I got it alright

Just received a text message from an unknown number – area code 416 in this case, the city of Toronto. All the message said was “did you get it?” In the past, I also received a message from a different number saying something like “I sent it, did it come through?” I’m going to take it as a given that this is not something restricted to the Toronto area, but is part of a wider scheme.

Had I responded to these messages saying something like “what are you talking about?” or “No.” I would have given the sender access to all the data on my phone. I had read about this smishing attempt a short while ago so was aware of this. But in any case, since it was from a number not known to me, I’d have taken the same action: delete.

If you’re like me, in addition to your contacts, you have other more sensitive information on your device, be it phone or tablet. In any case it probably contains enough details for someone to ruin your life.

I know we tend to live much of our lives on our devices, but if you get this, or a similar message, DO NOT reply. The only thing they’ve sent is this attempt to get into your device. So as I wrote above, just delete the message unopened.

Cat.

How many will answer?

DATE: Nov 20

TITLE: How many will answer?

I found the following in the spam folder of one of my email accounts earlier tonight.

From: ING BANK OF TURKEY
Reply To: mrsel@ya

Dear Friend,

I got your e-mail address contact through your country’s Information exchange online while browsing and after that, I decided to contact you to ask for your assistance in this urgent matter that requires trust, confidentiality because you might receive this message in your inbox, Junk/Spam folder.

My name is Mr. Selim the senior Manager of ING Bank Turkey, Acibadem Branch of Istanbul Turkey (IBT) European Banking Corporation Limited Europe. I am a 55 years old man, married with three children. I have a very urgent, confidential, and profitable business for both of us Valued at (Twenty Five Million, Five Hundred Thousand United States Dollars). This fund is an excess of what my branch in which I am the senior manager made as profit last year. I have already submitted an approved End of the Year 2020 report to our Head Office, and they will never know of this Excess. I have since then placed this amount of (Twenty Five Million, Five Hundred Thousand United States Dollars) on a SUSPENSE SECURITY without a beneficiary. As a Senior Manager of the bank, I cannot be directly connected to this money thus I am impelled to request your assistance to receive this money as the beneficiary of the funds.

If we could do this together, we shall share these funds 50/50 between us accordingly and this transaction is 100% risk-free, as no-risk involved during or after this transaction. All I need from you is to stand as the original depositor of this fund, also to keep this deal confidential between us. If you’re interested, kindly write back for more information, while I shall explain more in detail as soon as I receive a response from you.

Thanks for your kind understanding! Awaiting your response,

Mr.Selim

The Senior Manager of ING Bank Turkey,
Acibadem Branch of Istanbul Turkey (IBT)
Bulgurlu Mahallesi Acibadem Caddesi No: 156 34660 skdar / Istanbul

Okay now, let’s tear this apart. The first sign this is not real is that it wasn’t sent to me specifically. In fact, there is no addressee shown at all. Second, although it purports to be from ING Bank in Turkey, the actual email address was a gmail account. I highly doubt the ING Bank in Turkey, a subsidiary of the Dutch multinational ING, would use gmail as their default email. Next, the “reply to” address is “yandex”, which a quick Google search tells me is a Russian search engine among other things.

$25,500,000 is a lot of money in any currency and the proposed 50/50 “split” would mean I’d stand to receive $12,750,000 US,( $16,060,000 CAD at the present exchange rate) if this were in fact legitimate. That itself may entice people to respond.

If I were to respond – I’m crazy, but not stupid, so I won’t – I’d probably be asked to provide various bits of personal information, including my bank account numbers. The result of my gullibility would be to give them access to my account and my huge balance of about $3.84 cents. Of course they would assure me they only wanted the banking information so they could transfer the money to me, but in actuality, they’d just drain my money.

Then there are the legal problems. Most banks are required by law to report any deposit over $10,000 to the government. So, unless I could prove I won the money in a lottery, I’d be answering a lot of questions from federal investigators.

Oh yes, and the personal details “I am a 55 years old man, married with three children.” is a nice but unnecessary touch. I suppose it’s supposed to make me feel all warm and fuzzy and more willing to listen. Well, Selim, I’m a 77 year old grandmother with a healthy streak of cynicism.

