[TenTec] Phishing reply W2AJI
john brown
n2ydf at hotmail.com
Tue Mar 7 16:38:26 EST 2017
Hi Mike it came through the six club mailman.
Sent from my iPad
> On Mar 7, 2017, at 4:14 PM, "tentec-request at contesting.com" <tentec-request at contesting.com> wrote:
>
> Send TenTec mailing list submissions to
> tentec at contesting.com
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://lists.contesting.com/mailman/listinfo/tentec
> or, via email, send a message with subject or body 'help' to
> tentec-request at contesting.com
>
> You can reach the person managing the list at
> tentec-owner at contesting.com
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of TenTec digest..."
>
>
> Today's Topics:
>
> 1. Re: Phishing Attempt on list members (rick at dj0ip.de)
> 2. Re: Opinions (rick at dj0ip.de)
> 3. Re: Phishing attempt! (Mike Schatzberg)
> 4. Re: Phishing Attempt on list members (Ron Notarius W3WN)
> 5. Phishing Attempt on list members (Paul A. Ramey)
> 6. Phishing Scam (P C Andy Anderson)
> 7. Re: Phishing Attempt on list members (k8mp at aol.com)
> 8. Re: Phishing Scam (Dave Ryan)
> 9. Re: Phishing Scam (Ron Notarius W3WN)
> 10. Re: Phishing Scam (rick at dj0ip.de)
> 11. Re: Phishing Scam (P C Andy Anderson)
> 12. Re: Phishing Scam (P C Andy Anderson)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Tue, 7 Mar 2017 19:42:16 +0100
> From: "rick at dj0ip.de" <Rick at DJ0IP.de>
> To: "'Discussion of Ten-Tec Equipment'" <tentec at contesting.com>
> Subject: Re: [TenTec] Phishing Attempt on list members
> Message-ID: <000001d29772$8c0e2990$a42a7cb0$@de>
> Content-Type: text/plain; charset="us-ascii"
>
> I don't think it's going through the reflecter, Mike.
> It seems they have hijacked our mailing list and are mailing everyone
> directly.
>
> 73 - Rick, DJ0IP
> (Nr. Frankfurt, Germany)
>
>
> -----Original Message-----
> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of Mike
> Schatzberg
> Sent: Tuesday, March 07, 2017 7:31 PM
> To: Discussion of Ten-Tec Equipment
> Subject: Re: [TenTec] Phishing Attempt on list members
>
> I hope I am not missing something. I have seen nothing untoward posted here
> so far.
>
> I screen every subscription for call sign. This takes several emails back
> and forth to do so because many new subscribers do not include their call
> signs as requested.
>
> In the last week alone, there were 6 membership requests that did not return
> email requests for call signs.
>
> I delete hundreds of postings each week from non subscribers, mostly from
> robots.
>
> I'm hoping nothing gets thru that shouldn't.
>
> 73,
>
> Mike
> W2AJI
> Owner Ten Tec Reflector
>
> Sent from my iPhone
>
>>> On Mar 7, 2017, at 12:32 PM, Rick via TenTec <tentec at contesting.com>
>> wrote:
>>
>>
>> I think I've got several ham radio lists where this is going on.
>>
>> 73s,
>>
>> Rick
>> WO8L
>>
>>
>> -----Original Message-----
>> From: rick at dj0ip.de <Rick at DJ0IP.de>
>> To: 'Discussion of Ten-Tec Equipment' <tentec at contesting.com>
>> Sent: Tue, Mar 7, 2017 11:47 am
>> Subject: Re: [TenTec] Phishing Attempt on list members
>>
>> Bill,
>>
>> You beat me to the punch.
>> I was just about to post a message, warning about the same type of
>> message that I received through the Argonaut Group (also contesting.com
> group).
>> I haven't seen any email traffic on that group for months, and now
>> this email came.
>>
>> Here is the FULL TEXT of the email:
>> ~~~~~~~~~~~~~~~~~~~~~~~
>> Hi,
>> Due to a recent compromise of our servers by some chinese hackers, It
>> has been mandated that we carry out an integrity check to isolate and
>> disable all suspicious accounts. For now we have already placed a red
>> flag on several accounts thereby preventing them from carrying out any
>> financial transactions whatsoever.
