Top

The email phishing scam that relies on your stupidity

Rights, Scams and Politics

25 August 2012 | 21 Comments

An email arrives, supposedly from a friend or colleague. Even though there are clear signs that it is a scam, many of us still fall for it.

Scams do not only dupe the naive and the daft. Really clever people also fall for the most obvious online scams, handing over the keys to their email, and sometimes just about everything else.

I don't know whether to laugh or cry.

Should I have a good giggle because, despite warning after warning, highly intelligent people still fall for dangerous nonsense? Or should I have a good weep because those self same people don't read the warnings – or that they are not as clever as their pay grade might imply? I don't know.

But I do know that swindlers always live in hope of someone falling into their traps. Remember fraud victims have to play their own part in handing over their cash - this is not a case of bad people in balaclavas brandishing baseball bats.

The philosopher's email

Last week I received an email entitled (in capital letters) FOR TONY.

Who was this from?  None other than Alain de Botton. Zurich born de Botton, educated at Harrow and Cambridge, is a famous thinker. He wrote “The Consolations of Philosophy” and “The Architecture of Happiness” among many others. So why is he writing to me?

Of course – and this is bad for my self-esteem – he wasn't. It wasn't Alain de Botton, but a scamster stealing his name. Now, don't do this at home, but I opened the obviously dodgy email to find a link (since shut down) to a money generator site where, apparently, I can earn $4,386 a month with just two hours' work and no previous experience. Now what did someone say about if it looks too good to be true?

It is easy to set up an email and create a false identity.  I think this is sort of funny – maybe even a philosopher would smile.

Receiving emails from 'friends'

Now for one which made me angry.  Two intelligent, very highly paid men who work for an information website with their own IT department.

I know them – I've done a bit of work for them. So getting an email was not a surprise.  Even the heading “Important Document” might have been true.

When I opened it. It said: "Please view the document i uploaded for you using Google docs. Click here (I've removed the hyperlink) just sign in with your email to view the document its very important.

"Thank you."

Pete, the supposed sender of the email, is very literate. This letter was not. The hyperlink led to a number of email logos, including Hotmail, Gmail and YahooMail as well as that of a property company I had never heard of. It then said: "To access our online secured auction page, you are required to choose your email address below."

Now this is the amazing bit. Pete (although he denies this) had followed the instructions when he received the same email from elsewhere, clicked on his email provider and then filled in the pop-up form which required both email address and password.

The scamster now has not only the email address of someone susceptible to revealing details to a company they have never heard of (which turned out to be an innocent company in Latin America whose logo has been hi-jacked) but also the password for that email account.

Now the fraudster has the keys to everything - not just contacts, but all the emails received and sent. It does not matter how fast you change your password, they've already copied the contents. They will go through all of your mail to find something which can be turned into cash – or even material for blackmailing purposes.

Failing to learn their lesson

Now, everyone on Pete's list has this email including his colleague, Colin, who is even more computer-savvy. Despite knowing about it from Pete, he still sent off his password. As a result I get the email again. Colin was red-faced when friends asked him about this.

Neither man can explain their stupidity. Both had to send their computers for deep malware cleansing and both have had to change every single password they have. But this was not about viruses. It is all about crooks grabbing personal information.

What I don't know is how many others who received this email also followed these two and gave their passwords. With easy pickings like this, who needs to trade drugs or money launder?

More on scams:

Get ready for a rise in crowd-funding scams

Telephone Preference Service is failing to cut out cold calls

The 'get rich from your sofa' scam

The scam that makes you feel special

Most Recent

How The Big Bang Theory made its cast millions
The 4 'sneaky' tax traps affecting millions of Brits
7 tips to boost your chances of winning BIG in the lottery
prev next

Comments

  • 09 December 2012

    My wife had an email purporting to be from FED-EX. It stated that a parcel was at the local Post Office awaiting collection. It suggested she click on the box which I recall was to obtain proof of posting. I did this and immediately got a message that the computer was in need of a new form of protection and wanted me to pay money to get it fixed. I should have known better especially as the mail was in her Junk Mail file!!. The system was completely frozen. After prolonged attempts, I managed to reset the system to an earlier date. It's been OK since. At this time of year my wife does quite a bit of online shopping so a parcel delivery was far from unusual. I did think it strange, however, that it concerned FED-EX as we have never had parcels delivered by them Another give away was that there were some basic grammatical and spelling errors in the email. I SHOULD HAVE KNOWN BETTER!!!!!!!

    REPORT This comment has been reported.
    0

  • 20 October 2012

    I should know better having been an Internet user since there was something to use. I sent off for a cosmetic sample to a company called Derma Pure. I didn't read the T&C properly and thought I had 30 days to cancel when in fact I had just 17. The sample did not arrive, my UK debit card was charged for $89.99 (just over £57.00) and the full size sample didn't arrive either. Attempts to contact the company are futile. They have an address in Cyprus and a customer care line on a 'toll free' US number that costs an arm and a leg to call from here. The phone is supposed to be 24/7 but is never answered. They don't respond to emails. I went to my bank and asked to cancel the payment which would have otherwise been monthly - they have limited powers to do this, even if I changed my card! If the company try to take money again, I can reclaim it immediately but that is just looking at months of hassle. I can apparently call a fraud line but no guarantees I will get my money back. I now doubt that even if I HAD cancelled in time, that the message would have got through and my bank account would be safe from these scammers. I feel an idiot, really I should have seen through this.

    REPORT This comment has been reported.
    0

  • 28 September 2012

    A friend of mine's email account was hacked into and I received a message saying he had been mugged on holiday and asking for money to help him out. On asking how much I received details of an address in Spain and the request for money to be sent via Western Union. The amount quoted was 1000 euros for a flight and hotel bills ---- it was very convincing but the help described as offered by the embassy (flight home without passport as it was stolen) didn't add up and anyway I didn't have 1000 euros! Also no phone number given and he was the sort who certainly would have had travel insurance, had other closer friends than I and parents with whom he was on good terms as well as good co-operation from credit card providers. The slight differences in the language used could easily resulted from the trauma of a mugging ........ but the urgency of really needing to get next available flight was also out of character. One to watch out for!!!

    REPORT This comment has been reported.
    0

Do you want to comment on this article? You need to be signed in for this feature

Most Popular

Copyright © lovemoney.com All rights reserved.

 

loveMONEY.com Financial Services Limited is authorised and regulated by the Financial Conduct Authority (FCA) with Firm Reference Number (FRN): 479153.


loveMONEY.com is a company registered in England & Wales (Company Number: 7406028) with its registered address at First Floor Ridgeland House, 15 Carfax, Horsham, West Sussex, RH12 1DY, United Kingdom.


loveMONEY.com Limited operates under the trading name of loveMONEY.com Financial Services Limited.


We operate as a credit broker for consumer credit and do not lend directly.


Our company maintains relationships with various affiliates and lenders, which we may promote within our editorial content in emails and on featured partner pages through affiliate links. Please note, that we may receive commission payments from some of the product and service providers featured on our website. In line with Consumer Duty regulations, we assess our partners to ensure they offer fair value, are transparent, and cater to the needs of all customers, including vulnerable groups. We continuously review our practices to ensure compliance with these standards.


While we make every effort to ensure the accuracy and currency of our editorial content, users should independently verify information with their chosen product or service provider. This can be done by reviewing the product landing page information and the terms and conditions associated with the product. If you are uncertain whether a product is suitable, we strongly recommend seeking advice from a regulated independent financial advisor before applying for the products.