Friday, October 31, 2008


from Wachovia Customer Service


We commit to maintain accurate and up-to-date information on all of our customers. We recognize that your personal and account information is critical to you and, to that end, we follow procedures to reasonably ensure the accuracy of your records.

We inform you that your online banking account is about to expire. It is strongly recommended to update it as soon as possible. You can do it immediately using the link specified:

Continue to account update form >>>

However, failure to confirm your records may result in account suspension.
This message has been generated automatically, please do not reply.

Sincerely, Wachovia Customer Service

spam, Identity Theft, Phishing

Tuesday, October 28, 2008

Report: Yahoo jobs site used in phishing attack

October 27, 2008 3:42 PM PDT
Report: Yahoo jobs site used in phishing attack
Posted by Stephen Shankland

Yahoo's HotJobs site is vulnerable to a phishing-based attack that can give an attacker access to a Yahoo member's mail and other personal accounts, British network service firm Netcraft said Monday, and someone has been taking advantage of it.

In phishing, an attacker sends a bogus e-mail masquerading as a legitimate message from a company, in this case Yahoo HotJobs. Clicking on a link that includes specially formatted JavaScript code can cause the Web site to run a program because of a cross-site scripting vulnerability, Netcraft said.

"The script steals the authentication cookies that are sent for the domain and passes them to a different website in the United States, where the attacker is harvesting stolen authentication details," NetCraft said Monday. "Netcraft has informed Yahoo of the latest attack, although at the time of writing, the HotJobs vulnerability and the attacker's cookie harvesting script are both still present."

I'll update this post once Yahoo gets back to me with any comment.

Update 3:44 p.m. PDT: Yahoo acknowledged the vulnerability but said it's fixed now.

"The team was made aware of this particular cross-site scripting issue yesterday morning (Sunday, October 26) and a fix was deployed within a matter of hours. Yahoo appreciates Netcraft's assistance in identifying this issue," the company said in a statement. "As a safety precaution, we recommend users change their passwords, should they still be concerned. Users should always verify via their Sign-in Seal that they are giving their passwords to"

Yahoo wouldn't comment on how many people might have been affected

CNET Article

Wednesday, October 22, 2008

From Miss Roseline

From: "Roseline Tomle"

El Bethel Church
51 Cocody Crescents.
Cote D Ivoire.

Good day! I am Roseline Tomle the daughter of assassinated Senator Robert Tomle and formerly a medical student of the university of Harare Zimbabwe. Presently I am in Abidjan, capital city of Ivory Coast in West Africa, for the past two months now. My mother was also shot and killed by soldiers at Chiwetu Rest Camp. For more verification here is the web site.

Before the death of my father, he has (4.5 Million USD) four million, five hundred thousand dollars in a fixed deposit account in cote d Ivoire; which I am the next of kin. I humbly need your assistance to help get this money transferred to your account, to serve as my guardian and to make an arrangement for me to come over after the fund is transferred, also to look for a good venture where the money will be invested.

I urgently need you to assist me because when I went to the bank to make some withdrawals to take care of my needs. I was told that my father had an agreement with them that I must be 25 years old before I could be allowed to make use of the money or alternatively I should provide a guardian who can make the claim on my behalf.

If you are willing to help me kindly get back to me. Please do keep this to your self; I am willing to offer you 20% of the total sum as compensation of your effort.

Reply me on:

Remain blessed,

spam, Identity Theft, Phishing

E-mail from Joham Benjamin of Zimbabwe

From: "johambenjamin"

E-mail from Joham Benjamin of Zimbabwe.

The Son of Benjamin Williams from Zimbabwe.


My name is, Mr.Joham Benjamin, i am 20 years old the elder son of Mr.BENJAMIN WILLIAMS of Zimbabwe . This might be a surprise to you about where i got your contact address. I got your address from the Korean Christian association in During the current war against the farmers in Zimbabwe from the supports of our president Robert Mugabe to claim all the white-owned farms to his party members and his followers, he ordered all white farmers to surrender all farms to his party members and his followers.

My father is One of the best farmers in our country and because he did not support Mugabes ideas, Mugabe supporters invaded my fathers farm and burnt everything in the farm, killing my father, my Mum and my sister's and made away with a lot of items in my fathers farm.

Before his death, my father had deposited (US$1.5 MILLION UNITED STATES DOLLARS) with the Finance Company in London, United Kingdom. After the death of my father, i decided to move to London UK where he had deposited the money in the Finance Company as valuables.

So i decided to contact you to help me move this money out of London because as asylum seeker i am not allowed to operate any Bank Account within United Kingdom. I have agreed to offer you 50% of the total sum for your assistance, while 50% will be for me and my family to invest.

All i want you to do is to furnish me with your information such as: personal phone number, office/residential address, age, occupation and fax numbers for easy communication. Contact me via email address Note that this transaction is 100% Risk free and absolutely confidential.