>> To ensure that your account was not compromised, you are required to
>> ascertain your identity, failure to do this within 24 hours will lead
>> to account service suspension.
>> Login and Ascertain Your Identity
>>
>> [ DANGEROUS LINK REMOVED ]
>>
>> Thanks for your anticipated co-operation and understanding.
>> The Accounts Team,
>> For Chase Online
>> ______________________________________________________________
>> Argonaut_USERS_Group mailing list
>> Home: http://mailman.qth.net/mailman/listinfo/argonaut_users_group
>> Help: http://mailman.qth.net/mmfaq.htm
>> Post: mailto:Argonaut_USERS_Group at mailman.qth.net
>>
>> This list hosted by: http://www.qsl.net Please help support this email
>> list: http://www.qsl.net/donate.html ~~~~~~~~~~~~~~~~~
>>
>> DELETE THIS TYPE OF EMAIL IMMEDIATELY!
>>
>> 73 - Rick, DJ0IP
>> (Nr. Frankfurt, Germany)
>>
>>
>> -----Original Message-----
>> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of Bill
>> Cotter
>> Sent: Tuesday, March 07, 2017 5:25 PM
>> To: tentec at contesting.com
>> Subject: [TenTec] Phishing Attempt on list members
>>
>> Beware of the phishing attempt you may receive (see below). Someone
>> has harvested names from this list and is targeting "ETO_Alpha" and
> "TenTec"
>> members.
>>
>> 73 Bill N4LG
>>
>>
>> _______________________________________________
>> TenTec mailing list
>> TenTec at contesting.com
>> http://lists.contesting.com/mailman/listinfo/tentec
>>
>> _______________________________________________
>> TenTec mailing list
>> TenTec at contesting.com
>> http://lists.contesting.com/mailman/listinfo/tentec
>>
>> _______________________________________________
>> TenTec mailing list
>> TenTec at contesting.com
>> http://lists.contesting.com/mailman/listinfo/tentec
>
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
>
> ------------------------------
>
> Message: 2
> Date: Tue, 7 Mar 2017 19:48:55 +0100
> From: "rick at dj0ip.de" <Rick at DJ0IP.de>
> To: "'Discussion of Ten-Tec Equipment'" <tentec at contesting.com>
> Subject: Re: [TenTec] Opinions
> Message-ID: <000101d29773$79ac1680$6d044380$@de>
> Content-Type: text/plain; charset="utf-8"
>
> Thank you Jeff.
> You are a very good man for publically apologizing.
> You are very welcome here.
>
> In my nearly 20 years here in the group, I've said much worse than that a time or two and had to apologize a few times as well.
>
> Good luck on finding a good used OII.
>
> On this side of the pond we need the $$$ to drop and the EURO to go back up again so that we can afford Ten-Tecs again.
>
> 73 - Rick, DJ0IP
> (Nr. Frankfurt, Germany)
>
>
>
> -----Original Message-----
> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of Jeffrey L. Bauman via TenTec
> Sent: Tuesday, March 07, 2017 7:18 PM
> To: tentec at contesting.com
> Cc: Jeffrey L. Bauman
> Subject: [TenTec] Opinions
>
> After some days of reflection, I find myself regretting having expressed my opinion on a public forum regarding my perception of the state of Ten-Tec?s customer service and my unfounded, hypothetical projections regarding the company?s prospects for the future. I meant no harm to anyone, though I can see how harm could be an unintended consequence.
> So let me apologize and wish all the success in the world to Mike and Ten-Tec. I own and have owned, used, and continue to appreciate many of its fine rigs, and I hope to add an Orion II to the list when the timing is right.
> JeffW8KZW
>
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
>
> ------------------------------
>
> Message: 3
> Date: Tue, 7 Mar 2017 13:56:14 -0500
> From: Mike Schatzberg <cherokeehillfarm at earthlink.net>
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Subject: Re: [TenTec] Phishing attempt!
> Message-ID: <F0497AF7-25EE-450E-BDAA-7DFDF075D692 at earthlink.net>
> Content-Type: text/plain; charset=us-ascii
>
> John,
>
> Was the email from the 6 meter group server? Or did the email come directly to you?
>
> Tnx,
>
> Mike
> W2AJI
>
> Sent from my iPhone
>
>> On Mar 7, 2017, at 1:14 PM, john brown <n2ydf at hotmail.com> wrote:
>>
>> Just received a very similar email from a 6 meter group. tnx John.
