Tag Archives: scam

Don’t click that link in your email. Please.

Posted on by The Old Wolf

I shouldn’t have to keeps saying this, but far too many people just don’t practice “safe computing’ and as a result end up getting their computers infected by malware, losing their data, having their information stolen by criminals, being robbed, or all of the above.

Phishing message with dangerous link

Red flag #1: This message is not from Venmo. The email address of the sender is “0vmlwfglxague7g0kzs@oneautousa.com” which is not a venmo address; the domain leads to an essentially empty storefront of a generic “church.” Either the domain was created for the purpose of scamming people, or an otherwise unrelated domain was hijacked to have malicious content injected into its directory structure, or the email address was simply spoofed. In any case, it’s a clear indication that this email is not from Venmo.

Red Flag #2: “Congratulation.” Uh, no. That’s not what a message written by English-speakers would say. We’re dealing with Nigerian scammers here, or something similar.

Red flag #3: The link on the “accept money” button looks like this:

malicious link, not from Venmo

If you hover your mouse over any button or link in an email, the actual address where you will be taken will be shown at the bottom of your browser (at least that’s where it is in Chrome.) However, most of these deceptive links will re-direct one or more times, so you really never know where you’ll end up. But if the original link is not a “venmo.com” address, then you know you’re being taken for a ride.

Red Flag #4: “Click her” I suspect she, whoever she might be, will not appreciate being clicked. Real emails from real corporations do not generally contain obvious typographical errors like this.

So, as is my wont, I clicked on the “Accept Money” link just to go down the rabbit hole and see where I ended up. Malwarebytes told me the page was malicious, but I’m pretty well protected so I advanced anyway.

Instead of getting any money through Venmo (which I didn’t expect), I ended up on a “survey” page.

Again, not from Venmo, but camouflaged to look as though it is. All of the “verified” comments are without doubt spurious. The questions below are carefully crafted to keep the illusion going that the survey is from Venmo. It ain’t.

So once you give your answers, you end up at a “reward” page with 26 different offers you can claim. But beware – every single one of these is as phony as Donald Trump’s tan, and if you claim any of them you will end up paying a lot of money for next to no value.

Limited Supply! Act fast, offer expiring! [These are the “scarcity” and “urgency” sales ploys.]

This is the first reward on the list. Check the “Terms and Conditions:”

By placing an order, you agree our special deal club and we will bill you $0.00 S&H + $6.98 = Total: $6.98 (one-time purchase, no auto-ship) plus tax where applicable for your initial order, and every thirty days thereafter we will send you a new product from our special deal club, and automatically bill you the low price of $0.00 S&H + $6.98 = Total: $6.98 (one-time purchase, no auto-ship) plus tax where applicable.

So you’re getting a really cheap fitness tracker for 7 bucks, and committing yourself to getting another piece of slum [that’s what the carnival hucksters call the cheapest prizes they hand out] for another 7 bucks every 30 days, until you catch on and cancel. Which will be hard to do, I can guarantee it. And, you’ve given your contact information and your credit card number to extremely disreputable people. I cannot count the number of ways that this is a bad idea.

A couple of rows down is an offer for an iPad Pro. But again, after you give them your information so that they can spam you forever, you read the “Terms and Conditions:”

Claim your chance now! Sign up for a 30-day trial to Best Tech Giveaways and get the chance to win a new iPad Pro and Magic Keyboard! This contest is not made by or in cooperation with Apple. The winner will be contacted directly by email. All new customers participate in the prize draw for the shown campaign product. If you are the lucky winner, you will be contacted directly by email. This special offer comes with a 30-day trial to an affiliated subscription service, after which the subscription fee (37.97 USD every 30 days) will be automatically deducted from your credit card. If, for any reason, you are not satisfied with the service, you may cancel your account within 30 days. The service will be renewed every 30 days until canceled. This campaign will expire on December 31, 2021. If you wish to participate without signing up for a 30-day trial to besttechgiveaways, please send an email to support@besttechgiveaways.com.

What you’ve “won” is a chance. Your odds of winning that iPad are about the same as hitting the Powerball. Don’t hold your breath.