Yours faithfully,

MR: Joham Benjamin

spam, Identity Theft, Phishing


From: "John Teri"

My name is John, I work with the Total Quest Services, a consulting Firm in London, UK. We are conducting a standard process investigation involving a client who shares the same name with you and also the circumstances surrounding investments made by this client at HSBC Bank Plc.

The HSBC Private Banking client died intestate and nominated no next of kin to inherit the title over the investments made with HSBC Bank Plc. The essence of this communication with you is to request that you
provide us information on three issues:

1-Are you aware of any relative/relation having the same surname, whose last known contact address was Madrid, Spain?

2-Are you aware of any investment of considerable value made by such a person at the HSBC Bank Plc.?

3-Can you establish beyond reasonable doubt your eligibility to assume status of next of kin to the deceased?

It is pertinent that you inform us ASAP whether or not you are familiar with this personality that we may put an end to this communication with you and our inquiries surrounding this personality.

You must appreciate that we are constrained from providing you with more detailed information at this point. PLEASE RESPOND BACK TO MY PRIVATE AND DIRECT EMAIL ADDRESS BELOW:


We advice that you reply as soon as possible to afford us the opportunity to close this investigation.

Thank you for accommodating our enquiry.

Yours sincerely,
Mr. John Teri
Total Quest Services
For: HSBC Private Clients.
This is a confidential message from Total Quest Services.

spam, Identity Theft, Phishing


From: "jerlyn ababa"


This is a newly created website like friendster, facebook, myspace and others.

But this site PAYS ITS MEMBERS.
Easy and simple payment plan

Receive $4 for each referral you sign up
Receive $3 for each 2nd level referral
Receive $2 for each 3rd level referral
Plus monthly residual income and more

All you have to do is BUILD UP a network of friends and GET PAID.


You may think it’s another SCAM in the making. But think again, you have the INTERNET ACCESS to verify all of these (, google search, yahoo search, etc…)

But if you don’t want to register, you may FORWARD THIS MESSAGE to your friends who you think may have an INTEREST on these things.

Who would have thought that HAVING FUN building up a network of friends while EARNING EXTRA INCOME is POSSIBLE?

You don’t have to join this instant, you have all the time to THINK,RESEARCH MORE AND DECIDE.

It's your choice



If you only do one thing to better your lifestyle, join this site today and manage your new found wealth! By the way, it's totally free.

To get a better idea of how simple this is and how much money you can earn check out this slide show (

If you have any questions take a quick look at the FAQ's (

pyramid scheme, spam, Phishing, Identity Theft

Hi From Dubai

From: "Frank Hamilton"

Business Proposal.

Got your e-mail on the internet on a search for whom to handle this transaction perfectly with me, I decided to send you this e-mail for my proposal. I am a trained Chemist and a Top official in the Iraq Printing and Minting before the war broke out. I was hired by the late Saddam Hussein and his military officials (team), for the chemical re conversion of US dollar bills that was brought into Iraq under hidden circumstances by powerful Arab Nationals who where out to give financial support to the late Saddam Hussein's war against the USA.

The said dollar bills are presently in the form of BONDED re-tractable negative 156.01 Mint Stage, the US Dollar bills were deliberately defaced by the Military officials to elude detection at airport check points and scanning and facilitate the importation into Iraq.

The Military officials who hired me all died from the effect of the bomb that struck their villa during the war and the protected box containing the total sum of twenty eight Million Dollars (US$28,000,000.00) awaiting re conversion were abandoned in my custody by the late military officials. Saddam Hussein until his death believed that the box was destroyed along side his military top officials. As a result of this, I now have in exclusive control a total sum of Forty one Million Dollars (US$28,000,000.00) in BONDED re-tractable negative.

This transaction is fact none to me alone and as such must be kept confidential just between the both of us. The Forty one Million Dollars (US$28,000,000.00) Bills in Cash defaced, now needs only a chemical reconversion to grade A1 135 Neon Proof Mint Stage so the bills can valid, recognized and used in the money market once chemically processed.

For us to be able to chemically reconvert this bills, first the bills has to be moved out of Iraq through very diplomatic secured means to a near by country where the bills chemical conversion process can be done at ease. I shall give you 35% and 5% shall be kept aside for expenses and I shall have 60%. For us to commence with this transaction, kindly respond to my e-mail notifying me of your interest so I can give you further instructions and procedures about this transaction.

This transaction should be kept confidential at all times because I am presently working with the financial body of Iraq and I would not want the leakage of this information so it does not jeopardize my present work.

My private e-mail is Mr. Frank Hamilton

spam, Phishing, Identity Theft

The ATM Card Value is $6.8 MILLION USD


Your Ref

This is to officially inform you that (ATM Card Number; (4278763100030014)has been accredited with your favor. Your Personal Identification Number is 882. The ATM Card Value is $6.8MILLION USD. You are advice to contact Mrs. Linda Hill via Email( MRS LINDAHILLSSS 0147@YAHOO.COM ) with the following information's.