>>
>> Sent from my iPad
>>
>>> On Mar 7, 2017, at 12:00 PM, "tentec-request at contesting.com" <tentec-request at contesting.com> wrote:
>>>
>>> Send TenTec mailing list submissions to
>>> tentec at contesting.com
>>>
>>> To subscribe or unsubscribe via the World Wide Web, visit
>>> http://lists.contesting.com/mailman/listinfo/tentec
>>> or, via email, send a message with subject or body 'help' to
>>> tentec-request at contesting.com
>>>
>>> You can reach the person managing the list at
>>> tentec-owner at contesting.com
>>>
>>> When replying, please edit your Subject line so it is more specific
>>> than "Re: Contents of TenTec digest..."
>>>
>>>
>>> Today's Topics:
>>>
>>> 1. Re: Reflector Op-eds (k8mp at aol.com)
>>> 2. Omni D 160 (Michael Hutchison)
>>> 3. Re: Omni D 160 (Mike Bryce)
>>> 4. Re: Omni D 160 (Steve Ellington)
>>> 5. Re: Argonaut VI (rick at dj0ip.de)
>>> 6. Re: Current Firmware (Vic Klein)
>>> 7. Phishing Attempt on list members (Bill Cotter)
>>> 8. Re: Phishing Attempt on list members (rick at dj0ip.de)
>>>
>>>
>>> ----------------------------------------------------------------------
>>>
>>> Message: 1
>>> Date: Mon, 6 Mar 2017 20:36:47 -0500
>>> From: k8mp at aol.com
>>> To: tentec at contesting.com
>>> Cc: oldlongbeard at yahoo.com
>
>
>
> ------------------------------
>
> Message: 4
> Date: Tue, 07 Mar 2017 13:06:52 -0600 (CST)
> From: Ron Notarius W3WN <wn3vaw at verizon.net>
> To: tentec at contesting.com
> Subject: Re: [TenTec] Phishing Attempt on list members
> Message-ID:
> <30827318.313323.1488913612204.JavaMail.root at vznit170126.mailsrvcs.net>
>
> Content-Type: text/plain; charset=UTF-8
>
> I know what you mean Mike, but (in another sense) I hope that you ARE missing something -- that is, that the phish-mongers this time around aren't getting into this list.
>
>
> At least some of the breaches seem to involve lists that are on the QTH.COM site -- which is not to imply that that site has been hacked, only that someone got access to some of the list email addresses (like the "tentec at contesting.com" address that we use). I've seen one such email come through the ICPO list, and there was a warning on the Pa QSO list about another attempt that was blocked, to name two.
>
>
> Was kind of funny to see the LIST get an email saying that the LISTS's bank accounts
>
>
> All in a days work, sad to say. (You should see some of the phishing attempts that they try to get through to our users at work. )
>
>
> 73, ron w3wn
>
>
> On 03/07/17, Mike Schatzberg wrote:
>
> I hope I am not missing something. I have seen nothing untoward posted here so far.
>
> I screen every subscription for call sign. This takes several emails back and forth to do so because many new subscribers do not include their call signs as requested.
>
> In the last week alone, there were 6 membership requests that did not return email requests for call signs.
>
> I delete hundreds of postings each week from non subscribers, mostly from robots.
>
> I'm hoping nothing gets thru that shouldn't.
>
> 73,
>
> Mike
> W2AJI
> Owner Ten Tec Reflector
>
> Sent from my iPhone
>
>> On Mar 7, 2017, at 12:32 PM, Rick via TenTec <tentec at contesting.com> wrote:
>>
>>
>> I think I've got several ham radio lists where this is going on.
>>
>> 73s,
>>
>> Rick
>> WO8L
>>
>>
>> -----Original Message-----
>> From: rick at dj0ip.de <Rick at DJ0IP.de>
>> To: 'Discussion of Ten-Tec Equipment' <tentec at contesting.com>
>> Sent: Tue, Mar 7, 2017 11:47 am
>> Subject: Re: [TenTec] Phishing Attempt on list members
>>
>> Bill,
>>
>> You beat me to the punch.
>> I was just about to post a message, warning about the same type of message
>> that I received through the Argonaut Group (also contesting.com group).
