Lots of phishing emails "from" Yahoo and Hotmail this week.

Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.
HTH
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

On 30/12/2016 20:50, Shadow wrote:


Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

Sadly, it appears that your computer has been compromised. Sorry about
that. :-(

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.
HTH
[]'s

You are giving incorrect information.

https://en.wikipedia.org/wiki/Multi-...authentication

--
"Do something wonderful, people may imitate it."

On Fri, 30 Dec 2016 20:50:09 -0000, Shadow wrote:



Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

I don't care about anyone stupid enough to fall for those.

--
Before you set out on a journey, ring your local radio station and say there's a terrible congestion on your road. Everybody avoids it and it's clear for you! -- Jack Dee

On Sat, 31 Dec 2016 22:06:02 +0000, "David B."
wrote:

On 30/12/2016 20:50, Shadow wrote:


Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

Sadly, it appears that your computer has been compromised. Sorry about
that. :-(

What a moron. If it had been compromised, they wouldn't need
to send the phishing mail.

OMG !!!!

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

You are giving incorrect information.

https://en.wikipedia.org/wiki/Multi-...authentication

Try using your brain. When you are sober.
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

On Sat, 31 Dec 2016 22:23:36 -0000, "James Wilkinson Sword"
wrote:

On Fri, 30 Dec 2016 20:50:09 -0000, Shadow wrote:



Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

I don't care about anyone stupid enough to fall for those.

Some of them are almost perfect, from the faked header to the
long link with a redirect so far to the right it does not appear on
the screen when you hover over it. You only see the "yahoo"or
"live.com" followed by the usual (expected) string of datamining.
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

On Sun, 01 Jan 2017 02:55:10 -0000, Shadow wrote:

On Sat, 31 Dec 2016 22:23:36 -0000, "James Wilkinson Sword"
wrote:

On Fri, 30 Dec 2016 20:50:09 -0000, Shadow wrote:



Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

I don't care about anyone stupid enough to fall for those.

Some of them are almost perfect, from the faked header to the
long link with a redirect so far to the right it does not appear on
the screen when you hover over it. You only see the "yahoo"or
"live.com" followed by the usual (expected) string of datamining.
[]'s

I've never seen one that even made me look twice. Spelling and grammatical errors everywhere, bad alignment, wrong server used on all the links, blatantly obvious.

--
There is no such thing as a law abiding motorist, just those who have been scammed and those yet to be scammed!

Per James Wilkinson Sword:
I've never seen one that even made me look twice. Spelling and grammatical errors everywhere, bad alignment, wrong server used on all the links, blatantly obvious.

One idea I have heard is that:

- Sending spam email is essentially cost-free, so you send
lots of the stuff.

- The overhead starts kicking in when the scam's followup involves
people contacting the target.

- They want to minimize the number of contacts with people above a
certain intelligence/sophistication level because they tend to
be unproductive ("False Positives") - yet eat up resources.

- Consequently they craft the email so that anybody with half a brain
will ignore it and the people left - who respond - are the easiest
of targets.

There is an interesting thread on this subject in Quora:
https://www.quora.com/Why-are-email-...broken-English

Microsoft has a white paper on this subject:
http://tinyurl.com/hem9h9j
https://www.microsoft.com/en-us/rese...-from-nigeria/

I didn't download the entire PDF - just read the abstract... but it
seems to be consistent with other comments.
--
Pete Cresswell

On 12/30/16 12:50, Shadow so wittily quipped:
Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

don't be like a DEMOCRAT and give them your password (or any OTHER such
information), nor use "password" as a password...

[yeah the so-called 'smart people' that want to run my life, falling for
a phishing scam any 14-year-old could've managed, and using "password"
as a password - HA HA HA HA HA HA HA]

OK I couldn't resist making THOSE comments!

--
your story is so touching, but it sounds just like a lie
"Straighten up and fly right"

On 01/01/17 17:10, (PeteCresswell) so wittily quipped:
Per James Wilkinson Sword:
I've never seen one that even made me look twice. Spelling and grammatical errors everywhere, bad alignment, wrong server used on all the links, blatantly obvious.

One idea I have heard is that:

- Sending spam email is essentially cost-free, so you send
lots of the stuff.

- The overhead starts kicking in when the scam's followup involves
people contacting the target.

- They want to minimize the number of contacts with people above a
certain intelligence/sophistication level because they tend to
be unproductive ("False Positives") - yet eat up resources.

- Consequently they craft the email so that anybody with half a brain
will ignore it and the people left - who respond - are the easiest
of targets.

There is an interesting thread on this subject in Quora:
https://www.quora.com/Why-are-email-...broken-English

Microsoft has a white paper on this subject:
http://tinyurl.com/hem9h9j
https://www.microsoft.com/en-us/rese...-from-nigeria/

I didn't download the entire PDF - just read the abstract... but it
seems to be consistent with other comments.


how about this: http://www.419eater.com/

--
your story is so touching, but it sounds just like a lie
"Straighten up and fly right"

Per Big Bad Bob:

how about this: http://www.419eater.com/

Warms my heart....
--
Pete Cresswell

On 01/01/2017 02:48, Shadow wrote:
On Sat, 31 Dec 2016 22:06:02 +0000, "David B."
wrote:

On 30/12/2016 20:50, Shadow wrote:


Telling me to change my password, and use two factor security, "for my
safety". Apparently I can send a hash of my fingerprints, my cell
phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect to a
site in Bosnia, and the Microsoft emails to a rent-an-IP company in
Brazil.

