immortalpuppet Posted April 11, 2008 Share Posted April 11, 2008 A bogus email is currently being sent to Manxnet E-Mail addresses with text similar to the following: ************************* Dear MANX.NET Subscriber, To complete your MANX.NET account, you must reply to this email immediately and enter your password here (********) Failure to do this will immediately render your email address deactivated from our database. You can also confirm your email address by logging into your MANX.NET account at http://mail.manx.net/wm/mail/login.html Thank you for using MANX.NET ! THE MANX.NET TEAM ************************* This is NOT a legitimate mail from Manxnet and we would never contact you by email to ask you for your details. If you recieve a message like this, please delete it. oh dear Link to comment Share on other sites More sharing options...
Skeddan Posted April 11, 2008 Share Posted April 11, 2008 Isn't http://mail.manx.net a subdomain of manx.net? Doesn't that mean that manx.net could shut it down? If so, why hasn't this been done? To the punter this probably looks like a genuine manx.net website - so, how have these people got to be able to use this? I'm probably totally wrong, but manx.net seem partly to blame if anyone is taken in by this. Link to comment Share on other sites More sharing options...
immortalpuppet Posted April 11, 2008 Author Share Posted April 11, 2008 The link is genuine (i use this when i run opera because the main mail login does not work.) its the asking to reply with the password thats a scam. Link to comment Share on other sites More sharing options...
Sheriff Buford T. Justice Posted April 11, 2008 Share Posted April 11, 2008 Hoax emails rarely come from a legitimate email address so surely if anyone tries to reply, the email will bounce. If the scammers are using a real address can't you just ban the address on your servers or do the reply addresses vary in each email? And surely you can set Manx.net's spam software to spot these emails based on their content and bin them. Link to comment Share on other sites More sharing options...
ans Posted April 11, 2008 Share Posted April 11, 2008 Isn't http://mail.manx.net a subdomain of manx.net? Doesn't that mean that manx.net could shut it down? If so, why hasn't this been done? To the punter this probably looks like a genuine manx.net website - so, how have these people got to be able to use this? I'm probably totally wrong, but manx.net seem partly to blame if anyone is taken in by this. I think you've just spectacularly highlighted why this sort of email succeeds. Because your average Internet user is dumb and doesn't read things properly. Link to comment Share on other sites More sharing options...
joeyconcrete Posted April 11, 2008 Share Posted April 11, 2008 Couldn't Manxnet simply block incoming e-mails matching the message text? Link to comment Share on other sites More sharing options...
Skeddan Posted April 11, 2008 Share Posted April 11, 2008 Thanks for clearing that up immortalpuppet your average Internet user is dumb and doesn't read things properly. Very true ans. It is also because things are not made clear to them at the outset - e.g. manx.net will never ask for password. (which they may have actually notified users about, but many do not). Clever though to offer both a genuine address as well as the bogus email reply as alternatives for 'confirming'. (ans - if that was meant to be a bit of a dig at me for not reading immortalpuppet's post properly, where does it say that this url is not bogus? In any case what's dumb about asking such questions which immortalpuppet then gave a clear answer to? - i.e. Q: why hasn't the url been shut down? A: because it is genuine. Is it because you didn't read these posts properly or because as sometimes happens in the forums you read things least favourably and didn't give the benefit of the doubt? I assume it was my fault for the post not being that clear - should any non-rhetorical question have lots of question marks?? Or only put one question at a time?? Or were you just trying a wind-up?? - seriously - I'm still new to all this) Link to comment Share on other sites More sharing options...
The Old Git Posted April 11, 2008 Share Posted April 11, 2008 Hoax emails rarely come from a legitimate email address so surely if anyone tries to reply, the email will bounce. If the scammers are using a real address can't you just ban the address on your servers or do the reply addresses vary in each email? In the past few weeks I've had two of my email addresses, on separate domains, used as the "from" address on various spam / pishing emails. It's bad enough having brain dead server admins notify me that "my" email has been blocked / bounced without having my email address added to ban lists. Link to comment Share on other sites More sharing options...
Slim Posted April 11, 2008 Share Posted April 11, 2008 I'm guessing in the original mail, the address is a link, and says mail.manx.net but links somewhere else. Link to comment Share on other sites More sharing options...
Sheriff Buford T. Justice Posted April 11, 2008 Share Posted April 11, 2008 I'm guessing in the original mail, the address is a link, and says mail.manx.net but links somewhere else. Hoax emails rarely come from a legitimate email address so surely if anyone tries to reply, the email will bounce. If the scammers are using a real address can't you just ban the address on your servers or do the reply addresses vary in each email? In the past few weeks I've had two of my email addresses, on separate domains, used as the "from" address on various spam / pishing emails. It's bad enough having brain dead server admins notify me that "my" email has been blocked / bounced without having my email address added to ban lists. Fair enough, but were these emails asking people to reply to your address - like this scam? The email scam in this topic is asking people to reply to the address it was sent from. So what would be the point in the author of the email writing it so it sent the manx.net login credentials to your account for example? They want Manx.net login details for some reason - maybe so they can advertise on the classifieds for free I'm guessing in the original mail, the address is a link, and says mail.manx.net but links somewhere else. That was my initial thought too but only MT know that hey, as they have the original emails. TBH, the whole thing sounds like a load of old tosh which could've easily been stopped earlier with no need to send warnings to manx.net mail users. Link to comment Share on other sites More sharing options...
cheeky boy Posted April 11, 2008 Share Posted April 11, 2008 I am no great shakes on the IT front but I am used to being the target of scams due to having a registered business Lately I have had tons of emails asking me to activate or confirm accounts at Nat West HSBC, Barclays etc. Strangely none from the bank where my account is Unusually though, the torrent of email I used to get offering me Viagra & penis enlargement has subsided. Don't these folks realise that the older I get the more likely I am to need their products ? Link to comment Share on other sites More sharing options...
immortalpuppet Posted April 12, 2008 Author Share Posted April 12, 2008 My hotmail spam accout gets loads of these types of mail, Interesting to see that the manxnet is getting them now aswell. I have a few different accounts on different mail servers and whenever i order something or sign up for something i use a spam account, its funny to see when you sign up for a service and the next day you get hundreds of junk emails. Link to comment Share on other sites More sharing options...
jimbms Posted April 30, 2008 Share Posted April 30, 2008 I find an easy way is to filter any email that is not .im or .uk I allow .net or .com into a sepersate folder and auto delete all mail from other countries as well as all mail from hotmail, gmail, and yahoo that I have not allowed. I also filter out any mail that contains certain words these mails tend to contain Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.