>> I haven't seen any email traffic on that group for months, and now this
>> email came.
>>
>> Here is the FULL TEXT of the email:
>> ~~~~~~~~~~~~~~~~~~~~~~~
>> Hi,
>> Due to a recent compromise of our servers by some chinese hackers, It has
>> been mandated that we carry out an integrity check to isolate and disable
>> all suspicious accounts. For now we have already placed a red flag on
>> several accounts thereby preventing them from carrying out any financial
>> transactions whatsoever.
>> To ensure that your account was not compromised, you are required to
>> ascertain your identity, failure to do this within 24 hours will lead to
>> account service suspension.
>> Login and Ascertain Your Identity
>>
>> [ DANGEROUS LINK REMOVED ]
>>
>> Thanks for your anticipated co-operation and understanding.
>> The Accounts Team,
>> For Chase Online
>> ______________________________________________________________
>> Argonaut_USERS_Group mailing list
>> Home: http://mailman.qth.net/mailman/listinfo/argonaut_users_group
>> Help: http://mailman.qth.net/mmfaq.htm
>> Post: mailto:Argonaut_USERS_Group at mailman.qth.net
>>
>> This list hosted by: http://www.qsl.net
>> Please help support this email list: http://www.qsl.net/donate.html
>> ~~~~~~~~~~~~~~~~~
>>
>> DELETE THIS TYPE OF EMAIL IMMEDIATELY!
>>
>> 73 - Rick, DJ0IP
>> (Nr. Frankfurt, Germany)
>>
>>
>> -----Original Message-----
>> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of Bill Cotter
>> Sent: Tuesday, March 07, 2017 5:25 PM
>> To: tentec at contesting.com
>> Subject: [TenTec] Phishing Attempt on list members
>>
>> Beware of the phishing attempt you may receive (see below). Someone has
>> harvested names from this list and is targeting "ETO_Alpha" and "TenTec"
>> members.
>>
>> 73 Bill N4LG
>>
>>
>> _______________________________________________
>> TenTec mailing list
>> TenTec at contesting.com
>> http://lists.contesting.com/mailman/listinfo/tentec
>>
>> _______________________________________________
>> TenTec mailing list
>> TenTec at contesting.com
>> http://lists.contesting.com/mailman/listinfo/tentec
>>
>> _______________________________________________
>> TenTec mailing list
>> TenTec at contesting.com
>> http://lists.contesting.com/mailman/listinfo/tentec
>
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
> ------------------------------
>
> Message: 5
> Date: Tue, 7 Mar 2017 13:15:13 -0600
> From: "Paul A. Ramey" <wg0g at arrl.net>
> To: tentec at contesting.com
> Subject: [TenTec] Phishing Attempt on list members
> Message-ID: <3a5200ca-332d-bb7e-a766-7ba511289113 at arrl.net>
> Content-Type: text/plain; charset=utf-8; format=flowed
>
> They are also using the HRD and Wisconsin Ham list with the same REPLY
> email address.
>
> Paul, WG0G
>
> --
> Paul Ramey
> WG0G
> 612-747-1244
>
>
>
> ------------------------------
>
> Message: 6
> Date: Tue, 7 Mar 2017 19:16:59 +0000
> From: P C Andy Anderson <xtraham58 at hotmail.com>
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Subject: [TenTec] Phishing Scam
> Message-ID:
> <BL2PR16MB1059A99EDF09ECB2B04A155AB92F0 at BL2PR16MB1059.namprd16.prod.outlook.com>
>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Howdy all , not being a computer Guru or an IT person, how would I recognize a post that would be a Phishing Scam. I guess it is best not to open any mail unless you know who sent it by name and email address. I am sure I miss a lot of good information but I probably delete a dozen emails for everyone I open.
>
>
> Andy, W3LI
>
>
> ------------------------------
>
> Message: 7
> Date: Tue, 7 Mar 2017 14:18:47 -0500
> From: k8mp at aol.com
> To: tentec at contesting.com
> Subject: Re: [TenTec] Phishing Attempt on list members
> Message-ID: <15aaa35a82d-42dc-18a06 at webprd-a27.mail.aol.com>
> Content-Type: text/plain; charset=utf-8
>
> I haven't received any either. However. I have seen multiple instances of some emails.
