General discussion


With phishers this dumb, need we really worry?

By deepsand ·
Aside from the obvious spelling errors, the obvious fact that this was sent to multiple addresses, and the poorly hidden link re-direction, note that the alleged "problem" will not occur until next week!

This reminds me of a recent incident in which a would be thief locked himself into the trunk of the car that he was ransacking.


Received: from [] by via mtad (C8.MAIN.3.17K) with ESMTP id 240JFmkyS1051M13; Mon, 13 Jun 2005 10:24:45 GMT

Return-Path: <>

Received: from [] by via smtad (C8.MAIN.3.21U); Mon, 13 Jun 2005 10:24:45 GMT


X-USANET-MsgId: XID247JFmkyt3756X13
Received: from by ; Mon, 13 Jun 2005 09:14:05 -0200

Message-I <>

From: "PayPal" <>

Reply-To: "Florine Deal" <>



Subject: [Spam] Confirmation Required

Date: Mon, 13 Jun 2005 09:22:05 -0200

X-Mailer: QUALCOMM Windows Eudora Version 5.1

MIME-Version: 1.0

Content-Type: multipart/alternative; boundary="--45242079321187510"

X-Priority: 3

X-MSMail-Priority: Normal


X-Brightmail-Tracker: AAAAAwC29hsAxVumAM7UOA==

This message was identified as Spam by Brightmail.


PayPal is committed to maintaining a safe environment for its community of customers. To protect the security of your account, PayPal employs some of the most advanced security systems in the world and our anti-fraud teams regularly screen the PayPal system for unusual activity.

We are contacting you to remind you that on 20 June 2005 our Account Review Team identified some unusual activity in your account. In accordance with PayPal's User Agreement and to ensure that your account has not been compromised, access to your account was limited. Your account access will remain limited until this issue has been resolved.

To secure your account and quickly restore full access, we may require some additional information from you for the following reason:

We have been notified that a card associated with your account has been reported as lost or stolen, or that there were additional problems with your card.

This process is mandatory, and if not completed within the nearest time your account or credit card may be subject for temporary suspension.

To securely confirm your PayPal information please click on the link bellow:

( The real link is [v][/v] )

We encourage you to log in and perform the steps necessary to restore your account access as soon as possible. Allowing your account access to remain limited for an extended period of time may result in further limitations on the use of your account and possible account closure.

For more information about how to protect your account please visit PayPal Security Center. We apologize for any incovenience this may cause, and we apriciate your assistance in helping us to maintain the integrity of the entire PayPal system.

Thank you for using PayPal!
The PayPal Team


This conversation is currently closed to new comments.

57 total posts (Page 3 of 6)   Prev   01 | 02 | 03 | 04 | 05   Next
Thread display: Collapse - | Expand +

All Comments

Collapse -


by deepsand In reply to Fighting Spam

2 of my web based accounts are with, one of the 1st to use BrightMail for spam filtering; it works quite well, and accepts & uses feedback from users.

Symantec was so taken with BrightMail that they recently bought the compnay.

Collapse -

wish they'd offer indiv accounts

by Dr Dij In reply to BrightMail

for a short time when they started they offered indiv accounts, no more, must be company or ISP. wish more ISP's would use them. They do quite a bit of effective filtering.

Collapse -

Watch for product(s) to be forthcoming from Symantec.

by deepsand In reply to wish they'd offer indiv a ...

Symantec bought the company, so as to avoid having to roll their own anti-spam engine, and thus get to market with a like product of their own more quickly.

Whether it will be offered as a standalone product remains to be seen.

Collapse -


by Dr Dij In reply to Watch for product(s) to b ...

I think messagelabs and possibly others do the same thing.

Brightmail was in UK if I recall correctly.

Collapse -


by tagmarkman In reply to BrightMail

I'll have to check that out.

Collapse -

If you DoS (DDoS) these IPs do you get in trouble? ;-)

by jmgarvin In reply to I get these all the time. ...

So, if I go out and start bringing the phishers boxes to their knees, will I go to jail or get a medal?

Collapse -

careful who you ddos

by Dr Dij In reply to If you DoS (DDoS) these I ...

it seems pretty straight forward to ddos a site that actually contains a form. (but) suppose we started alot of retailiatory ddosing, then to get back at a commercial site, someone could send out phishing emails listing the site's IP to shut it down, even if they hadn't really loaded a phishing form on it.

You'd have to click on form to be sure there was a phishing form at that site before acting.

as mentioned in the vigilante thread, might be better to hack in and delete the phishing web page instead to protect others, so when they click nothing happens, as it is either a phishing server or an already hacked server. this could be harder to do of course.

Collapse -

I think I have a better idea now

by jmgarvin In reply to careful who you ddos

How about actual LAWS that will put these people in jail? We can extradite them and flog them with wet noodles until they talk...

Collapse -

Can we throw Jello Too?

by tagmarkman In reply to I think I have a better i ...
Collapse -

No! You must throw Crackers.

by deepsand In reply to Can we throw Jello Too?
Back to Desktop Forum
57 total posts (Page 3 of 6)   Prev   01 | 02 | 03 | 04 | 05   Next

Related Discussions

Related Forums