Go Back   Wireless and Wifi Forums > Cellular Communications > US Networks > alt.cellular.verizon
Register FAQ Forum Rules Members List Calendar Search Today's Posts Advertise Mark Forums Read

 
Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 11-13-2009, 07:55 PM
Claude S. Sutton, Jr
Guest
 
Posts: n/a
Default Is It a Scam?

I received an email from this address, and I include some of the headers for you
information, that appears to be legitimate, except that I have on my desk an
invoice for this month, not due until the 29th of November, and it shows exactly
the same balance as my accounting shows, which is that I owe nothing from past
months and that the only charges on my bill are the same as they have been for
several years. I have one of those accounts where I purchase so many minutes a
month, so it is always the same.

This email also included a "balance checker" which is a zip file. That of
course raised suspicions.

So finally I weakened and pulled it up and it turned out to be an .exe file.

Obviously there is no way I would allow the file to execute. I zapped the
entire message.

If anyone knows more about this, OK, but for me I will never allow any .zip file
to execute on my machine from a source that I have not gone to on my own.

If it is Verizon, they are stupid. No wonder they have tech problems.

Anyway, here are parts of the headers:

for <claudesutton@suttonmachine.com>; Fri, 13 Nov
0|2009 12:33:44 -0500
293| (EST)
0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
2|2009 23:03:05 +0530
1471|From: Verizon Wireless <noreply@verizonwireless.com>
2(2)|To: claudesutton@suttonmachine.com
0|Subject: Your credit balance is over its limit
773|Date: Fri, 13 Nov 2009 23:03:05 +0530
|Message-ID: <000d01ca6487$5bf84400$6400a8c0@bigheartedcf49>
|MIME-Version: 1.0
|Con

Remember: This looks legit but bottom line is that it is totally false and
included a .zip that was executable.

CSSJR
--
Protect your privacy. Replace Google with IXQUICK at www.ixquick.com.


If we do not wish to lose our freedom, we must learn to tolerate our
neighbor's right to freedom even though he might express that freedom
in a manner we consider to be eccentric.


Reply With Quote
  #2 (permalink)  
Old 11-13-2009, 08:15 PM
The Ghost of General Lee
Guest
 
Posts: n/a
Default Re: Is It a Scam?

On Fri, 13 Nov 2009 20:55:36 +0000 (UTC), "Claude S. Sutton, Jr"
<cssutto@suttonmachine.com> wrote:

> 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
> 2|2009 23:03:05 +0530


There's your red flag right there. Received by a German domain from
an Indian IP address. You were right not to trust it.

Reply With Quote
  #3 (permalink)  
Old 11-13-2009, 10:31 PM
Claude S. Sutton, Jr
Guest
 
Posts: n/a
Default Re: Is It a Scam?

On 2009-11-13, The Ghost of General Lee <ghost@general.lee> wrote:
> On Fri, 13 Nov 2009 20:55:36 +0000 (UTC), "Claude S. Sutton, Jr"
><cssutto@suttonmachine.com> wrote:
>
>> 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
>> 2|2009 23:03:05 +0530

>
> There's your red flag right there. Received by a German domain from
> an Indian IP address. You were right not to trust it.



Thank you.

I had a very bad day today so I did not have enough time to dig through the
headers to see which was what.

Thanks again.

CSSJR


--
Protect your privacy. Replace Google with IXQUICK at www.ixquick.com.


If we do not wish to lose our freedom, we must learn to tolerate our
neighbor's right to freedom even though he might express that freedom
in a manner we consider to be eccentric.


Reply With Quote
  #4 (permalink)  
Old 11-13-2009, 11:34 PM
Carl
Guest
 
Posts: n/a
Default Re: Is It a Scam?

Claude S. Sutton, Jr wrote:
> On 2009-11-13, The Ghost of General Lee <ghost@general.lee> wrote:
>> On Fri, 13 Nov 2009 20:55:36 +0000 (UTC), "Claude S. Sutton, Jr"
>> <cssutto@suttonmachine.com> wrote:
>>
>>> 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13
>>> Nov 2|2009 23:03:05 +0530

>>
>> There's your red flag right there. Received by a German domain from
>> an Indian IP address. You were right not to trust it.

