|
The Overpayment scam
[......] A person selling a product on the internet receives an email from someone (generally abroad) who offers to buy the product. For some reason, the buyer overpays. Perhaps because he says a friend owes him money, and the friend will send the money to the seller. The seller should take what he is owed and pass on the rest to the buyer. The money always arrives as a beautifully forged banker's draft. This is a sort of cheque written by the bank, and was once considered almost as good as money. Once the draft has been paid in, the bank will often show that the money is in the sellers account. So the seller sends off the extra money which was 'overpaid' and often the thing he is selling as well. Only later does his bank discover the forgery and take back its money. This means that the seller has not only lost what he was selling, but some extra cash as well.
Phishing
[......] A user receives an email telling him that there is a problem with his bank account, or that because new security software has been installed, he must re-enter his account details. A link is given in the email that leads to an official-looking web page. In reality, the web page is run by a scammer who takes the security information given and immediately uses it to withdraw money from his victim's account. Phishing emails can be detected by looking at the message code (which often shows that it was sent to many people at one time) and by looking at the link, which often goes to a different site to the one which which it shows in the email. It is easier to see these things if you do not view your emails in HTML. Look for other signs such as the message starting 'Dear customer' instead of using your name. If in doubt, close the email and type the address of your bank into the URL bar of a newly-opened browser window instead.
Counterfeit software
[......] This might be an .mp3 of your favourite song, it might be a spam email offering you a $300 software package for $3 - the one thing you can be sure of is that the person who produced the original product is not going to see any of the money. Sometimes, you get exactly what you have paid for - congratulations; you have found an honest thief. Sometimes you get a bit more than you paid for; some 'bonus' software which installs without you noticing. This may be a trojan which turns your computer into a bot, or a virus factory. It might install a mini-website serving illegal pornography, or just a keystroke logger which records all your passwords, including the passwords to your bank account. Even if the spyware does none of these things, once the counterfeiter has access to your computer he can use your name and personal details to open a bank account in your name, run up thousands of dollars of debts, and ruin your credit record so that you can never borrow money again. And you thought counterfeit software was cheap?
DDOS extortion
[......] Botnets are networks of computers that have been taken over by a scammer using trojans (see viruses exercise X) or a keystroke logger (see below). some botnets have hundreds or even thousands of captive computers. Before a big event the criminal emails websites that are connected to the event (for example betting sites just before a big horse race) and threatens to 'take down' the site unless he is paid a lot of money. If his victim refuses to pay, the 'bots' on the criminal's network all start to ask the website that they are attacking for web pages - lots and lots of web pages. all at once. The website can't cope with all the requests, and shuts down, just when it should be making the most money.
1 Ransomware
2 Lottery scam
3 The Overpayment scam
4 DDOS extortion
5 Cyber mules
6 Phishing
7 eBay fraud
8 419 scams
9 Counterfeit software
|
419 scams
[......] You get an email from someone who says that he heard of you through a 'business acquaintance' (though the email does not give the name). The writer of the email is usually from Africa, or from Asia, and has suddenly found himself in charge of a massive fortune. Sometimes the writer pretends to be the relative of a dead african politician, or the manager of a bank, or even someone dying of a horrible disease who wants to give her money away to a deserving cause. Whatever happens, the writer wants you to supply your personal details and the number of your bank account so that countless millions of pounds can be deposited there. Except, it turns out that there is a small processing fee, and that another official needs to be bribed, and so the steady requests for money go on, each promising that this is the last before the big payout. Finally you may be asked to go to the country to finalize the details, which is a way of asking you to kidnap yourself and hand yourself over to some rather scary criminals. See an example
Cyber mules
[......] The advertisement looks promising. 'We are an business in Latvia/Estonia/some place far away. We need a client in your country to act as our agent. Reasonable wages for a small amount of money.' What the person answering the advertisment discovers is that the company wants them to take payments from people in their country, put them together into a single payment, and send this abroad. It sounds reasonable, until you realize that one of the biggest problems for people running phishing scams is that banks are suspicious of cash transfers abroad, and often check with the holders of the account that this is what they wish to do. So the cyber-mule takes the money stolen from accounts by phishing and transfers it to the criminals abroad - once or twice. It does not take long before the police have caught up with him and his bank account has been seized, but by then the real criminals have found another victim.
Ransomware
[......] For increased computer security, many people have a secure drive on their computer where all the information is encrypted. The problem is that if you have lost the password, you can't decrypt the information, and it is lost. Cyber thieves have realized this, and sometimes once they have gained control of a computer they encrypt all the information they can find. Then they leave a message on the screen giving information how the victim can get the data back in exchange for a payment (usually in the region of $400 or so). This type of theft has become more popular with the arrival of digital currencies such as bitcoin which make it harder to check where the money had been paid to.
eBay fraud
[......] This is straightforward. Someone offers an expensive product at a very reasonable price, takes the money, and never sends the goods. Ebay are very aware of this danger, and offer protection schemes to allow buyers to get at least some of their money back, but it is a good idea to check carefully to see if you are dealing with a seller with a good reputation who has sold many expensive items before. A more sophisticated ebay fraud is when the buyer of an expensive product claims to have put the money in 'escrow'. 'Escrow' is when you give money to an independent agency which holds it until the goods that were ordered have actually arrived. Then they give the money to the seller. However, the fraudsters create their own fake escrow agencies, and as soon as they receive the goods, they quietly close down their 'escrow agency' and vanish with the expensive product - which was naturally sent to a temporary post box or holding address.
