation." Concerned about reputation, sure, but wealthy?
You probably wouldn't have paid anyway. Meanwhile, it would resonate a bit more deeply with someone who really did have $10000 to give away like that.
-
@Tsaukpaetra said in 📧 The Official Spam Emails Thread™:
@dcon said in 📧 The Official Spam Emails Thread™:
Oh, did I mention I don't have a camera on the computer?
Ah, so you admit to doing naughty things that might otherwise have been recorded by said non-existent camera?
-
Not email but voicemail spam:
Hi, this is Ed getting back to you with the information I promised you [liar; I've never heard from you before]. I think I've got the right number [liar]. Anyway, here's the information about bringing in $10000 a month. I'll leave the website right here on your voicemail. That's www.["lotsofcash" + "with" + "Ed" — if you want to put the pieces together and report back what kind of malware it gives you, feel free, but it's your choice; don't blame me for any bad outcome].com.
I think he repeated the URL, but I stopped listening at that point. Delete