Quote:
Originally Posted by cromag
I have been experiencing a significant increase in email SPAM and scams lately, but one (of the three) that I got today is worthy of notice!
First, the "from" address is spoofed to look like it came from Chase Bank, but the "reply to" address is crafted to look like PayPal.
The demand to provide my email password is a new one for me. Ambitious, but I guess it only has to work a few times to be worthwhile.
|
Sounds rather similar to one I got today purporting to be from Amazon.ca. I had a certain amount of difficulty believing "Amazon.ca <lkjsfl9087@example.zeligz.com>" was a valid Amazon from: address so I did the rest of my playing in a Linux VM.
The body of the message, in part, read:
Quote:
Dear Valued Customer,
When signing up for a free trial, we require a valid credit card to ensure that your free trial can upgrade to a paid membership at the conclusion of the 30-day period. Since your card is invalid, your free trial has been suspended. Please update your payment information.
|
plus some additional copy/paste from Amazon's Prime advertising.
I opened Firefox in the VM and then opened the link in the message and was led off to
https://docs.google.com. There I got another link to
https://trebogea.ch/amazonCA. That link wanted my Amazon login and then asked for my credit card information plus a few bits of other personal information so "Amazon.ca" could verity that I was the person who owned the account.
You'd think they would take the time to make the message at least look real enough that someone might potentially be tempted to open the link.