Lottery scam
[......] This time you receive an email telling you that you have won a lottery that you didn't even know you had entered. The organizers want to know what bank account to pay your millions into. From here the process is similar to the 419 scam. It turns out that your lottery money is held in one bank account, and to get it, you have to pay the fees and the currency conversion costs. If you do this, there is another 'transaction charge' and a 'cross-border verification fee'. And so it goes on until finally the unfortunate 'winner' realizes that instead of gaining a large fortune, he has paid a small fortune to a very happy criminal. See an example
|
|
FROM: THE DESK OF THE LOTTO CHANCELLOR,
INTERNATIONAL PROMOTIONS/PRIZE AWARD DEPARTMENT,
REF: XYL /26510460037/02
BATCH: 24/00319/IPD
ATTENTION:
RE/ AWARD NOTIFICATION; FINAL NOTICE We are pleased to inform you of the announcement today, 12th May,2004 of winners of the REAL EXCHANGE LOTTO PROMO ,THE GREENFORD/INTERNATIONAL, PROGRAMS AMSTERDAM held on 30thth April,2004 through computer ballot system Your company/You email,is attached to ticket number 023-1856-790-279, with serial number 5073-10 drew the lucky numbers 43-58-42-37-69-72, and consequently won the lottery in the first category.
You have therefore been approved for a lump sum pay out of US$1.5 Million in cash credited to file REF:XYL /26510460037/02.
This is from total prize money of US$90,000,000.00 shared among the seventeen international winners in this category. All participants were selected through a computer ballot system drawn form 30,000 names from
Australia, New Zealand, America, Europe, North America, Asia, and Africa as part of International Promotions Program, which is conducted annually.
CONGRATULATIONS! Your fund is now deposited with a Finance House insured in your name. Due to the mix up of some numbers and names, we ask that you keep this award strictly from public notice until your claim has been processed and your money remitted to your account. This is part of our security protocol to avoid double claiming or unscrupulous acts by participants of this program. We hope with a part of you prize, you will participate in our end of year high stakes US$1.0 Billion Netherlands International Lottery. To begin your claim, please contact our International claim agent; Mr George Allen email:allengeorge@mail2world.com Tel:+31-62-85-03-993 FOREIGN SERVICE MANAGER/CONSULTANT,
For due processing and remittance of your prize money to a designated account of your choice. Remember, all prize money must be claimed not later than 28th June, 2004. After this date, all funds will be returned as unclaimed. NOTE: In order to avoid unnecessary delays and complications, please remember to quote your reference and batch numbers in every one of your correspondences with your agent.Furthermore, should there be any change of your address, do inform your claim's agent as soon as possible. Congratulations again from all our staff and thank you for being part of our promotions program.
Sincerely,
Mrs Jantien Hendriek
THE PROMOTIONS MANAGER,REAL EXCHANGE LOTTO PROMO
LOTTERY/THE GREENFORD.
N.B. Any breach of confidentiality on the part of the winners will result to disqualification.
THANKS FOR WINNING
|
Back
From: "BIBI LUCKY"
Subject: can you?
Date: Thu, 28 Mar 2002 15:03:44 +0100
To: John.Doe@somewhere.com
Reply-To: bibialora1@yahoo.com
Dear Sir,
ASSISTANCE REQUIRED FOR ACQUISITION OF ESTATE
I write to inform you of my desire to acquire estates or landed properties in your country on behalf of the Director of Contracts and Finance Allocations of the Federal Ministry of Works and Housing in Nigeria.
Considering his very strategic and influential position, he would want the transaction to be as strictly confidential as possible. He further wants his identity to remain undisclosed at least for now, until the completion of the transaction. Hence our desire to have an overseas agent.
I have therefore been directed to inquire if you would agree to act as our overseas agent in order to actualize this transaction.
The deal, in brief, is that the funds with which we intend to carry out our proposed investments in your country is presently in a coded account at the Nigerian Apex Bank (i.e. the Central Bank of Nigeria)and we need your assistance to transfer the funds to your country in a convenient bank account that will be provided by you before we can put the funds into use in your country. For this, you shall be considered to have executed a contract for the Federal Ministry of Works and Housing in Nigeria for which payment should be effected to you by the Ministry, The contract sum of which shall run into US$26.4 Million, of which your share shall be 30% if you agree to be our overseas agent.
As soon as payment is effected, and the amount mentioned above is successfully transferred into your account, we intend to use our own share in acquiring some estates abroad. For this too you shall also serve as our agent.
In the light of this, I would like you to forward to me the following information:
- Your company name and address if any
- Your personal fax number
- Your personal telephone number for easy
communication.
You are requested to communicate your acceptance of this proposal through my above stated email address after which we shall discuss in details the modalities for seeing this transaction through.
Your quick response will be highly appreciated. Thank you in anticipation of your cooperation.
Yours faithfully,
BIBI LUCKY.
|
|