Sadly, it appears that your computer has been compromised. Sorry about
that. :-(

What a moron. If it had been compromised, they wouldn't need
to send the phishing mail.

OMG !!!!

What a load of crap you spout! SAD. :-(

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a STRONG
password.

*You are giving INCORRECT information*.

https://en.wikipedia.org/wiki/Multi-...authentication

Try using your brain. When you are sober.
[]'s

Think you’re already immune? Think again. Scams evolve every day. Even
the most savvy among us can fall victim to a scam if we’re not aware of
the danger. Scammers are learning how to be better scammers – you can
learn how to keep yourself safe.

AntiFraudNews.com presents articles about internet fraud to help you
learn about the classic scams, the new trends in scams, the places on
the internet where you can get help and information, and what part you
can do to help combat this type of fraud.

http://www.antifraudnews.com/

--
"Do something wonderful, people may imitate it."

On Tue, 10 Jan 2017 23:44:22 +0000, David B. wrote in message:
:

Scams evolve every day. Even the most savvy among us can
fall victim to a scam if we're not aware of the danger.

Bait the hook well: this fish will bite.
--William Shakespeare (1564-1616)
_Much Ado About Nothing_ [1598-1600]; Act 2, Scene 3, Line 121

"David B."
Sat, 31 Dec 2016 22:06:02 GMT
in alt.privacy.spyware, wrote:

On 30/12/2016 20:50, Shadow wrote:


Telling me to change my password, and use two factor security,
"for my safety". Apparently I can send a hash of my fingerprints,
my cell phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect
to a site in Bosnia, and the Microsoft emails to a rent-an-IP
company in Brazil.

Sadly, it appears that your computer has been compromised. Sorry
about that. :-(

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a
STRONG password.
HTH
[]'s

You are giving incorrect information.

https://en.wikipedia.org/wiki/Multi-...authentication

Security

According to proponents, multi-factor authentication could
drastically reduce the incidence of online identity theft and other
online fraud, because the victim's password would no longer be enough
to give a thief permanent access to their information. However, many
multi-factor authentication approaches remain vulnerable to phishing,
[21] man-in-the-browser, and man-in-the-middle attacks.[22]

Multi-factor authentication may be ineffective against modern
threats, like ATM skimming, phishing, and malware.[23]

Next time, dip****, read the contents of the url before you share it
with us. Might change your mind about writing the nonsense you did...





--
Sarcasm, because beating the living **** out of deserving people is
illegal.

On 15/01/2017 02:19, Diesel wrote:
"David B."
Sat, 31 Dec 2016 22:06:02 GMT
in alt.privacy.spyware, wrote:

On 30/12/2016 20:50, Shadow wrote:


Telling me to change my password, and use two factor security,
"for my safety". Apparently I can send a hash of my fingerprints,
my cell phone number or my social security details.

The headers appear to be authentic, but the Yahoo emails redirect
to a site in Bosnia, and the Microsoft emails to a rent-an-IP
company in Brazil.

Sadly, it appears that your computer has been compromised. Sorry
about that. :-(

No serious company would ever demand you use two factor
authentication. It's two vulnerabilities to exploit. Just use a
STRONG password.
HTH
[]'s

You are giving incorrect information.

https://en.wikipedia.org/wiki/Multi-...authentication

Security

According to proponents, multi-factor authentication could
drastically reduce the incidence of online identity theft and other
online fraud, because the victim's password would no longer be enough
to give a thief permanent access to their information. However, many
multi-factor authentication approaches remain vulnerable to phishing,
[21] man-in-the-browser, and man-in-the-middle attacks.[22]

Multi-factor authentication may be ineffective against modern
threats, like ATM skimming, phishing, and malware.[23]

Next time, dip****, read the contents of the url before you share it
with us. Might change your mind about writing the nonsense you did...

Dustin

Thank you for your reply. I'd like to apologize to you for this prime
example of me teasing Shadow. Another one of my 'tongue-in-cheek
comments. Truly!

It appears that 'RoadRunnerLA' identified that this was a troll post by
me, something which I shouldn't really do. He's obviously a very well
educated guy (or gal!).

See line 108, he- http://shakespeare-navigators.com/ado/AdoText23.html

FWIW I've been using 'Two-factor authentication' for many years, most
notably with Google and Apple. Sometimes a nuisance when I can't
remember where I left my mobile phone! :-)

--
"Do something wonderful, people may imitate it."

On 11/01/2017 15:15, RoadRunnerLA wrote:
On Tue, 10 Jan 2017 23:44:22 +0000, David B. wrote in message:
:

Scams evolve every day. Even the most savvy among us can
fall victim to a scam if we're not aware of the danger.

Bait the hook well: this fish will bite.
--William Shakespeare (1564-1616)
_Much Ado About Nothing_ [1598-1600]; Act 2, Scene 3, Line 121

Kudos - Bravo Zulu! :-)

Please join my group - alt.computer.workshop

--
"Do something wonderful, people may imitate it."