>
>
> Thank you.
>
> I had a very bad day today so I did not have enough time to dig
> through the headers to see which was what.
>
> Thanks again.
>
> CSSJR
>

Actually, imho, you shouldn't even bother to check headers with this type of
email, of which I get some periodically myself. To the best of my knowledge,
no legitimate company contacts its customers in this way regarding their
accounts. They are always phishing emails.



Reply With Quote
  #5 (permalink)  
Old 11-14-2009, 12:42 AM
Larry
Guest
 
Posts: n/a
Default Re: Is It a Scam?

"Claude S. Sutton, Jr" <cssutto@suttonmachine.com> wrote in news:hdkh48$vhg
$1@aioe.org:

> 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
>


It's from GERMANY.....DO NOT OPEN THE VIRUS!

Verizon would never send you something like this.....

Do forward this to abuse@verizon.com with this IP address above....


--
Larry


Reply With Quote
  #6 (permalink)  
Old 11-14-2009, 12:56 AM
Steve Sobol
Guest
 
Posts: n/a
Default Re: Is It a Scam?

In article <Xns9CC2D29EC6F63noonehomecom@74.209.131.13>, noone@home.com
says...
>
> "Claude S. Sutton, Jr" <cssutto@suttonmachine.com> wrote in news:hdkh48$vhg
> $1@aioe.org:
>
> > 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
> >

>
> It's from GERMANY.....DO NOT OPEN THE VIRUS!
>
> Verizon would never send you something like this.....
>
> Do forward this to abuse@verizon.com with this IP address above....


Do NOT forward this to abuse@verizon.com as it was definitively proven
that IT DID NOT COME FROM VERIZON.

--
Steve Sobol, Victorville, California, USA
sjsobol@JustThe.net

Reply With Quote
  #7 (permalink)  
Old 11-14-2009, 01:12 AM
Claude S. Sutton, Jr
Guest
 
Posts: n/a
Default Re: Is It a Scam?

On 2009-11-14, Carl <crothman@NOSPAMoptonline.net> wrote:
> Claude S. Sutton, Jr wrote:
>> On 2009-11-13, The Ghost of General Lee <ghost@general.lee> wrote:
>>> On Fri, 13 Nov 2009 20:55:36 +0000 (UTC), "Claude S. Sutton, Jr"
>>> <cssutto@suttonmachine.com> wrote:
>>>
>>>> 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13
>>>> Nov 2|2009 23:03:05 +0530
>>>
>>> There's your red flag right there. Received by a German domain from
>>> an Indian IP address. You were right not to trust it.

>>
>>
>> Thank you.
>>
>> I had a very bad day today so I did not have enough time to dig
>> through the headers to see which was what.
>>
>> Thanks again.
>>
>> CSSJR
>>

> Actually, imho, you shouldn't even bother to check headers with this type of
> email, of which I get some periodically myself. To the best of my knowledge,
> no legitimate company contacts its customers in this way regarding their
> accounts. They are always phishing emails.
>
>


I get something like 700 spam emails a week.

I see plenty of phishing. This was the best that I have seen.

The Bank of America phishing is so transparent that it is a joke.

Most of the others are, but this one was slick because the transition between
old Alltel accounts and Verizon has had its rough spots.

Also, I am not always careful with my paper work. I have been known to lose
bills and not find them for weeks.

And there are a lot more like me; people who travel, who have more than one
residence, who try to do too many things at one time.....so reference to a
misplaced or unpaid bill is going to catch a lot of people.

Anyway, you are right.

CSSJR
--
Protect your privacy. Replace Google with IXQUICK at www.ixquick.com.


If we do not wish to lose our freedom, we must learn to tolerate our
neighbor's right to freedom even though he might express that freedom
in a manner we consider to be eccentric.