You might end up at another similar website whose small-print terms are like this:

As a user of Blue Ice Group, you agree to a deeply discounted LIMITED user fee of nine dollars and ninety-five cents ($9.95), the LIMITED user price. If you’re happy in approximately 7 days you will receive an email offer to purchase 30 days for our low one-time price of eighty-six dollars and sixty-one cents ($86.61), the 30 day FULL PLAN. We will continue to send you offer to purchase upon expiration of your user terms via text or email (data rates may apply) approximately every 28 days simply reply N to postpone, please allow up to 10 days to process your payment. You can continue to view our Premium Content including exclusive games, beta games, motivational content, exercise videos, diet, nutrition and other VIP Benefits unless you choose to cancel. You may cancel your purchase anytime by contacting our customer support center by email, or toll-free telephone (877) 327-2393. THE WEBSITE IS ALLOWED TO COLLECT AND STORE DATA AND INFORMATION FOR THE PURPOSE OF THE USUAL OPERATIONS AND FUNCTIONS OF THE WEBSITE.

So you’re authorizing a ten-dollar charge for the privilege of being sent offers, and will likely be charged $81.61 every month until you raise the alarm.

No money from Venmo, just a lot of scammy, spammy malvertising and potentially dangerous websites.

Don’t click that link.

The Old Wolf has spoken.

Facebook Login Scam

Posted on by The Old Wolf

The email above was in my spam folder, hence automatically suspicious. If you click on that “to cONTACT” button, you can see that the mail was not sent by Facebook but by someone at “beratinind.co.uk.” Maybe. That was probably spoofed as well.

Whether you “Report the user” or “Yes, me” (note the poor grammar), you will be sending email to this list of people:

PeterQuinn615@outlook.com; zikorugbyman87@gmail.com; frank.lion92@gmail.com; paulm8756@gmail.com; akilzachary3@gmail.com; frank.kolar@aol.com; brandon.mathis2@aol.com; addod.dghi@aol.com; zachary.akili20@gmail.com; saifalik654@gmail.com; manuchkacharm@gmail.com; anucharma04@gmail.com; apex.garcinia@gmail.com; skountnh01@gmail.com; jilaliikram467@gmail.com; selmajaydonqa@gmail.com; toddgarciaytt@gmail.com; johncardhg@gmail.com; lindaarreyytt@gmail.com; shelleyjamesvr@gmail.com; jackdodos18@gmail.com; benlysara1@yahoo.com; angiefieldni@gmail.com; jamessmiller2017@gmail.com; oliviajimmybr@gmail.com; feryoussra@gmail.com; crowellmaryjh@gmail.com; hamptonbenew@gmail.com; xaletoclaimservices8@gmail.com; jackdone974@gmail.com; lendingwinship@gmail.com; mariejfried@yahoo.com; zakary.akeli@gmail.com; elian-barr@hotmail.com; benlysara2@yahoo.com; ronnie.lamb11@gmail.com; zakaria.elakili2@gmail.com; poppyevie785@gmail.com; zakaria.elakili3@gmail.com; elghandour.ayman007@gmail.com; zakaria.elakili4@gmail.com; xidemotu1236@yahoo.com; goku_zakaria@yahoo.fr; belf.mana@gmail.com; skounza1991@hotmail.com; zaach2016@yandex.com; fighting.life@hotmail.com; iliana.canon@gmail.com; gary-ingram1235@hotmail.com; justin-merrill@hotmail.com; zachary-es@outlook.es; zachrary19332@outlook.cz; zachary-de@outlook.de; skounzaneg2@outlook.com; skounzabox0@hotmail.com; amelia-clemons@outlook.fr; zachary-sosa@outlook.fr; CarlBell528@outlook.com; support@itangerstory.site; CarlBell528@outlook.com; BorisEllison940@outlook.com

And who knows what you will be sending? Or what they will do with whatever you send them? At the very least, you are confirming to all these people that you are a live, valid email address and will thus be guaranteed to receive an even greater flood of spam and scam emails.

Be careful out there.

The Old Wolf has spoken.

The “Lonely Hearts” scam

Posted on by The Old Wolf

Messages like this may pop up in your Facebook messenger feed, or on any other social media channel. People who are lonely might actually respond, in which case they will be groomed for personal information or asked for money once a “relationship” is established.