> Any idea what's up with that?
>
> Later, Joe, K8MP
>
> Sent from AOL Mobile Mail
>
>
> -----Original Message-----
> From: Mike Schatzberg <cherokeehillfarm at earthlink.net>
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Sent: Tue, Mar 7, 2017 02:01 PM
> Subject: Re: [TenTec] Phishing Attempt on list members
>
>
> I hope I am not missing something. I have seen nothing untoward posted here so far.
>
> I screen every subscription for call sign. This takes several emails back and forth to do so because many new subscribers do not include their call signs as requested.
>
> In the last week alone, there were 6 membership requests that did not return email requests for call signs.
>
> I delete hundreds of postings each week from non subscribers, mostly from robots.
>
> I'm hoping nothing gets thru that shouldn't.
>
> 73,
>
> Mike
> W2AJI
> Owner Ten Tec Reflector
>
> Sent from my iPhone
>
>> On Mar 7, 2017, at 12:32 PM, Rick via TenTec <<a href="mailto:tentec at contesting.com">tentec at contesting.com</a>> wrote:
>>
>>
>> I think I've got several ham radio lists where this is going on.
>>
>> 73s,
>>
>> Rick
>> WO8L
>>
>>
>> -----Original Message-----
>> From: <a href="mailto:rick at dj0ip.de">rick at dj0ip.de</a> <<a href="mailto:Rick at DJ0IP.de">Rick at DJ0IP.de</a>>
>> To: 'Discussion of Ten-Tec Equipment' <<a href="mailto:tentec at contesting.com">tentec at contesting.com</a>>
>> Sent: Tue, Mar 7, 2017 11:47 am
>> Subject: Re: [TenTec] Phishing Attempt on list members
>>
>> Bill,
>>
>> You beat me to the punch.
>> I was just about to post a message, warning about the same type of message
>> that I received through the Argonaut Group (also contesting.com group).
>> I haven't seen any email traffic on that group for months, and now this
>> email came.
>>
>> Here is the FULL TEXT of the email:
>> ~~~~~~~~~~~~~~~~~~~~~~~
>> Hi,
>> Due to a recent compromise of our servers by some chinese hackers, It has
>> been mandated that we carry out an integrity check to isolate and disable
>> all suspicious accounts. For now we have already placed a red flag on
>> several accounts thereby preventing them from carrying out any financial
>> transactions whatsoever.
>> To ensure that your account was not compromised, you are required to
>> ascertain your identity, failure to do this within 24 hours will lead to
>> account service suspension.
>> Login and Ascertain Your Identity
>>
>> [ DANGEROUS LINK REMOVED ]
>>
>> Thanks for your anticipated co-operation and understanding.
>> The Accounts Team,
>> For Chase Online
>> ______________________________________________________________
>> Argonaut_USERS_Group mailing list
>> Home: <a href="http://mailman.qth.net/mailman/listinfo/argonaut_users_group" target="_blank">http://mailman.qth.net/mailman/listinfo/argonaut_users_group</a>
>> Help: <a href="http://mailman.qth.net/mmfaq.htm" target="_blank">http://mailman.qth.net/mmfaq.htm</a>
>> Post: <a href="mailto:Argonaut_USERS_Group at mailman.qth.net?">mailto:Argonaut_USERS_Group at mailman.qth.net</a>
>>
>> This list hosted by: <a href="http://www.qsl.net" target="_blank">http://www.qsl.net</a>
>> Please help support this email list: <a href="http://www.qsl.net/donate.html" target="_blank">http://www.qsl.net/donate.html</a>
>> ~~~~~~~~~~~~~~~~~
>>
>> DELETE THIS TYPE OF EMAIL IMMEDIATELY!
>>
>> 73 - Rick, DJ0IP
>> (Nr. Frankfurt, Germany)
>>
>>
>> -----Original Message-----
>> From: TenTec [<a href="mailto:tentec-bounces at contesting.com?">mailto:tentec-bounces at contesting.com</a>] On Behalf Of Bill Cotter
>> Sent: Tuesday, March 07, 2017 5:25 PM
>> To: <a href="mailto:tentec at contesting.com">tentec at contesting.com</a>
>> Subject: [TenTec] Phishing Attempt on list members
>>
>> Beware of the phishing attempt you may receive (see below). Someone has
>> harvested names from this list and is targeting "ETO_Alpha" and "TenTec"
>> members.
