| Author |
Topic: Scam Or No ? |
John P. Phillips
From:
Folkston, Ga. U.S.A., R.I.P.
|
Posted 21 Jan 2009 9:43 pm |
|
Got this in my email box.
looks official enough but
just feels kinda fishy.
Anyone know anything or have recieved
one like it ?
Flag this messageEmail Warning AlertSunday, January 18, 2009 12:07 PM
From Yahoo Mail Upgrade Sun Jan 18 17:07:40 2009
Return-Path: <sthomas>
Authentication-Results: mta251.mail.re2.yahoo.com from=rrcol.com; domainkeys=neutral (no sig)
Received: from 24.28.200.151 (EHLO rrcs-agw-01.hrndva.rr.com) (24.28.200.151) by mta251.mail.re2.yahoo.com with SMTP; Sun, 18 Jan 2009 09:07:41 -0800
Message-Id: <7h9gbp>
Received: from unknown (HELO rrcs-out.biz.rr.com) ([172.28.200.143]) by rrcs-agw-01b.hrndva.rr.com with SMTP; 18 Jan 2009 12:07:40 -0500
From: Yahoo Mail Upgrade <sthomas> Add sender to Contacts
Reply-To: www.web_account@yahoo.com.hk
Organization: Yahoo Mail Upgrade
To: <webmaster>
Subject: Email Warning Alert
Date: Sun, 18 Jan 2009 12:07:40 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 7bit
Content-Length: 824
Compact Headers
Dear Yahoo Email Account Owner,
This message is from MAIL MANAGEMENT Yahoomail messaging Center to all Yahoomail owners. We are currently Upgrading our data base and e-mail account center to Classic WebMail We are deleting all unused email account to create More space for new accounts.
To prevent your account from closing you will have to update It below so that we will know that it's a present used Account.
CONFIRM YOUR EMAIL IDENTITY BELOW
Email Username:...............
EMAIL Password: ...............
Date of Birth: ................
Alternative Email: ..........
Warning!!! Email Yahoomail account owner that refuses to update his or her Account within Seven days of receiving this warning will Lose his or her account permanently. Thank you for your
Understanding Email account owner Email Management
_________________
Just remember,
You don�t stop playing cause you get older,
You get older cause you stop playing ! http://www.myspace.com/johnpphillips |
|
|
|
Jon Moen
From:
Canada
|
Posted 21 Jan 2009 10:19 pm Scam
|
|
| Any email from anyone that asks for a username and password is a scam. If they are who they say they are, they already have that information. If it is being updated, why would they need to ask for information they already have? |
|
|
|
Wiz Feinberg
From:
Mid-Michigan, USA
|
Posted 21 Jan 2009 11:05 pm
|
|
That is a phishing scam, meant to steal your Yahoo credentials and posibly access to paid premium services you might subscribe to, through Yahoo.
Proof it is a scam is confirmed in the Reply to address, which is in Hong Kong.
Forward that email to abuse@yahoo.com for them to take action or not.
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog |
|
|
|
John P. Phillips
From:
Folkston, Ga. U.S.A., R.I.P.
|
Posted 22 Jan 2009 3:38 am
|
|
Thanks Jon & Wiz, I thought as much.
But I just wanted to be sure
in my own mind.
Forwarded to Yahoo. !!!!!
_________________
Just remember,
You don�t stop playing cause you get older,
You get older cause you stop playing ! http://www.myspace.com/johnpphillips |
|
|
|
Wiz Feinberg
From:
Mid-Michigan, USA
|
Posted 22 Jan 2009 8:02 am
|
|
John;
You did the right thing: asking for expert opinions before taking an unwise action. Phishing scams are devious by design and many people are taken by these cons. Keep up your antennas and remain suspicious of any email you don't expect to receive.\
You can learn more about identifying and reporting suspicious emails in my Sticky topics, at the top of this forum.
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog |
|
|
|
Mitch Drumm
From:
Frostbite Falls, hard by Veronica Lake
|
Posted 22 Jan 2009 12:14 pm
|
|
I count at least 10 grammatical, punctuation, and capitalization errors in the body of the email.
I have always used that as the tipoff. Any outfit with the stature of Yahoo is not going to let something that butchered go out under its name. It hasn't failed me yet. Delete-o-matic. |
|
|
|
John Cipriano
From:
San Francisco
|
Posted 22 Jan 2009 5:27 pm
|
|
Anyone asking for a password from you in an email is trying to steal your account. There are *zero* exceptions to this.
In a way it's like Yahoo doesn't need your key because they have the master key.
Places like Yahoo! don't even store your password. They store a "hashed" version and when you type in your password they hash that too and compare the two strings.
So not only do they not need your password, they don't want it. It's merely a way for *you* to prove to yahoo that you are indeed who you say you are when you ask to use the account. |
|
|
|