Reply With Quote
  #8 (permalink)  
Old 11-14-2009, 01:16 AM
Claude S. Sutton, Jr
Guest
 
Posts: n/a
Default Re: Is It a Scam?

On 2009-11-14, Steve Sobol <sjsobol@JustThe.net> wrote:
> In article <Xns9CC2D29EC6F63noonehomecom@74.209.131.13>, noone@home.com
> says...
>>
>> "Claude S. Sutton, Jr" <cssutto@suttonmachine.com> wrote in news:hdkh48$vhg
>> $1@aioe.org:
>>
>> > 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
>> >

>>
>> It's from GERMANY.....DO NOT OPEN THE VIRUS!
>>
>> Verizon would never send you something like this.....
>>
>> Do forward this to abuse@verizon.com with this IP address above....

>
> Do NOT forward this to abuse@verizon.com as it was definitively proven
> that IT DID NOT COME FROM VERIZON.
>



I have already marked it as spam and it has been zapped, so I can't send it to
anyone.

Besides, I expect several thousand people got this and someone else will send it
to them.

CSSJR

--
Protect your privacy. Replace Google with IXQUICK at www.ixquick.com.


If we do not wish to lose our freedom, we must learn to tolerate our
neighbor's right to freedom even though he might express that freedom
in a manner we consider to be eccentric.


Reply With Quote
  #9 (permalink)  
Old 11-14-2009, 01:11 PM
Carl
Guest
 
Posts: n/a
Default Re: Is It a Scam?

Claude S. Sutton, Jr wrote:
> On 2009-11-14, Carl <crothman@NOSPAMoptonline.net> wrote:
>> Claude S. Sutton, Jr wrote:
>>> On 2009-11-13, The Ghost of General Lee <ghost@general.lee> wrote:
>>>> On Fri, 13 Nov 2009 20:55:36 +0000 (UTC), "Claude S. Sutton, Jr"
>>>> <cssutto@suttonmachine.com> wrote:
>>>>
>>>>> 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13
>>>>> Nov 2|2009 23:03:05 +0530
>>>>
>>>> There's your red flag right there. Received by a German domain
>>>> from an Indian IP address. You were right not to trust it.
>>>
>>>
>>> Thank you.
>>>
>>> I had a very bad day today so I did not have enough time to dig
>>> through the headers to see which was what.
>>>
>>> Thanks again.
>>>
>>> CSSJR
>>>

>> Actually, imho, you shouldn't even bother to check headers with this
>> type of email, of which I get some periodically myself. To the best
>> of my knowledge, no legitimate company contacts its customers in
>> this way regarding their accounts. They are always phishing emails.
>>
>>

>
> I get something like 700 spam emails a week.
>
> I see plenty of phishing. This was the best that I have seen.
>
> The Bank of America phishing is so transparent that it is a joke.
>
> Most of the others are, but this one was slick because the transition
> between old Alltel accounts and Verizon has had its rough spots.
>
> Also, I am not always careful with my paper work. I have been known
> to lose bills and not find them for weeks.
>
> And there are a lot more like me; people who travel, who have more
> than one residence, who try to do too many things at one time.....so
> reference to a misplaced or unpaid bill is going to catch a lot of
> people.
>
> Anyway, you are right.
>
> CSSJR
>
>

It's pretty sick how so many people know how to turn wonderful things into
crap, isn't it?



Reply With Quote
  #10 (permalink)  
Old 11-14-2009, 02:38 PM
JRStern
Guest
 
Posts: n/a
Default Re: Is It a Scam?

On Fri, 13 Nov 2009 17:56:49 -0800, Steve Sobol <sjsobol@JustThe.net>
wrote:

>In article <Xns9CC2D29EC6F63noonehomecom@74.209.131.13>, noone@home.com
>says...
>>
>> "Claude S. Sutton, Jr" <cssutto@suttonmachine.com> wrote in news:hdkh48$vhg
>> $1@aioe.org:
>>
>> > 0|Received: from 115.184.84.211 by sirchess.de; Fri, 13 Nov
>> >

>>
>> It's from GERMANY.....DO NOT OPEN THE VIRUS!
>>
>> Verizon would never send you something like this.....
>>
>> Do forward this to abuse@verizon.com with this IP address above....