If you should receive this email, or any email like this, just delete it. Not every scam artist is a Nigerian Prince, some are Turkish bankers.

Stay safe and remember to give an artist a virtual, socially distanced hug – we need love too.

Cat.

I think not

I got the following email this morning:

Payment Confirmation

Order Invoice <smithfre9642@

09:28 (3 hours ago)

to ewanherbalmagic, bcc: me

Thank You For Your Recent Purchase With iCloud by Apple Inc
This is an auto-generated confirmation email for the purchase that you have done.
You will receive another email with the invoice shortly.
This charge may appear in your account in the next 24 hours of purchase.
If you want to cancel or modify your order, visit iTunes/apple. store or call at xxx-9348
Please find your order information below:
Order Number: FNJ DCC NM2M
Order Date: 23-Sep-2021
Order Name: 12 TB iCloud Space
Amount: USD 1499.99
Paid via iTunes
We hope you shop with us again soon.
Apple Inc.
Helpdesk : xxx-9348

There is so much wrong with this message.

First, it was sent from a gmail address. I somehow doubt Apple is using gmail. Next, notice that it wasn’t sent directly to me, but to someone else with a bcc to me. I suppose the hope is that I won’t notice that and no, I have no idea who “ewanherbalmagic” is.
This was sent to an email address that I set up for a specific purpose and isn’t one I use as a matter of course, so is not attached to my iTunes account.

Now that I’ve disposed of the obvious errors, let’s look at the rest: According to the message I purchased 12 Terrabytes of iCloud storage at a price of $1,499.99 USD. That price is the equivalent today, September 23, 2021, of $1,889.99 CAD but there is no guarantee Apple would process it today, so that Canadian amount could be different from my calculation. And, I have a 1 Tb drive that still has 884 Gb free, so such a purchase would have been completely frivolous as well as far too expensive.

My feeling is that they expect you to have questions/suspicions about this message and you will either call them or use the email provided. I’ll save you the trouble and tell you that the address provided is not the way the real iTunes site shows up in your browser. This is a scam or phishing so, if you get such an email, I suggest you just delete it.

Cat.

Another phone scam

Today, within the span of five minutes, I received two phone calls – one on my cell, from the Ottawa area code – and one on my landline from a toll-free number.

Both calls had the same message – they had detected “fraudulent activity” involving my Social Insurance Number and threatening me with arrest and prosecution. Both calls are scams, designed to get you to give up personal information starting with your SIN number.

From the website for Employment and Social Services Canada, a government agency:

Jun 28, 2019 – The Social Insurance Number (SIN) is a 9 digit number that you need to work in Canada or to have access to government programs and benefits. A SIN is issued to one person only and it cannot legally be used by anyone else. You are responsible for protecting your SIN.

The only time you would use this number is when dealing with federal government departments, or when you get a new job. Even then, the employer doesn’t need it until you are hired.

If you get one of these calls, know they are looking for your information, probably in order to set up false identities, which could leave you, the actual holder of the card, is serious debt or trouble. My suggestion is hang up, or if you’ve let an unknown number go to voicemail, delete it.

Cat.

They keep trying

A little while ago, I received a text message from “Management Team” at Toronto phone number 437-240-6722 telling me a restriction had been placed on my TD Visa card. The sender quoted a Visa card number that, while it had the correct prefix for TD cards, had no other relation to my actual card number. The message stated my card was “immediately blocked, because of “Security Limitation. Then followed some nonsensical, but intended to sound official, numbers. Finally, the text read “Please text ‘Y’ to initialize removal of holds.”

Right, sure, anything you say. First of all, this is not the first text I’ve received of this kind. Some of them come from banks I don’t even deal with, so I am aware these are just looking for information. I’ve never texted “Y” back, but I presume that if I did, I’d be asked all kinds of questions to “confirm my account” when really all they want is my information. So, what did I do? I did what any reasonable person would, or should, do – I called Visa and reported the attempted phishing to them. I know the state of my account, so wasn’t fooled by the message.

