scribbles tagged ‘phishing’
I’m exactly the right person to ask about writing a guest post for this blog.
I’m so pleased that the wendyhome is the kind of place where you’d like to share your gems of wisdom. I’m intrigued. How did you decide that this is the blog you want to write for? What type of writing do you think will inspire my gorgeous readership. Do tell me more….
A little google search on your email address promtped Firefox to give me this warning:
Please do send me the post you’d like considered for publishing on the wendy house. I will need to pay the wendy house editorial and legal team for checking that it conforms with legal, health and safety standards. Could you provide your credit card number, expirey date and CVV number to get the process started…
love wendy xxx
When my landline gets a call where the caller doesn’t respond to ‘Hello?’ ‘is anybody there?’ I suspect an automated system has dialled my number. My number is on the UK’s “Telephone Preference List”. Membership of this list makes it illegal for marketers to call my number. Hoorah! The list works for me.
When I get a call that starts with the silent treatment, an automated dialer, I LOUDLY blow into the reciever. This prompts the system to put a person on the line who decides to either:
- speak – ask for the previous registered owner of this number then try to sell me something using a rather dodgy east Asian accent. If I have time I play with them, trying to get information about them, without giving them any information about me. Normally they just get angry and rude. When I’m bored of the game I ask them to take me off their lists – they say they can’t – I tell them they’ve broken the law by calling me. They hang-up. I believe that I am doing a good service to society by keeping them talking to me rather than talking to someone who might fall for their naughty dishonestness
- hangup – I suspect they recognise me as the lady who wastes their time when they’re phishing. I feel like I know them quite well now. Certainly no friends or people from organisations that provide me with valuable services have complained about the loud noise they sometimes get when they phone the wendy house
Unfortunately, Matthew seems to think there is no cost for us hosting his code. After chatting with the crew here, we’ve given him some insight into our current business charges. We’re not cheap, but we’re worth it. If this flow of interest from marketters continues the wendy house might have to go so public or become Limited!
Do you think Matthew will
- write back?
- ask me directly for my bank account details?
- rely on his script doing direct evilness to my cupboard?
How nice of Melanie to write to me, having read my lovely blog. She wants to ‘work’ with me. I’m touched
Actually the content of her email, apart from my email and the blog address could insincerely be applied to about 80% of blogs on the web
Asking Google about “Amplified Media” shows a very impressive reputable looking company. But wait, the impressive company is AmplifiedMedia.co.uk
Melanie’s employer’s address is a different company – AmplifiedMedia.org
McAfee doesn’t give AmplifiedMedia.org a big green tick-mark. That’s very unusual. Normally all the high level natural search results have a McAfee approval tick
I think I’ll ignore Melanie – not give her the knowledge that my email address is valid… ..or maybe i’ll explore this potential scam – what do you think?
Wendy: HellooooOOHH, Wendy speaking, how can I help you?
Automated message (AM): This is Lloyds Bank calling to leave a message for [name of last occupant of the Wendy house, nolootwh], if you are [nolootwh] press any key
Wendy: (not being nolootwh I pressed no keys and waited in the silence pondering what to do next, after what seemed like days I decided to press any key out of sheer noseyness)
AM: please call (number I didn’t write down and can’t remember, then silence, I waited a few minutes then I hung up and searched the internet to discover why Lloyds were using such an odd method of contacting their customers. They aren’t, this was a phishing call)
A person called Yusuf wants to buy my unnecessary stuff. Yusuf has also offered me a highly paid job and to print my craigslist advertisements. I just need to give him my banking details first. Gosh! I’m so lucky to be offered all these things, thanks Yusuf.
Today I recieved an email from Lloyds TSB Bank in the UK
or did I?!
Luckily for click-happy me there are serveral things that make this an obvious phishing expedition. They are:
- impossibility. I couldn’t verify my log-in details if I’d wanted to, I’ve never had an account with Lloyds, TSB or any merged version of the two.
- impersonal. The email is addressed to ‘dear customer’ rather than a specific name.
- silly website address. All the hyperlinks from the email go to an address that starts http://miriamklemke.com rather than something plausible for LloydsTSB like their actual address, the suprisingly named: http://www.lloydstsb.com/
- a dashed silly unreasonable threat. The letter threatens to terminate my account if I do not verify my details.
Credit to the actual LloydsTSB, it was easy to find an address to report this fraudulent email.
Wikipedia describe Phishing as a Social Engineering technique where “Phishers attempt to fraudulently acquire sensitive information, such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication” the name probably derives from ‘fishing’ “alludes to the use of increasingly sophisticated lures to “fish” for a user’s financial information and passwords“.
Promise me you’ll be careful where you put your credentials….