I must get 10 phishing emails a day. I wonder how many victims are out there?
 

I must get 10 phishing emails a day. I wonder how many victims are out there? The numbers must be very high.

It's no wonder so many people are scared of using their CC online, or online money services.

What a shame that scammers have to ruin it for the rest of the legit businesses.

there are a buncha gullible people out there

I'm getting about 1 or 2 day, it must be working for these scammers for them to keep doing it like this. People out there really are fucking stupid.

Youve got mail.

I dont think I get any.

I gave my parents a lesson on phishing the other day. I'm worried that people I care about are going to get taken.

i got one off ebay.. so tempting coz it had to do with login problems.

i enjoy filling out their forms with bullshit and insults about their momma

I think those are the most common. My assumption is that they will take your ebay info and hack into your PayPal account with it. All they have to do is add another PayPal email address then start taking money out.

You might want to be careful there as well. I wouldn't be surprised if they are simultaneously doing drive-by spyware installs on you. I certainly wouldn't click the link of a known scammer.

I do the same, send them tons of bullshit. Wish there was a way to send them a virius that would wipe out their email so they would lose all the info they stole

I get PayPal, eBay, SunTrust and BoA phishing e-mails daily... it's frightening to think how many people would actually click the links in it.

they run fake auctions.

Lets say you have 600 positive feedback on ebay, and you get hacked. If you put up a rolex and no reserve then it looks legit. Buyer sets the payment to be what ever suits him. Great feedback, other top dollar auctions, looks good.

It's funny -- a stats question like this dangled in front of me, makes me feel a little FISHED --

numbahs


2HP

Yeah that's right. Phishing is bad for our industry :(

That would certainly work too but I'd think that they'd want to get in and get out. Those auctions would take a while. I suppose they could offer a too-good-to-be-true buy it now auction.

That's a great report.

You wouldnt even know its going on. 3 day auctions, buy it nows, and hell. How offten do you log in and check to see if you have something for sale that you dont know shit about?

ps check your mail.

This looks like a good primer site -- :)



2HP

I'm getting about the same. Ebay, Paypal, Lasalle Bank and Citi Bank

i dunno, i find alot of people who don't know shit about internet are also super paranoid about every little thing that pops up, so it may even the odds a bit more.

Funny this thread is here. I get a phone call from my Mum today about one of these emails. Got her scared. She rang her bank, signed up for more insurance. I explained it all to her over the phone. I just wonder how many other Mums have been conned like this..

Sometimes I fill in info of the FTC, DOJ or FBI :upsidedow

As many of these mails that are bouncing out there if only 1/2 of 1 percent fall for it, that's a lot of potential financial wreckage :(

Like I posted above, I would advise against that.

I'm going to have to verify this.

Pls post your cc#, ss#, and mother maiden name

Wrong -- If anything, that's the best means of defence against future attacks. A solution to phishing is posted below.

---------------------

Of course, there has to be a better answer to this problem, and five readers in the past week have suggested it. Forget Max Levchin's idea of using bounties. But let's embrace what was at the essence of Max's idea, which is enlisting millions of Internet users in the cause.

If the bad guys out-number the cops by 1,000-to-1, Internet users must outnumber the bad guys by 100,000-to-1 or more.

Fear of punishment won't deter phishing, yet that's all traditional law enforcement has to offer. It's fear of UNPROFITABILITY that will finally work.

The simple way to kill phishing is by making it harder for the phisher to make money from it. Right now, a phisher sends out a million e-mails and gets back 100 replies that yield positive data. There is almost no effort involved in sending out the e-mails after the first one, and the quality of the return data is very high. No wonder this is such a popular business!

Let's change that. If you get phishing e-mail, go the web sites and enter false data. Make up everything -- name, sign-on name, password, credit card numbers, everything. Instead of one million messages yielding 100 good replies, now the phisher will have one million messages yielding 100,000 replies of which 100 are good, but WHICH 100?

This technique kills phishing two ways. It certainly increases the phishing labor requirement by about 10,000X. But even more importantly, if banks and e-commerce sites limit the number of failed sign-on attempts from a single IP address to, say, 10 per day, theft as an outcome of phishing becomes close to impossible.

No bounties are required, no cops, no parallel webmail systems that force us to log-in to e-commerce sites when they tell us to. Phishing just becomes a very unprofitable business, which it should be.

I must have watched that movie in your sig loop 100 times...laughing harder and harder each time. Where the hell did you find that? It's when the supervisor runs away toward the camera that I really start laughing. I have tears coming from my eyes I've been laughing so hard.

Great plan. Just make sure the link you're clicking doesn't verify a valid email address.

On a side note, bogus data is a good way of dealing with telemarketers too.

i 've been receving such stuff lately as well..

those mails gimme headache :(

People that fall for that shit shouldn't be on the net