Senator David Mark

spam, Identity Theft, Phishing

Tuesday, October 7, 2008

Identify Theft and Your Tax Records

U.S.Consulate General Guadalajara - Warden Message: Identify Theft and Your Tax Records

United States Consulate General Guadalajara


Warden Message #02 FY2009

Warden Message: Federal Agency Liaison,

Identify Theft and Your Tax Records

You can receive additional information through Please refer American citizens in your warden system to the information below through your newsletters or websites.

Text of Message:

How can someone steal your identity? Identity theft occurs when someone uses your personal information such as your name, social security number, or other identifying information, without your permission, to commit fraud or other crimes.

-- Identity theft is a serious crime. People whose identities have been stolen can spend months or years - and their hard-earned money - cleaning up the mess thieves have made of their good name and credit record. In the meantime, victims may lose job opportunities, have loans refused, or even get arrested for crimes they didn't commit.

-- Generally, identity thieves use someone's personal data to steal his or her financial accounts and run up charges on the victim's existing credit cards, but the IRS has identified other potential areas where this type of fraud may occur as they relate directly to your tax records.

-- Undocumented workers or other individuals may use your social security number to get a job. That person's employer would report W-2 wages earned using your information to the IRS so it might appear that you did not report all of your income on your return.

-- An identity thief may file a tax return using your social security number to receive a refund or stimulus payment.

-- If the thief already filed a return using your social security number, the IRS will believe that you already filed and received your refund, and the return you just submitted is a second copy or duplicate.

-- If you do receive a notice from the IRS that leads you to believe someone may have used your social security number fraudulently, please notify the IRS immediately by responding to the name and number printed on the notice or letter.

Be alert to possible identity theft if the notice or letter states that:

-- more than one tax return for you was filed, or -- IRS records indicate you received wages from an employer unknown to you.

-- If you receive a notice, contact the IRS either by phone or in writing as directed in that notice. IRS tax examiners will work with you and other agencies, such as the Social Security Administration, to help resolve the problem.

The IRS does not initiate taxpayer communications through e-mail.

-- The IRS does not request detailed personal information through e-mail.

-- The IRS does not send e-mails requesting your PIN numbers, passwords or similar access information for credit cards, banks or other financial accounts.

If you receive an e-mail from someone claiming to be the IRS or directing you to an IRS site,

-- Do not reply.

-- Do not open any attachments. Attachments may contain malicious code that will infect your computer.

-- Do not click on any links.

Phishing is the act of sending an e-mail to a user falsely claiming to be an established, legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft.

If you receive an e-mail or find a website you think is pretending to be the IRS:

-- Forward the e-mail or website URL to the IRS at

-- You can forward the message as received or provide the internet header in the e-mail. The internet header has additional information to help the IRS locate the sender.

-- After you forward the e-mail or header information to the IRS, delete the message.

Minimizing Identity Theft:

Though you can't prevent identity theft entirely, you can minimize your risk. Protect your social security number.

-- Don't carry your social security number (SSN); leave it in a secure place.

-- Only give your SSN when absolutely necessary.

-- Your employer and financial institution may need your SSN for wage and tax reporting purposes. Don't give a business your SSN just because they ask for it. Find out why before giving it out.

-- Ask why your SSN is needed and if other types of identifiers can be used.

. For more information on identity theft and your tax records, please visit, and use the words "Identity Theft" in the search block.

Office of American Citizen Services

U.S. Consulate General Guadalajara

175 Progreso Street; Col. Americana

Guadalajara, Jalisco, Mexico

011 52 33 3268 2100

The Consulate office hours are Monday through Friday from 08:00 a.m. to 04:30 p.m.

(except from Mexican and U.S. holidays).
Identity Theft, Phishing, spam

Support Ticket: Dell Laptop is pending

From: "d"

New Staff Reply: Dell Laptop XPS


We have a Dell XPS Laptop pending your action.

more at


Support List Mtg

The link takes you to a nothing site only wanting personal information

spam, Phishing, Identity Theft

Hurry .. Medications that you need!

From: "Ollie"

Dear Consumer,

We address this letter to you hoping that it will help you select among the variety of online pharmacy stores. As you know there are a lot of different online pharmacies all over the web and you can trust any of those. But we trust professionals only! We did a national research and are pleased to recommend you #1 consumer rated International pharmacy store with guaranteed worldwide delivery and high-quality medications.

We did a national research and are pleased to recommend you #1 consumer rated US pharmacy store with such variety of categories:

Men's Health
Pain Relief
Weight loss

You'll find any high-quality US medication at good price here !

Go visit

spam, spam


Related Posts with Thumbnails
Anyone that would SPAM you could just as well steal your identity. They will surely at least sell your Email to other Spammers

Archivo del blog