>>
>> 73 Bill N4LG
>>
>>
>> _______________________________________________
>> TenTec mailing list
>> <a href="mailto:TenTec at contesting.com">TenTec at contesting.com</a>
>> <a href="http://lists.contesting.com/mailman/listinfo/tentec" target="_blank">http://lists.contesting.com/mailman/listinfo/tentec</a>
>>
>> _______________________________________________
>> TenTec mailing list
>> <a href="mailto:TenTec at contesting.com">TenTec at contesting.com</a>
>> <a href="http://lists.contesting.com/mailman/listinfo/tentec" target="_blank">http://lists.contesting.com/mailman/listinfo/tentec</a>
>>
>> _______________________________________________
>> TenTec mailing list
>> <a href="mailto:TenTec at contesting.com">TenTec at contesting.com</a>
>> <a href="http://lists.contesting.com/mailman/listinfo/tentec" target="_blank">http://lists.contesting.com/mailman/listinfo/tentec</a>
>
> _______________________________________________
> TenTec mailing list
> <a href="mailto:TenTec at contesting.com">TenTec at contesting.com</a>
> <a href="http://lists.contesting.com/mailman/listinfo/tentec" target="_blank">http://lists.contesting.com/mailman/listinfo/tentec</a>
>
>
> ------------------------------
>
> Message: 8
> Date: Tue, 7 Mar 2017 12:32:52 -0700
> From: "Dave Ryan" <daveryan at wyoming.com>
> To: "'Discussion of Ten-Tec Equipment'" <tentec at contesting.com>
> Subject: Re: [TenTec] Phishing Scam
> Message-ID: <004a01d29779$9e5c45d0$db14d170$@wyoming.com>
> Content-Type: text/plain; charset="us-ascii"
>
> Andy,
> The basic clues are that they'll ask you to update some kind of
> personal account information and 'conveniently' provide you a link to the
> site login. Most reputable sites won't do that. If there's an actual
> problem with something like a bank account or other secure login a reputable
> company will tell you to browse to their site via your web browser and
> login. They won't add a link to the notice email making that easy to do as
> that's how these phishing scams work, they redirect you to a login page that
> looks legitimate (heck anyone can create a convincing looking web page)
> where you'll type in your account name and password info and at that point
> they have you.
>
> Reading the basic email isn't really the problem, but if you aren't dead
> certain of where an email came from then don't click any links or
> attachments and never follow a convenient link to a site login when someone
> says you have account problems to resolve. Always leave the email, if it's
> something like a bank account then contact them by other means (e.g. phone
> to a known number) or at the very least leave your email and use your web
> browser to visit their known site to see if there actually is an account
> problem.
>
> Folks with appropriate IT skills can also look at things like email header
> addressing or inspect URLs to see if the address displayed is a spoof (looks
> like one address but is actually another) but if you aren't familiar with
> those tools then just keep it safe and never click on links embedded in
> emails unless you're certain you know the sender. Even if it's someone you
> know, make sure it makes sense. A common scam these days is for someone to
> get a hold of something like a FB friend's list and you'll get an email,
> presumably from a good friend, that instructs you to click an embedded link.
> But the giveaway is that there's no actual friendly discussion in the email,
> nothing like how are you doing Andy and how is it going with........ just a
> link, a hello and something like 'Here's the Info you requested' when you
> haven't actually requested info from this person. Don't click on that link,
> don't reply and just delete the email. You can always reach out to the
> friend via other channels and double check to see if they really did send
> you something.
>
> Google, stuff like 'avoiding phishing scams' or similar and you'll get a lot
> of practical info.
>
> -Dave
> K7TRF
>
> -----Original Message-----
> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of P C Andy
> Anderson
> Sent: Tuesday, March 7, 2017 12:17 PM
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Subject: [TenTec] Phishing Scam
>
> Howdy all , not being a computer Guru or an IT person, how would I recognize
> a post that would be a Phishing Scam. I guess it is best not to open any
> mail unless you know who sent it by name and email address. I am sure I miss
> a lot of good information but I probably delete a dozen emails for everyone
> I open.
