Mail Scam

[immortalpuppet]

A bogus email is currently being sent to Manxnet E-Mail addresses with text similar to the following:

 

*************************

Dear MANX.NET Subscriber,

 

To complete your MANX.NET account, you must reply to this email immediately and enter your password here (********)

 

Failure to do this will immediately render your email address deactivated from our database.

 

You can also confirm your email address by logging into your MANX.NET account at http://mail.manx.net/wm/mail/login.html

 

Thank you for using MANX.NET !

THE MANX.NET TEAM

*************************

 

This is NOT a legitimate mail from Manxnet and we would never contact you by email to ask you for your details.

 

If you recieve a message like this, please delete it.

 

oh dear

[Skeddan]

Isn't http://mail.manx.net a subdomain of manx.net? Doesn't that mean that manx.net could shut it down? If so, why hasn't this been done? To the punter this probably looks like a genuine manx.net website - so, how have these people got to be able to use this? I'm probably totally wrong, but manx.net seem partly to blame if anyone is taken in by this.

[immortalpuppet]

The link is genuine (i use this when i run opera because the main mail login does not work.) its the asking to reply with the password thats a scam.

[Sheriff Buford T. Justice]

Hoax emails rarely come from a legitimate email address so surely if anyone tries to reply, the email will bounce.

 

If the scammers are using a real address can't you just ban the address on your servers or do the reply addresses vary in each email?

 

And surely you can set Manx.net's spam software to spot these emails based on their content and bin them.

[ans]

Isn't http://mail.manx.net a subdomain of manx.net? Doesn't that mean that manx.net could shut it down? If so, why hasn't this been done? To the punter this probably looks like a genuine manx.net website - so, how have these people got to be able to use this? I'm probably totally wrong, but manx.net seem partly to blame if anyone is taken in by this.

 

I think you've just spectacularly highlighted why this sort of email succeeds.

 

Because your average Internet user is dumb and doesn't read things properly.

[joeyconcrete]

Couldn't Manxnet simply block incoming e-mails matching the message text?

[Skeddan]

Thanks for clearing that up immortalpuppet

 

your average Internet user is dumb and doesn't read things properly.

Very true ans.

 

It is also because things are not made clear to them at the outset - e.g. manx.net will never ask for password. (which they may have actually notified users about, but many do not).

 

Clever though to offer both a genuine address as well as the bogus email reply as alternatives for 'confirming'.

 

(ans - if that was meant to be a bit of a dig at me for not reading immortalpuppet's post properly, where does it say that this url is not bogus? In any case what's dumb about asking such questions which immortalpuppet then gave a clear answer to? - i.e. Q: why hasn't the url been shut down? A: because it is genuine. Is it because you didn't read these posts properly or because as sometimes happens in the forums you read things least favourably and didn't give the benefit of the doubt? I assume it was my fault for the post not being that clear - should any non-rhetorical question have lots of question marks?? Or only put one question at a time?? Or were you just trying a wind-up?? - seriously - I'm still new to all this)

[The Old Git]

Hoax emails rarely come from a legitimate email address so surely if anyone tries to reply, the email will bounce.

 

If the scammers are using a real address can't you just ban the address on your servers or do the reply addresses vary in each email?

 

In the past few weeks I've had two of my email addresses, on separate domains, used as the "from" address on various spam / pishing emails. It's bad enough having brain dead server admins notify me that "my" email has been blocked / bounced without having my email address added to ban lists.

[Slim]

I'm guessing in the original mail, the address is a link, and says mail.manx.net but links somewhere else.

[Sheriff Buford T. Justice]

I'm guessing in the original mail, the address is a link, and says mail.manx.net but links somewhere else.

Hoax emails rarely come from a legitimate email address so surely if anyone tries to reply, the email will bounce.

 

If the scammers are using a real address can't you just ban the address on your servers or do the reply addresses vary in each email?

 

In the past few weeks I've had two of my email addresses, on separate domains, used as the "from" address on various spam / pishing emails. It's bad enough having brain dead server admins notify me that "my" email has been blocked / bounced without having my email address added to ban lists.

 

Fair enough, but were these emails asking people to reply to your address - like this scam?

 

The email scam in this topic is asking people to reply to the address it was sent from. So what would be the point in the author of the email writing it so it sent the manx.net login credentials to your account for example? They want Manx.net login details for some reason - maybe so they can advertise on the classifieds for free

 

I'm guessing in the original mail, the address is a link, and says mail.manx.net but links somewhere else.

 

That was my initial thought too but only MT know that hey, as they have the original emails.

 

TBH, the whole thing sounds like a load of old tosh which could've easily been stopped earlier with no need to send warnings to manx.net mail users.

[cheeky boy]

I am no great shakes on the IT front but I am used to being the target of scams due to having a registered business

 

Lately I have had tons of emails asking me to activate or confirm accounts at Nat West HSBC, Barclays etc. Strangely none from the bank where my account is

 

Unusually though, the torrent of email I used to get offering me Viagra & penis enlargement has subsided.

 

Don't these folks realise that the older I get the more likely I am to need their products ?

[immortalpuppet]

My hotmail spam accout gets loads of these types of mail, Interesting to see that the manxnet is getting them now aswell. I have a few different accounts on different mail servers and whenever i order something or sign up for something i use a spam account, its funny to see when you sign up for a service and the next day you get hundreds of junk emails.

[jimbms]

I find an easy way is to filter any email that is not .im or .uk I allow .net or .com into a sepersate folder and auto delete all mail from other countries as well as all mail from hotmail, gmail, and yahoo that I have not allowed. I also filter out any mail that contains certain words these mails tend to contain