10 replies to this topic

[mudmanc4]

This morning I received an email stating there was a package for that was undeliverable blah, with a .zip attached that stated it was an invoice,, the .zip contains an .exe , I will assume the worst on this.


Just pay attention please.

Quote

Dear customer!

The courier company was not able to deliver your parcel by your address.
Cause: Error in shipping address.

You may pickup the parcel at our post office personaly!

Please attention!
The shipping label is attached to this e-mail.
Please print this label to get this package at our post office.


Please do not reply to this e-mail, it is an unmonitored mailbox.



Thank you.
United Parcel Service.

[tommie gorman]

They are full of bullshit. The label would not be required. Just ID. Big hoax.

And by the way UPS is the brown guys. the local postal service is USPS. United States Postal Service. For those that did not know. Like muddy said, do not open it.

[zalternate]

http://www.snopes.co...r/virus/ups.asp
But people love to open attachments.  My systems don't allow some files to automatically open. It asks me what to do. Same goes for PDF's. But I use FoxIt Reader, instead of Adobe's hole ridden piece of S#!t.


Actually if you want the latest rage in virus's, there is a massive infection spam bot that signs up as Adminlady(or a combination of)and via the PM's, says there is an infection and click the link, to go to a site to clean the infection. And then you get infected for real. 
"A virus alert was noticed on your computer. We highly recommend you to check your computer and perform online virus check at our site immediately: "
People see the Admin part and don't check to see if it's a real Admin or Mod. But Mods can see user agents to see if you are infected with the usual scummy Internet Explorer add-ons, and may notify you of that.


And once again, Don't use Internet Explorer. Another Massive hole again. The companies that were hacked by China are not very happy about it.

[mudmanc4]

So I got around to doing a scan, remember I am using a mac for this, anyhow , the file contained is a trojan downloader called "bredolab-1407"

[tdawnaz]

oh and btw...both usps and ups both know how to spell and use proper english...which that email sent to muddy was neither spelling or grammar checked...

[pixiepistlz]

Yeah, I ordered some stuff from Amazon and knew ahead of time that all items were shipped . BUT in my email a few days later, I got a message saying that the order would be cancelled if I didnt give them a proper means of paying. That is wasn't on file or some crap. I deleated it. I wish I would have saved it. It looked legit from the company, but like I said, I KNEW all was A-OK with my orders. Got me pissed just the same tho and I got all my stuff too. GRRRRR

[tommie gorman]

Quote

Yeah, I ordered some stuff from Amazon and knew ahead of time that all items were shipped . BUT in my email a few days later, I got a message saying that the order would be cancelled if I didnt give them a proper means of paying. That is wasn't on file or some crap. I deleated it. I wish I would have saved it. It looked legit from the company, but like I said, I KNEW all was A-OK with my orders. Got me pissed just the same tho and I got all my stuff too. GRRRRR

Thats cause your special. 

[zalternate]

Quote

Yeah, I ordered some stuff from Amazon and knew ahead of time that all items were shipped . BUT in my email a few days later, I got a message saying that the order would be cancelled if I didnt give them a proper means of paying. That is wasn't on file or some crap. I deleated it. I wish I would have saved it. It looked legit from the company, but like I said, I KNEW all was A-OK with my orders. Got me pissed just the same tho and I got all my stuff too. GRRRRR

Like this?

Dear  ,

Greetings from Amazon Payments.Your bank has contacted us regarding some attempts of charges from your credit card via the Amazon system. We have reasons to believe that you changed your registration information or that someone else has unauthorized access to your Amazon account Due to recent activity,including possible unauthorized listings placed on your account, we will require a second confirmation of your identity with us in order to allow us to investigate this matter further. Your account is not suspended, but if in 48 hours after you receive this message your account is not confirmed we reserve the right to suspend your Amazon registration. If you received this notice and you are not the authorized account holder, please be aware that it is in violation of Amazon policy to represent oneself as another Amazon user. Such action may also be in violation of local, national, and/or international law.Amazon is committed to assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft.
Information will be provided at the request of law enforcement agencies to ensure that perpetrators are prosecuted to the full extent of the law.To confirm your identity with us click here:
After responding to the message, we ask that you allow at least 72hours for the case to be investigated. Emailing us before that time will result in delays. We apologize in advance for any inconvenience this may cause you and we would like to thank you for your cooperation as we review this matter.
Thank you for your interest in selling at Amazon.com.Amazon.com Customer Service
This message and any files or documents attached may contain classified information. It is intended only for the individual or entity named and others authorized to receive it. If you are not the intended recipientor authorized to receive it, you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this information is strictly prohibited and may be unlawful. If you have received this communication in error, please notify us immediately then delete it from your system. Please also note that transmission cannot be guaranteed to be secure or error-free.

[pixiepistlz]

It takes me to Amazons website? I was afraid to open the link, but curiosity got the best of me. Has it got that good.? I checked all my order numbers and none had that number at all.

I didn't delete it afterall and found it right away. 

[zalternate]

Quote

It takes me to Amazons website? I was afraid to open the link, but curiosity got the best of me. Has it got that good.? I checked all my order numbers and none had that number at all.

I didn't delete it after all and found it right away. 

If it's a fake email, when you hover over the website link in the email, it may show a IP address with amazon.com at the start.    amazon.com.ipaddress   .  That would be a fake site.  I've seen a fake PayPal one like it.
Sometimes one link is to the proper site and the second link,(the secure link) is to the scammer's site.
The text will look like the proper word address, but the hyperlink may be something different.

I have the extension of 'showIP' in firefox, so a quick 'whois' and verification, when visiting a website.   


Found the email from someone who forwarded it to me. I removed half of the IP.

[zalternate]

I forgot to mention in the example that the IP numbers at the start take you to a Bot's site and then after the backslash(before what looks like the Ebay address domain), is a page on the Bot' site.