Hallmarks of this particular scam are bad grammar and formatting, flattery, and requests for assistance.

These are not people looking for love, they are scammers and criminals. They want your money or your personal information. Shun them. Delete their messages. Never answer.

A more detailed explanation of this type of scam can be found at Pathways Financial Credit Union.

HELLO DEAR.
My name is Miss Marvis Gaasu.
I am glad to meet you here; Please, write me in this email id.(obfuscated@yahoo.com).
It very important.i wait your reply fast,Or you send me your email address,i will send you my photos and details your email address. Thanks.

If you respond, those photos they send you will most likely be stock pictures lifted from the internet.

Hello dear friend i am Kate Brown by name,i am interested to be your true friend.please I will like you to reply me with my email (katebrown4@yahoo.com ) so that i can send you my own information for us to know each other very well. Thanks bye. obfuscated@yahoo.com ❤ ❤

Interesting that all these scammers are using yahoo addresses. That’s another red flag.

Hello new friend,
greeting to you. How was your days and health? Hope all is well with you. My name is Miss Favour Mercy, I am a female. I am interested in you after going through your profile on facebook, and i decided to contact you. I would like to get acquaint with you, As well to know you better. Please write me back through this email address: (obfuscated@yahoo .com) so that i can send you my picture and let you know more about me. Write me on my email address, because i do not use facebook very often, If you contact me on facebook, you may not probably get any reply from me. I am eager to hear from you soonest! Thanks for your answer: Yours new friend Miss Favour Mercy.

If you contact the scammer on Facebook, it’s very likely that their profile has already been deleted as being fraudulent.

Protect your vulnerable loved ones from this sort of thermonuclear douchebaggery.

The Old Wolf has spoken.

Enjoy your eternity, Scammers.

Scam – Beware of Finetwo.com

Posted on by The Old Wolf

This was brought to my attention by a friend of mine who got stung – apparently this outfit claims to have ample supplies of sanitizer and masks, but when you order you get shoddy merchandise or, in most cases, nothing at all.

The company claims it has been in business for 10 years, but Whois shows that the website was created on March 21, 2020. Because this website is operating from somewhere outside the USA, recourse is limited to calling your financial institution and asking them to reverse the charges; sometimes this is a major hassle as it involves having your credit card cancelled, issuing a new one, and then registering it with all the places you use for automatic payment, but at this point it’s all we have.

I’d like to blame China because they have all the ethics of a starving honey badger and the CCP turns a blind eye to such jiggery-pokery, but in all honesty it could be running from anywhere.

So be careful, and if you get stung – it’s easy to do, even if you’re on the lookout – don’t hesitate to call your financial institution.

The Old Wolf has spoken.

The Facebook Scammers and the “EESA Grant” scam

Posted on by The Old Wolf

Be careful out there, the scumbags are still working in force to separate you from your hard-earned cash.

Got a message today from a Facebook friend:

Now, this friend doesn’t usually contact me from out of the blue, so I was immediately suspicious. Add to that the fact that the account was flagged as:

  • Using Messenger without Facebook (I know my friend has a facebook account)
  • Logged in using a phone number from the United States
  • Account was recently created (This friend has been around for quite a while)

All of these are red flags, and so I knew beyond the shadow of a doubt that I was dealing with a stolen or cloned account. I proceeded to go down the rabbit hole to see what their game was today.

“i have something to shear whit you ?” My friend is an educated American, not someone who sounds like a third-grader or a Nigerian prince. A quick Google shows that EESA stands for Eastern European Study Abroad, but that’s probably not what I’m going to hear. So let’s take this a little further.

He’s “so confused that I haven’t heard anything about it.” Well, isn’t that special. The EESA exists, but in 2008 it created the $700 billion Troubled Asset Relief Program to purchase toxic assets from banks. In short, it was the bank bailout, and had nothing to do with grants to individuals.

These Nigerians love to use strange names. “Christopher Wisdoms,” “Martins Tanjul,”and the like. The grammar continues to be blatantly non-English.

Anyone who calls you “dear” who isn’t in your intimate circle of friends is without question going to be a scammer, and most likely Nigerian. They don’t understand that “Dear Sir” is part of a formula, and not something to be used indiscriminately.

So now I have a phone number to text, probably an accomplice or the same drone. Let’s see what we get.

