ThrottleMonkey The Two Wheeled Monkey forum .... General Chat and Banter and Sillyness! Anything goes. v
New Email Scam - "Law Abiding Citizen"

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Thread Modes
New Email Scam - "Law Abiding Citizen"
Kingy Offline
Administrator
*******
Posts: 5,384
Threads: 228
Joined: Jul 2014
Reputation: 11
#1
04-04-2017, 08:16 AM
I know most will just delete these, but having seen someone ask if this email has any authenticity on another forum, and with this warning being sent by the Derbyshire Police due to it's success I thought I'd share ....

Quote:Fraudsters are sending out a high volume of phishing emails to personal and business email addresses, pretending to come from various email addresses, which have been compromised.
 
The subject line contains the recipient’s name, and the main body of text is as below:
 
“Hi, [name]!
 
I am disturbing you for a very serious reason. Although we are not familiar, but I have significant amount of individual info concerning you. The thing is that, most likely mistakenly, the data of your account has been emailed to me. 
 
For instance, your address is:
 
[real home address]
 
I am a law-abiding citizen, so I decided to personal data may have been hacked. I attached the file – [surname].dot that I received, that you could explore what info has become obtainable for scammers. File password is – 2811
 
Best Wishes,”
 
The emails include an attachment – a ‘.dot’ file usually titled with the recipient’s name.
 
 
This attachment is thought to contain the Banking Trojan Ursniff/Gozi, hidden within an image in the document. The Ursniff Banking Trojan attempts to obtain sensitive data from victims, such as banking credentials and passwords. The data is subsequently used by criminals for monetary gain.
[Image: Crashtestmonkeyredsmall_zpsfc1e3d39.jpg] Croft 2005, Cadwell 2006, Cadwell 2007
Website Find
Reply
FraserG Offline
Administrator
*******
Posts: 697
Threads: 84
Joined: Jul 2014
Reputation: 3
#2
04-04-2017, 05:00 PM
We got emailed that at work yesterday - seems like it's catching a few people out. One thing you can do to protect yourselves is to disable javascript from running in PDFs (usually disabled by default but worth checking) and obviously not downloading any attachments from any email regardless of whether you trust the person (accounts can be compromised or spoofed to look like they're coming from a legitimate sender). If you aren't expecting an email, contact the person by another means to confirm they've sent you an attachment (Facebook (eugh), phone, etc.) before opening it.

Some mail clients are better than others at detecting spoofing, but they're not all 100% going to work, so vigilance is important.
Find
Reply
jollyjoiner Offline
Super Moderator
******
Posts: 1,660
Threads: 104
Joined: Jul 2014
Reputation: 4
#3
04-04-2017, 08:14 PM
I just delete them all and then end up looking for the ones that I should have kept lol
[Image: Crashtestmonkeyredsmall_zpsfc1e3d39.jpg]
Cadwell 2011/ Angelsey2011/ Cadwell 2013 (this one hurt) and retired me Sad
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)