If you receive a text message like this, or anything similar, don’t just blindly answer “Y”, check it out. You could save yourself and your credit rating a whole lot of financial hurt. I also suggest you keep tabs on your Visa card (or any other credit card) balance. That way you won’t get fooled.

Cat.

Sorry Sarge, not happening

I received the following email this morning. I’ve removed the email address to keep me in WordPress’s good graces.

Griffin, Christine Cgriffin

I am Sgt Monica L Brown I have a proposal for you! Please send me a reply on my personal Email:

slinbrown975

Rather cryptic and designed to instill curiosity in the reader isn’t it? Let’s look at it.

I am Sgt Monica L Brown Good for you. Are you in the army? Air Force, or the local police or some other paramilitary organisation that uses military ranking? Just telling me your rank doesn’t tell me anything useful.

I have a proposal for you! Really!! And what might that be? Do you have several millions in unclaimed funds you want me to help you smuggle out of the country for a cut of said money?

The extension on the sender’s email was “begavalley.nsw.gov.au”, which I translate to mean this was sent by, or on behalf, of the government of the shire of Bega Valley in New South Wales, Australia. A quick Google search shows this area is also known as “the Sapphire Coast” and it appears to be a tourist destination.

I have to ask myself why the government of a tourist area on the west coast of Australia would be contacting a 75 year-old woman in Canada with a proposal? The only thing that comes to mind is that the website has been hacked and this is in fact a scam. Having these suspicions, I have forwarded this to the Bega Valley Council for investigation.

As mysterious and inviting as this may sound, I strongly recommend you do NOT respond to Sargent Monica L Brown.

On the plus side, for a change it is well-written.

Cat.

Yet another phishing attempt

Oh no! I recently received a text message about my debit card from CIBC – The Canadian Imperial Bank of Commerce. Here’s the message:

You have 1 CIBC alert, Your Debit Card that begins with ‘4506′. Unable to process further purchases; <Access Code>: LBCRIY. Promptly reply by responding with Y to this text.

Let’s get the easy stuff out of the way – I don’t deal with CIBC so don’t have a debit card, or access card to use its proper name. Right there I knew it was some sort of exploratory expedition. I already knew from the area code that it was from somewhere in the Toronto area, then used reverse lookup to check the telephone number and found it was an Oakville exchange. If you aren’t familiar with the Toronto area, Oakville is west of Toronto, on the shore of Lake Ontario and is the home of Ford Motor of Canada.

Okay, on to other things: It is possible that people will read this text and instantly respond as requested. The text contains the numbers ‘4506′ and some may see this message, get out their card to check the number and think “OMG! It must be real because they’ve got the first four numbers right!” Logical assumption, but wrong. Those first four digits of your access/debit card are just the identifier – 4506 is the code for CIBC – and other Canadian banks will have four digit codes starting with “4″ as well. Other countries may have a different first digit, but it will be the identifier..

My advice is simple: If you get this text (and I’ve had several from various banks I don’t deal with) just delete it. If by chance they should happen to hit on your bank, do the sensible thing. Don’t panic. Check with your bank. There’s a telephone number on the back of the card you can call. Stay safe and if you’re doubtful – ask your bank.

Cat.

The Nigerian prince has moved

I received the following email in a junk file this morning. I’ve removed the email address to keep myself out of trouble with WordPress (again).

From: MrDanielMminele

FROM THE DESK OF MR.DANIEL MMINELE
Direct Phone No: + 27 82 4026 229
Private Email: contact.danielmminel@

Dear Sir/Madam,

Peace Be Upon You,

My name is Mr. Daniel Mminele, I am currently working with a Financial Institution based here in South Africa. We offer short and long terms Loans which are tailored to meet important financing needs in the Agricultural, Industrial and Constructional production circle in the whole of the Southern Africa and beyond.

I am contacting you to partner with me to secure the funds US$ 42 Million United States Dollars deposited in the custody of our Bank here in South Africa by LATE MR. ALEXANDER VEREMEEVSKIY, a Russian Businessman and Investor who was involve in the Fly-Dubai Flight 981, a Boeing 737- 800, an International Passenger Flight that crashed during an aborted Landing due to poor weather at Rostov-on-Don Airport, Russia, on 19th of March 2016, resulting in the deaths of all the 62 Passengers and Crew Members on Board, May their souls rest in Peace. The fund was deposited as an Investment fund in 2015 with an open beneficiary. The fund has been with the Bank without anybody coming up for the claims.