  • “some other lucky communities”
  • “all beneficiaries name was chosen randomly through a computer ballot for fans of face-book who surf it frequently”

Grant programs don’t work like that, you cretin.

And now they want personal information. At this point I was about to shut things down. But the Facebook scammer (most likely the same individual) got impatient (another red flag – why would this “friend” care if I reach out to “Mr. Wisdoms” or not?)

If I had given “Mr. Wisdoms” my name and email address, things would probably have progressed to the point of “You need to send me $2500 for taxes and fees to collect your grant” or some other similar nonsense. But I wasn’t about to share even that with these criminal drones. Instead, I hauled out my stock response, and sent it both via Facebook and text message:

An “onioburu” is a gong-farmer (otherwise known as a nightsoil handler, someone who empties excrement buckets for a living.) Not a nice thing to call someone, but these are not nice people. The fact that he responded with “Lol” and then went silent was proof enough that he got the message.

Be so very careful out there. Any time a friend or contact starts talking about money, unless it’s someone you know and trust, assume it’s your money they want and break off communication.

Stay safe, and watch out for your loved ones who may be elderly or vulnerable.

The Old Wolf has spoken.

More sextortion

Posted on by The Old Wolf

People who send things like this out are the dung of dung-eaters. Please never fall for these shady extortion efforts.

From: “Ava Avila” <ava.avila@qwod.cia-gov-it.ga>
To: [redacted]
Subject: Central Intelligence Agency – Case #45693781

Case #45693781
Distribution and storage of pornographic electronic materials involving underage children.

My name is Ava Avila and I am a technical collection officer working for Central Intelligence Agency.
It has come to my attention that your personal details including your email address [redacted] are listed in case #45693781.
The following details are listed in the document’s attachment:

  • Your personal details,
  • Home address,
  • Work address,
  • List of relatives and their contact information.

Case #45693781 is part of a large international operation set to arrest more than 2000 individuals suspected of paedophilia in 27 countries.
The data which could be used to acquire your personal information:
Your ISP web browsing history, DNS queries history and connection logs,
Deep web .onion browsing and/or connection sharing, Online chat-room logs, Social media activity log.

The first arrests are scheduled for April 8, 2019.

Why am I contacting you ?

I read the documentation and I know you are a wealthy person who maybe concerned about reputation.
I am one of several people who have access to those documents and I have enough security clearance to amend and remove your details from this case. Here is my proposition.

Transfer exactly $10,000 USD (ten thousand dollars – about 2.5 BTC) through Bitcoin network to this special bitcoin address:

3C36DiGhcf4LvznzC6B2MWduPrL9rakgRp (note: this is a scam bitcoin address, never use it for anything.)

You can transfer funds with online bitcoin exchanges such as Coinbase, Bitstamp or Coinmama. The deadline is March 27, 2019 (I need few days to access and edit the files).

Note: I didn’t see this email until April 9, 2019 – thus far I haven’t been arrested by the CIA. 🤣😜🤣

Upon confirming your transfer I will take care of all the files linked to you and you can rest assured no one will bother you.

Please do not contact me. I will contact you and confirm only when I see the valid transfer.

Regards,

Ava Avila
Technical Collection Officer
Directorate of Science and Technology
Central Intelligence Agency

The executive summary: “I’m a corrupt CIA agent, and if you bribe me $10,000 I’ll make your child-pornography file go away.”

Look at this email address: ava.avila@qwod.cia-gov-it.ga – it’s from a domain in Gabon. These people are dumber than a pile of bricks.

Never fall for scummy tricks like this. Never give money to scammers. Be careful out there.

The Old Wolf has spoken.

Snake Oil from the 1890s

Posted on by The Old Wolf

I saw this today over at Teresa’s Frog Applause strip, and thought I’d share it just because I found it fascinating.

Phytolacca Decandra, if you were not sure, is pokeweed – a toxic plant with no known legitimate medical uses and a host of applications in folk medicine.

It’s poisonous. That’s all I need to know about it. Unlike the fugu (puffer fish of Japan) which is supposedly delicious if prepared properly and fatal if not, this stuff really has no compelling reason to eat it unless one were starving, much like the pioneers in Utah who survived on sego lily bulbs after their arrival in the Great Salt Lake basin. It did keep them alive, but I’ve never been tempted to try them.

