Related Entries

Do not use GET for form processing!
Google Visualizations quick start
SCM backed blogging - part II
SCM backed Blogging
Got linked in!

« Mandrake 9.1: Adding original CDs to software sources
» Race and prom

Identity stealing scams via e-mail

Simple idea by con artists to steal your identity.

There is a recent surge in sending spam that looks "official", with a from-address that looks like the mail is from a reputed company. Remember, it is pretty easy to fake a from-email address. Typically, these e-mails tell you that:

Michael J. Radwin got something like this recently. These mails will have a link that looks official too! See the example below.

However, this site is not, but some site in Russia. When you go to that site, they have replicated PayPal’s interface exactly like the official one. It is very easy to get fooled by this. If you fill out the form, the data is captured by the scammer before sending you to the real PayPal site.

There are news reports about such scams rising in Australia. Lot of people have been fooled into giving out their on-line banking details.

How can you be better prepared?

  1. Well, I got one from PayPal too! This one posts to

    Asks for Full Name, Credit Card details and ATM PIN - apparently for Bank verification.

    Posted by: Babu on May 21, 2003 06:48 PM
  2. Hey
    I got one from Visa not long ago. Though I dont own a credit card. I was asked to fill out details including my credit card number in the mail. I tried to verify the authenticity by replying back. But then the mail could not be delivered. I guess Visa card holders better be careful

    Posted by: divya on May 28, 2003 03:40 AM
  3. This is not really a comment. i just need help on getting back my money or the product that i bought 6 months ago from If you guys know of any organisations that help in these situations please e-mail me and let me know about them. Thank you.

    Posted by: Mark Harris on August 18, 2003 02:00 PM
  4. One very good rule of thumb: NEVER submit personal information of any sort to a form unless *YOU* yourself initiated the contact. If you get an email or a telephone call from some organization requesting action, type in the URL by yourself, by hand, to a known site, or request a phone number and contact the organization *yourself*. This foils *most* social engineering scams such as the one mentioned here.

    Posted by: drefty mcphooter on August 24, 2003 01:10 PM
  5. I've only seen one of these. And that was to go and enter my AOL details to update my account. Nice try! (I don't use AOL any more, btw). The address was - the I looking like an l, to fool people.

    Posted by: lix on September 16, 2003 02:38 PM
  6. You can find it at ikwebs > software > cyber cafe

    Posted by: adams on October 25, 2003 02:49 PM