I honestly seek your assistance to move these funds into your custody for safe keeping and investment purposes as the depositor has no known Next of kin. I have all the Legal documents necessary to claim the funds as I am directly involved in the deposits. All I need to do is to make you the beneficiary of the fund by filling your name in the appropriate documents and immediately move the funds out of its present place in your name to your account for safe keeping. The funds will be used for Investment purposes in your country as i have planned on investing my own share in a lucrative business venture and settling with my family.

I decided to this as i know all the circumstances surrounding the deposits and knowing very well that the depositor of the fund will not come back to claim the funds since he is deceased. I will send to you all the documents relating to this deposit and direct you on how to apply for the fund. I will give you further details when I receive a positive response from you on this issue. I will ensure all procedures to see the successful completion of this project.

I assure you that this transaction is 100% Risk Free .Be rest assured that we will not encounter any difficulty as the person directly involved in approving the release of the fund is also participating in this transaction. This transaction is Legal and we propose a 60-30% sharing pattern once the fund is transferred to your Account while the remaining 10% will be for all the expensive we might incur during the cause of the transfer.

Please keep this transaction very confidential and let me know if you will be of any assistance.

Best Regards,
Mr. Daniel Mminele.
Direct Phone No: + 27 82 4026 229
Private Email: contact.danielmminele@

******************************************************************************************************************************************************
The information in the Email and/or attachment(s) is covered by the Electronic Communications Privacy Act, 18 U.S.C. 2510-2521. It may be confidential and/or privileged and is intended solely for the person or entity to which it is addressed. If you are not the intended recipient or an agent responsible for delivering it to the intended recipient, you have received it in error. The review, dissemination, copying, or taking of any action based on the contents thereof is strictly prohibited. If you have received this Email in error, please advise the sender by reply Email and then delete it and any attachment(s) from your system immediately. Thank you. *********************************************************************************************************************************************************

Interesting, isn’t it? First, this wasn’t sent to me personally. The “Dear Sir/Madam” is a good indicator this is a shotgun style scam. The generic salutation is designed to rope in anyone gullible enough to fall for it. Another sign this is intended to rope in as many people as possible is the “Peace Be Upon You”, which is a common salutation for those who follow Islam. Again, make the mark feel comfortable.

Notice this person doesn’t name the “bank” which employs him, nor does he use an email address that would appear to be that of a financial institution. The amount of $42 million US is certainly attractive. Based on the offered split, the recipient would be looking at a $12.6 million windfall. If this were real. The specific details of the crash are intended to encourage the mark to check to see if such a crash actually took place. I didn’t check it myself but presume the sender used an actual accident to show the veracity of the balance of his claims. But to my mind, the details are too specific, almost as if they were taken directly from a crash report.

The disclaimer at the bottom of the email is a nice touch but, if this is purportedly being sent from South Africa (no city – just a generic “South Africa”), why is he quoting US law and not the corresponding South African legislation?

Consider this as well: If someone is investing over forty million in any currency, chances are this is not an individual’s own funds, but if from a company. And you can be certain a company would know where $42,000,000 of their money is at any given time.

And now, the kicker in this: The email showed as being sent from: “Mr.DanielMminele” with a return email address at gmail. The actual sender turned out to be someone using the address “m_h_bruce834″ with a Yahoo address.

So, if you were to fall for this and send Mr Bruce the requested information, you wouldn’t find twelve point six million magically appearing in your account. It is much more likely you’d find your own balance diminishing at an astounding rate.

If you get this, or anything like this, don’t fall for it. As I said in the title, the Nigerian prince has moved, but it’s still the same scam.

Cat.

Nice try, but wrong target

I found the following in my spam of an email I rarely use:

I am aware watson is your passphrases. Lets get right to the purpose. absolutely no one has paid me to check you. You don’t know me and you’re probably wondering why you are getting this e mail?

