Notice how the below scammer, who sent this email today, falsified the headers and not understanding email headers, under 'Reply-To', put a phrase instead of a fake email address. The 'From' and the 'Received: from"' addresses do not match (which means they hijacked someone's server to send it out). And while it may look more official that you have to log into their "phishing" (pronounced "fishing") fake website, I would guess any login will work so they can get your information - SO DON'T TRY AND GO TO THE WEBSITE stated in the below scam email.
Authentication-Results: hotmail.com; sender-id=temperror (sender IP is 209.65.160.78) header.from=sales@public.ls.xz.cn; dkim=none header.d=public.ls.xz.cn; x-hmca=none
Received: from USDAL17.assaabloyhospitality.com ([10.243.2.17]) by usdal11.assaabloyhospitality.com with Microsoft SMTPSVC(6.0.3790.3959);
Sat, 30 Jun 2012 05:28:02 -0500
Reply-To: [reply via website]
From: "Tina Dijkstra" [sales@public.ls.xz.cn]
Subject: reply via website
Return-Path: [sales@public.ls.xz.cn]
Message-ID: <USDAL17PgrKGOFCnFEX000068a1@USDAL17.assaabloyhospitality.com>
Dear Email User,
This is to immediately inform you that your email address with Micros ID (Y2K-TB62-LTEC-YF82-9G) has won you $490,000 and a brand new ranger rover sports.Use the details below to login and immediately begin your claims.
WEBSITE : www.ruidunelectrical.com
USERNAME : rud23
PASSWORD : pkn4
Regards,
Mrs Tina Dijkstra
Annoucer©.
No comments:
Post a Comment