cancel
Showing results for 
Search instead for 
Did you mean: 

Scary Email Scams...

Associate Professor

Re: Scary Email Scams...

"They have nothing else on you - no video, no nothing."

 

OR DO THEY??????? MUAHAHAHAHHAHAHA!

Associate Professor

Re: Scary Email Scams...

That's good advice.  Let these people make a good clever effort, at least.

 


@GabeU wrote:

 

I imagine if they really want to get you, there are ways....


True, but one doesn't want to make it too easy for them.  Ya gotta make them at least work for it.  Smiley Tongue  


 

Senior Instructor

Re: Scary Email Scams...


@maratsade wrote:

-Turn off [and/or cover] any web cameras when you are not using them.


Funny thing is that because we're behind a double NAT (the same reason why XBox Live doesn't work right) I doubt they could access our cameras if they wanted to... There is a silver lining here.


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.
Distinguished Professor II

Re: Scary Email Scams...


@MarkJFine wrote:

 

But, if you have the headers you can look at the first "received from" line, reverse lookup the IP and figure out what the last server was used to send it to you (anything past that in the headers is likely forged). You might want to forward to their abuse/legal team and hint at possibly prosecuting the illicit activity. That's what I did with Microsoft - they'll sit up and take notice of that.

 

My advice is to send it to the abuse/legal team of the server that sent it last as well as possibly the FBI via the link that's earlier in the thread. I would also definitely change any passwords - especially the one stated in the email. 


The only thing I could figure out to do in order to see anything more than the sender email address is to "View Message Source", and it shows a huge amount of info, all of which is foreign to me.  I don't know what it is I'm supposed to be looking for or seeing.  


AMD FX-6100 | Samsung 250GB 840 EVO SSD | Western Digital Blue 500GB HDD | 16GB DDR3-1866 | EVGA Geforce GTX 550ti | Windows 10 Pro 64-bit
Associate Professor

Re: Scary Email Scams...

"However, I would not do anything to engage these people in any way, not even jokingly, because you validate youe existence and you don't know what they'll do as a response."

 

@MarkJFine, donkeys ago there was a guy in the UK who actually engaged with scammers and tried to scam them back.  He kept a hilarious website with email exchanges. 

 

I agree with you, though, and think it's best left to the law to deal with these people. 

Associate Professor

Re: Scary Email Scams...

There's all kinds of info in the message source, but one thing you see (I haven't looked at a message source in a long time, but I imagine they haven't changed much) is where the email comes from (gmail, for instance).  Sometimes there are IP addresses there too.  Most of the rest makes no sense to me, but I'll be happy to send it to the Feds. 

 


@GabeU wrote:

 


The only thing I could figure out to do in order to see anything more than the sender email address is to "View Message Source", and it shows a huge amount of info, all of which is foreign to me.  I don't know what it is I'm supposed to be looking for or seeing.  


 

Senior Instructor

Re: Scary Email Scams...


@maratsade wrote:
I agree with you, though, and think it's best left to the law to deal with these people. 

Yup. Not worth the effort nor the risk. You know what they say about playing with fire.

Best to play invisible with these guys. That way they don't know that you exist, nor what you're doing.


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.
Distinguished Professor II

Re: Scary Email Scams...

@MarkJFine

 

Is this it?  This is in the message source info.  

 

Capture1.JPG


AMD FX-6100 | Samsung 250GB 840 EVO SSD | Western Digital Blue 500GB HDD | 16GB DDR3-1866 | EVGA Geforce GTX 550ti | Windows 10 Pro 64-bit
Senior Instructor

Re: Scary Email Scams...

The trick is to always look for the first "Received From" then there will be an IP in square brakets. That is the IP of the server that HELO'd your email server before it sent it. Everything else can be forged, including the servername that's supposed to be associated with the IP. Not likely the IP itself was was forged during a HELO handshake.

 

Edit: Looks like this:
Received: from APC01-SG2-obe.outbound.protection.outlook.com (mail-sg2apc01hn0245.outbound.protection.outlook.com [104.47.125.245])


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.
Distinguished Professor II

Re: Scary Email Scams...

@MarkJFine

@maratsade

 

I sent PMs to you two that included a picture of the info I think I'm supposed to be looking at.  I didn't want to post it in public for the reason given in the PMs.  


AMD FX-6100 | Samsung 250GB 840 EVO SSD | Western Digital Blue 500GB HDD | 16GB DDR3-1866 | EVGA Geforce GTX 550ti | Windows 10 Pro 64-bit