>
>
> Andy, W3LI
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
>
> ------------------------------
>
> Message: 9
> Date: Tue, 07 Mar 2017 13:35:09 -0600 (CST)
> From: Ron Notarius W3WN <wn3vaw at verizon.net>
> To: tentec at contesting.com
> Subject: Re: [TenTec] Phishing Scam
> Message-ID:
> <15536680.314479.1488915309144.JavaMail.root at vznit170126.mailsrvcs.net>
>
> Content-Type: text/plain; charset=UTF-8
>
> Andy,
>
>
> Oh, where to start?
>
>
> Some of the obvious signs that an email isn't exactly kosher...
>
>
> Domain names that are "one off" -- slightly different name, .net instead of .com, etc.
> Allegedly from a bank or finance company you do not and never have done business with
> Informing you that you need to update your account information, just go to this handy dandy link provided
> Hover your mouse over the link. If the email address doesn't even come close, especially if it's a link to another country, its suspicious!
> And...
> Second, third, or more time that you've gotten the same email, almost word for word, from a different alleged source.
>
>
> I could go on, but let's not drift too far off.
>
>
> 73, ron w3wn
>
> On 03/07/17, P C Andy Anderson wrote:
>
> Howdy all , not being a computer Guru or an IT person, how would I recognize a post that would be a Phishing Scam. I guess it is best not to open any mail unless you know who sent it by name and email address. I am sure I miss a lot of good information but I probably delete a dozen emails for everyone I open.
>
>
> Andy, W3LI
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
> ------------------------------
>
> Message: 10
> Date: Tue, 7 Mar 2017 21:17:03 +0100
> From: "rick at dj0ip.de" <Rick at DJ0IP.de>
> To: "'Discussion of Ten-Tec Equipment'" <tentec at contesting.com>
> Subject: Re: [TenTec] Phishing Scam
> Message-ID: <000801d2977f$c9ad6330$5d082990$@de>
> Content-Type: text/plain; charset="us-ascii"
>
> Andy,
>
> In the case of the email I got purporting to be from the Argonaut group
> reflector, it was signed by the Chase Bank Team.
>
> Now why would Chase Bank be sending a collective email to the Argonaut
> group?
> How stupid is that. It was a dead give-away.
>
> But also as Jo pointed out, no legitimate organization will include a link
> and ask you to click it.
> Instead they would tell you to go to your account as normal and log in.
>
> These links are ALWAYS bogus and Pfishing.
>
> 73 - Rick, DJ0IP
> (Nr. Frankfurt, Germany)
>
>
> -----Original Message-----
> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of P C Andy
> Anderson
> Sent: Tuesday, March 07, 2017 8:17 PM
> To: Discussion of Ten-Tec Equipment
> Subject: [TenTec] Phishing Scam
>
> Howdy all , not being a computer Guru or an IT person, how would I recognize
> a post that would be a Phishing Scam. I guess it is best not to open any
> mail unless you know who sent it by name and email address. I am sure I miss
> a lot of good information but I probably delete a dozen emails for everyone
> I open.
>
>
> Andy, W3LI
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
>
> ------------------------------
>
> Message: 11
> Date: Tue, 7 Mar 2017 21:11:48 +0000
> From: P C Andy Anderson <xtraham58 at hotmail.com>
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Subject: Re: [TenTec] Phishing Scam
> Message-ID:
> <BL2PR16MB1059C94257BFFCCC600D7B5DB92F0 at BL2PR16MB1059.namprd16.prod.outlook.com>
>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Dave, thank you very much for the information. Too bad there are AH's out there causing trouble. Will pass along to family.
>
>
> 73's Andy, W3LI
>
>
>
>
> Andy,
> The basic clues are that they'll ask you to update some kind of
> personal account information and 'conveniently' provide you a link to the
> site login. Most reputable sites won't do that. If there's an actual
> problem with something like a bank account or other secure login a reputable
> company will tell you to browse to their site via your web browser and
> login. They won't add a link to the notice email making that easy to do as
> that's how these phishing scams work, they redirect you to a login page that
> looks legitimate (heck anyone can create a convincing looking web page)
> where you'll type in your account name and password info and at that point
> they have you.
>
> Reading the basic email isn't really the problem, but if you aren't dead
> certain of where an email came from then don't click any links or
> attachments and never follow a convenient link to a site login when someone
> says you have account problems to resolve. Always leave the email, if it's
> something like a bank account then contact them by other means (e.g. phone
> to a known number) or at the very least leave your email and use your web
> browser to visit their known site to see if there actually is an account
> problem.
