Phishing email question

Reply

  #1  
Old 04-21-20, 07:04 AM
H
Member
Thread Starter
Join Date: Oct 2006
Location: Florida
Posts: 91
Received 0 Votes on 0 Posts
Phishing email question

Hi,I’ve received a few of these type of emails (see below). Name and links changed.

The “John Doe” is a valid friends name but the email in < > is not valid. Based on the invalid email address, the phrase “Should have sent this . . .”, and a strange looking link I assume the email is phishing. My question is whether it's likely the email is the result of “John Doe”’s address book getting comprised and someone getting my email. Or would it be my address book that was compromised. Or, something else.

The emails looks like this:

------------------------------

Fwd: from John Doe

JD John Doe <somebogusname @bogus.xxx>

4/20/202 12:29 PM

To: you

On Monday, April 20, 202 10:20 AM, John Doe wrote:

Should have sent it to you sooner http://www.abcd.efg.ing/

____________________


 
Sponsored Links
  #2  
Old 04-21-20, 07:25 AM
T
Member
Join Date: Apr 2015
Location: USA
Posts: 417
Received 16 Votes on 15 Posts
Either, or it could be a legit forwarded or returned email was scraped and the association was noted. So many ways to get this information.
 
  #3  
Old 04-21-20, 08:19 AM
H
Member
Join Date: Nov 2012
Location: USA
Posts: 1,541
Received 69 Votes on 60 Posts
Could be either.
Best thing to do is phone up your friend, and then BOTH of you should update the passwords on your email.
 
  #4  
Old 04-21-20, 11:52 PM
S
Group Moderator
Join Date: Oct 2004
Location: WI/MN
Posts: 19,512
Received 88 Votes on 77 Posts
Typically, if your friend's account gets hacked, the emails will come from his actual address. In my case, this friend is named Tommy and it happens every year or two....

If in doubt, call the person or organization supposedly sending the email.
 
  #5  
Old 04-22-20, 09:51 AM
Z
Forum Topic Moderator
Join Date: Sep 2005
Location: USA
Posts: 5,036
Received 74 Votes on 69 Posts
While it could be a compromised account, emails like that can be spammed/phished in other ways too. Anyone can send an email "from" your email address pretty easily. There is probably leaked data out there from websites or facebook that show that you and your friend are friends. So it would be a pretty easy jump for someone to send an email to you "from" your friend's email address.

We see it all the time in our company email. Emails to our accounting department that are "from" the president of the company requesting a wire transfer to account xxx. Some of them are actually pretty convincing. Phishing has come a long way from those Nigerian inheritance scams.

Of course, it could be a hacked account too... but I'd doubt it since it's from a bogus address. If they actually had access to your friend's account, you wouldn't be able to tell the difference - since there is no difference. It's actually coming from his account.
 
  #6  
Old 05-11-20, 11:28 AM
R
Member
Join Date: Sep 2019
Location: United States
Posts: 20
Received 0 Votes on 0 Posts
Check the VERY bottom (make sure not to click the link) with your mouse by attempting to select text you can't see...an old trick for Mail Bombers and Scams was to use a mail server (not like gmail an such, the popular one was actually built into windows at the time lol) to send mail with ANY name you chose and use a white font on a white background, i'm not sure it's even possibly anymore with all the restrictions and me not being an idiot in my older days, but if there is hidden text there it will say something about the server it was sent from etc.

If there is ANYTHING there in white font, it's not safe. Normal mail servers remove that info or put it under a details link.
 
  #7  
Old 05-22-20, 05:40 PM
A
Member
Join Date: Mar 2010
Location: USA
Posts: 3,919
Received 51 Votes on 49 Posts
If it is really an undeliverable email then the body or content or text should be visible right there in the message.

If you have to click something else to see the body of the email than chances are it is a brand new piece of spam rather than an undeliverable or forwarded genuine email.

Often spam is disguised as being from the mail daemon or the postmaster.

Better to abandon it and close the browser and then compose your own brand new email to send to that person if you recognize him. Or call him at your leisure on the phone.
 
Reply
Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Thread Tools
Search this Thread
 
Ask a Question
Question Title:
Description:
Your question will be posted in: