New web-mail phishing scam

John Counsel — Mon, 06 Feb 2012 16:42:12 +0000

Today’s mail brought this clumsy phishing attempt aimed at hijacking your webmail account (any webmail account you happen to have, for which you provide the scammer with your username, password, etc).

NO legitimate webmail service will ever ask you to provide this information!

Instead, they’ll ask you to log into your account in the usual way. Even then, be wary of any log-in link provided in an email request.

Webmail Service Provider scam

John Counsel — Sun, 23 May 2010 18:22:30 +0000

Here’s a variation on the “Please view my resume” and “Amazon shipping label” scam I just received (again): it’s a message, claiming to be from my webmail provider (absolute proof that it’s a scam in my case, because I’m the webmail provider!) requiring me to re-validate my — unspecified — account by opening the attachment.

Yeah… right.

In this case, it’s a straight phishing scam aimed at stealing your identity and your webmail account, wherever you have that webmail account (your workplace, Hotmail, Yahoo, etc).

The usual stuff still applies: poor English, literal spelling and really obvious grammatical mistakes, etc.

Here’s an example of the spam message:

And here’s what the attachment looks like:

Don’t be fooled. It‘s an identity theft scam. When you try to “log in”, the form content is sent to the scammer. The other links are simply there to make it appear more legitimate.

The first three lines are the only ones that matter.

SuckerBait.info » webmail

New web-mail phishing scam

Webmail Service Provider scam