>
> Folks with appropriate IT skills can also look at things like email header
> addressing or inspect URLs to see if the address displayed is a spoof (looks
> like one address but is actually another) but if you aren't familiar with
> those tools then just keep it safe and never click on links embedded in
> emails unless you're certain you know the sender. Even if it's someone you
> know, make sure it makes sense. A common scam these days is for someone to
> get a hold of something like a FB friend's list and you'll get an email,
> presumably from a good friend, that instructs you to click an embedded link.
> But the giveaway is that there's no actual friendly discussion in the email,
> nothing like how are you doing Andy and how is it going with........ just a
> link, a hello and something like 'Here's the Info you requested' when you
> haven't actually requested info from this person. Don't click on that link,
> don't reply and just delete the email. You can always reach out to the
> friend via other channels and double check to see if they really did send
> you something.
>
> Google, stuff like 'avoiding phishing scams' or similar and you'll get a lot
> of practical info.
>
> -Dave
> K7TRF
>
> -----Original Message-----
> From: TenTec [mailto:tentec-bounces at contesting.com] On Behalf Of P C Andy
> Anderson
> Sent: Tuesday, March 7, 2017 12:17 PM
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Subject: [TenTec] Phishing Scam
>
> Howdy all , not being a computer Guru or an IT person, how would I recognize
> a post that would be a Phishing Scam. I guess it is best not to open any
> mail unless you know who sent it by name and email address. I am sure I miss
> a lot of good information but I probably delete a dozen emails for everyone
> I open.
>
>
> Andy, W3LI
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
> ------------------------------
>
> Message: 12
> Date: Tue, 7 Mar 2017 21:13:51 +0000
> From: P C Andy Anderson <xtraham58 at hotmail.com>
> To: Discussion of Ten-Tec Equipment <tentec at contesting.com>
> Subject: Re: [TenTec] Phishing Scam
> Message-ID:
> <BL2PR16MB10591793CF81834EE88B34D7B92F0 at BL2PR16MB1059.namprd16.prod.outlook.com>
>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Ron, thanks for the information. I will pass it along to the family.
>
>
> 73's Andy, W3LI
>
>
> ________________________________
>
>
> Andy,
>
>
> Oh, where to start?
>
>
> Some of the obvious signs that an email isn't exactly kosher...
>
>
> Domain names that are "one off" -- slightly different name, .net instead of .com, etc.
> Allegedly from a bank or finance company you do not and never have done business with
> Informing you that you need to update your account information, just go to this handy dandy link provided
> Hover your mouse over the link. If the email address doesn't even come close, especially if it's a link to another country, its suspicious!
> And...
> Second, third, or more time that you've gotten the same email, almost word for word, from a different alleged source.
>
>
> I could go on, but let's not drift too far off.
>
>
> 73, ron w3wn
>
> On 03/07/17, P C Andy Anderson wrote:
>
> Howdy all , not being a computer Guru or an IT person, how would I recognize a post that would be a Phishing Scam. I guess it is best not to open any mail unless you know who sent it by name and email address. I am sure I miss a lot of good information but I probably delete a dozen emails for everyone I open.
>
>
> Andy, W3LI
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
> TenTec Info Page - Contesting<http://lists.contesting.com/mailman/listinfo/tentec>
> lists.contesting.com
> Welcome to the Ten-Tec mailing list! This list is intended for the exchange of information on Ten-Tec-related topics ONLY. Off Topic subject postings should be ...
>
>
>
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
> TenTec Info Page - Contesting<http://lists.contesting.com/mailman/listinfo/tentec>
> lists.contesting.com
> Welcome to the Ten-Tec mailing list! This list is intended for the exchange of information on Ten-Tec-related topics ONLY. Off Topic subject postings should be ...
>
>
>
>
>
> ------------------------------
>
> Subject: Digest Footer
>
> _______________________________________________
> TenTec mailing list
> TenTec at contesting.com
> http://lists.contesting.com/mailman/listinfo/tentec
>
>
> ------------------------------
>
> End of TenTec Digest, Vol 171, Issue 16
> ***************************************
More information about the TenTec
mailing list