Well, i actually installed a malware on the X videos (porn material) web site and guess what, you visited this site to have fun (you know what i mean). When you were watching video clips, your web browser began working as a Remote control Desktop with a keylogger which gave me accessibility to your display screen as well as web camera. Right after that, my software program collected all your contacts from your Messenger, social networks, and e-mailaccount. Next i made a double video. First part displays the video you were watching (you have a good taste lmao), and second part shows the recording of your webcam, yea it is you.

You actually have just two possibilities. Shall we read each one of these choices in particulars:
Very first alternative is to neglect this message. in that case, i will send your very own video clip to almost all of your contacts and then just imagine about the humiliation you will definitely get. Moreover if you are in a committed relationship, just how it would affect?

Latter choice would be to give me USD 888. We are going to regard it as a donation. in this case, i most certainly will right away erase your videotape. You can carry on your way of life like this never happened and you are never going to hear back again from me.

You will make the payment through Bi tco in (if you don’t know this, search for ‘how to buy b itcoi n’ in Google).

B T C ad dre ss: (I removed the address to keep myself out of trouble with WordPress.)

if you are thinking of going to the law, okay, this e mail can not be traced back to me. I have taken care of my actions. i am just not attempting to ask you for money very much, i prefer to be paid. message if i do not receive the bi tco in , i will send out your video recording to all of your contacts including membe rs of your family, colleagues, and so forth. Nevertheless, if i do get paid, i will destroy the video immediately. If you really want proof, reply with Yea! then i will send out your video recording to your 7 friends. This is a non-negotiable offer, so please do not waste mine time and yours by replying to this email message.

Where do I start? First, the “passphrases” is nowhere near to anything I use so right there I could tell this was nothing more than an attempt to extort money – $888 to be exact – from me. Next, the grammar and syntax is absolutely horrid. (I’m a writer so know how proper English should scan.) The typing itself shows no regard for the rules of writing and that the writer(?) uses a lower case letter “i” when referring to themselves indicates, to me at least, they have a low opinion of themselves. Also, the way this person has turned “bitcoin” into three words seems to show they have no idea what they’re talking about. The part that really tells me this is a scam … is which gave me accessibility to your display screen as well as web camera since I don’t have a webcam.

As for tracing it back, somehow this person made it appear as if the message had come from my own email address. I would not have to attempt to blackmail myself because – well, I already know I don’t have an extra 888 dollars. Don’t you think that’s a rather odd amount to ask for, by the way?

Finally, even if I were gullible enough to believe the sender has incriminating video of me I’d really have to be a fool to believe the (non-existent) video would be deleted.

If you get something like this even if you do visit those sites, don’t panic, just delete it.

Cat – and no, I don’t visit those sites.

Consider all you like, you’re still wrong

I found this in the inbox of an email address I rarely use:

AMAZON

Dear Ghoward, Congratulations!
Because we consider you as one of our customer, we’d like to informe you that your rank on our clients list qualified you to get a spcecial FREE REWARD.
Click below to start

Start

This offer is limited*

If the English and spelling weren’t enough warning this is a phishing expedition, there are a couple of other things about this that scream “FAKE!” to me. First, I’ve never purchased anything from or through Amazon, so I couldn’t be a customer.

Second, it has been my experience that when (or if) you open an online account anywhere, you provide your full name, not just an initial. Therefore, any offers directly specifically to you would have your name and possibly other identifying details, not just the first part of your email address.

Next, I don’t use this email address much any longer as I changed my name about two years ago and set up an email account under my new name elsewhere. I couldn’t change the name on this one as it was originally set up for me by my son when he worked for the service provider.

Sorry Amazon or whoever is trying to run this scam, you can consider me “one of your customer” all you like, you’re still wrong and I’m not clicking on that “start” link.

If you receive this, even if you use Amazon religiously, check the little things like spelling, sentence construction and where the email is from. As I said, I didn’t click on the link, but I suspect it would have asked for details of my (nonexistent) Amazon account. Once they had that, they could run up my bill easily and probably very quickly.

DO NOT, repeat, DO NOT, ever click on suspicious links like this. Your bank account will thank you.

I wish all my followers and readers a very happy and safe 2019 and remember to hug an artist – we need love too.

Cat.