>
>Do NOT forward this to abuse@verizon.com as it was definitively proven
>that IT DID NOT COME FROM VERIZON.


Isn't that one of the categories that they *do* want to see?

J.


Reply With Quote
  #11 (permalink)  
Old 11-14-2009, 05:50 PM
Larry
Guest
 
Posts: n/a
Default Re: Is It a Scam?

JRStern <JRStern@foobar.invalid> wrote in
news:bnjtf51lb9adtjn46iuh7sggnenhpg3vs3@4ax.com:

> Isn't that one of the categories that they *do* want to see?
>
> J.
>


Yes, so they can turn it over to their legal department for prosecution of
the culprits......instead of as is suggested just burying our little
pinheads in the sand and letting it go on and on and on....


--
Larry


Reply With Quote
  #12 (permalink)  
Old 11-14-2009, 09:45 PM
Steve Sobol
Guest
 
Posts: n/a
Default Re: Is It a Scam?

In article <Xns9CC38CD86E6F5noonehomecom@74.209.131.13>, noone@home.com
says...

> Yes, so they can turn it over to their legal department for

prosecution of
> the culprits......instead of as is suggested just burying our little
> pinheads in the sand and letting it go on and on and on....


Y'know, I'm always amused how Larry always acts like he knows more than
I do, about an industry in which I've worked for over 14 years.

If I contradicted him on every point he made about fixing church organs,
he'd (rightfully) be all over me. Since I know nothing about that
particular topic, I don't make assertions on that topic. He doesn't like
to return the favor. :P

The lawyers probably want to do something, and I'd be very much in favor
of them kicking the scumbags' asses, but getting many overseas law
enforcement agencies to cooperate is almost impossible. It'd be a
complete waste of time.

If Verizon wanted reports about this stuff that they can't do anything
about, I'm pretty sure they'd tell you, on this page,

http://www22.verizon.com/pages/securityalerts/

to report the Verizon phishing scams to them. (Note: That page covers
both telephone scams and Internet scams... Phishing is mentioned about
halfway down the page.)

Personally, I'd rather report an attack which I know is coming from a
Verizon IP, that I can *trace* to Verizon, because they *can* do
something about that type of attack.

--
Steve Sobol, Victorville, California, USA
sjsobol@JustThe.net

Reply With Quote
  #13 (permalink)  
Old 11-14-2009, 10:21 PM
George
Guest
 
Posts: n/a
Default Re: Is It a Scam?

Larry wrote:
> JRStern <JRStern@foobar.invalid> wrote in
> news:bnjtf51lb9adtjn46iuh7sggnenhpg3vs3@4ax.com:
>
>> Isn't that one of the categories that they *do* want to see?
>>
>> J.
>>

>
> Yes, so they can turn it over to their legal department for prosecution of
> the culprits......instead of as is suggested just burying our little
> pinheads in the sand and letting it go on and on and on....
>
>


Since you are such an incredible expert you must have forgotten that it
is nearly impossible to prosecute such things because of international
boundaries?

Reply With Quote
Reply


« How to make iPhone, Droid, tablets, netbooks fast.... | May have a virus fille »
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Don't fall victim to the 'Free Wi-Fi' scam Ablang alt.internet.wireless 6 05-19-2011 02:38 PM
BBC NEWS: Warning over mobile phone scam MB uk.telecom.mobile 11 03-30-2009 08:54 AM
Area Code 809 scam? Gary alt.cellular.verizon 5 11-01-2008 04:37 AM
what is the scam? Jenny uk.telecom.mobile 19 05-22-2008 01:20 PM
Watch out for Onestopphoneshop & CarphoneWarehouse Scam t8769 uk.telecom.mobile 11 11-30-2007 12:33 PM


All times are GMT. The time now is 06:17 AM.



Powered by vBulletin® Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.6.0 PL2

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45