Bogus Email- Need help to do detective work
Cowles, Steve
steve at stevecowles.com
Sun Mar 28 15:32:28 UTC 2004
jim tate wrote:
> I have been recieveing Bogus email's to sign onto to my bank account, so
> someone can get my userid and password.
So have I. Plus include bogus e-mails claiming to be AMEX, Home Depot,
PayPal, etc...
> My Bank say's these are bogus email's and not to respond to them.
Listen to them. They are correct.
> I have been recieveing them in Mozilla mail.
Shouldn't matter what MUA you are using.
> How can I tell where these email will return to , should I reply or
> respond to info requested.
I wouldn't reply. It's probably forged anyway.
> There has got to be a way to back track.
Check the e-mail headers and find the open relay that sent these e-mails.
Then report this open relay to the ISP that owns the netblock. Good luck! A
lot of these so called open relay IP addresses are the "throw away" variety.
Used only once.
Also, check the html code of the e-mail. Most reference images from your
bank's website, but contain a redirect to some web server that actually
captures your information. Again, try to report this website to the owning
ISP.
> I hope I can get the linux community help me to track down
> the low life crooks.
It's easy to track down and report where these e-mails came from. The hard
part is getting the owning ISP to do anything about it. ISP's probably
receive hundreds (if not thousands) of these complaints a day.
BTW: I phoned up my grandmother and educated her on this new breed of spam
(identity theft).
Steve Cowles
More information about the fedora-list
mailing list