As I mentioned in earlier articles, thanks to cable television and the internet, there seems to be a new “hot” thing every year or so, hawked by the likes of Dr. Oz and a horde of affiliate marketers – green coffee extract, garcinia cambogia, exogenous ketones, chitosan, bromelain, coral calcium, the list is endless.

Take a pass on any remedy that claims to allow you to lose weight effortlessly. Just don’t waste your money. None of them work. It’s a sad fact that most of us love to eat, that the most comforting foods are high-density carbohydrates (often cooked in delicious, satiating fat), and that pounds are frightfully easy to put on and frightfully hard to take off. The only way to release weight consistently is to live with a caloric deficit, even a slight one. Eat a healthier, more balanced diet, burn more than you eat (exercise helps in a lot of different ways, but pushaways are the best dinner-table exercise you can do), and you will drop pounds.

Stay away from the snake oil.

The Old Wolf has spoken.

Affiliate Marketing – How many lies can they cram in?

Posted on by The Old Wolf

I’ve written before about affiliate marketing, and what a plague it is on the internet. I just had a tab pop up on my browser – despite two ad-blockers being active – and I thought I’d share an image or two.

Health experts recommend losing between 1-2 pounds a week for healthy weight release. This claim amounts to close to 1 lb per day. Ain’t gonna happen, unless you’re eating 500 calories per day and burning 3,500. In addition, this claim is not backed by Fox News (as disreputable as they may be in other areas), the NY Times, Today, Oprah, Style Watch, or Redbook.

This is not going to happen in 22 days. Look, children, this is what we call “a lie.”

Limited time only: Lie
Only 4 Bottles Still Available: Lie
40% discount: Negated at the purchase page.
Offer ends Today: Lie

Countdown timer at the bottom of the page: Another Lie.

Let’s look at the purchase page:

This page claims to send you free bottles: Lie
Only 241 promotions left: Lie
Endorsements: Lie
Lose weight without exercising: Lie

So if you want that free product and provide your information (which, by the way, will be sold to every marketer with two coppers to rub together), you get this:

Oh look, you’re being charged $59.95. That’s not free, nor is it the 40% discount promised on a previous page. And if you don’t notice that the 6-bottle option is checked, the charge on your credit card is going to be horrendous.

But wait, there’s more!

Buried deep on the purchase page in light gray print is the link to “terms and conditions,” which very few people will bother to read. If they do, they’ll find a wall of text, which includes these hidden gems (there’s a lot more of it)

Terms
SCOPE & APPLICATION
1.1 You expressly agree and accept the Conditions set forth herein unconditionally as a binding contract (“the Agreement”) enforceable by law… (How well this load of BS would stand up in court is an open question)

PRODUCT AND BILLING
2.1 All product purchases made from this website are required to be paid in full. For more information about our products, please visit http://www.ketopurediet.com.
2.1.1. The prices for the products are as follows: $199.99 or $28.57 each for the 7 bottle package;$149.95 or $29.99 each for the 5 bottle package; $99.99 or $33.33 each for the 3 bottle package and $69.99 each for the 1 bottle package, plus $7.95 shipping and handling. Shipping and handling is non-refundable.
2.2 You authorize us to initiate a one-time charge to your credit card as indicated upon your purchase. (So, not free at all)

This next one is a real treasure:

16.7 I also acknowledge that I understand that by placing my order of Keto Pure Diet, I am automatically enrolled in the Keto Pure Diet health community program. I further acknowledge that I understand that my membership in Keto Pure Diet is included in my product purchase, that my complementary membership will remain active for as long as I remain an active custom of Keto Pure Diet, and that once I am no longer an active customer of Keto Pure Diet the membership dues shall, at my option, become my responsibility. I hereby grant authorization for the monthly membership dues to be charged to the credit card or debit card used to complete the purchase of Keto Pure Diet. I further acknowledge, agree to, and accept the Keto Pure Diet Privacy Policy, the Keto Pure Diet Website Use Terms and Conditions, the Keto Pure Diet Terms and Conditions, and the Keto Pure Diet Health Coin Terms and Conditions. I acknowledge that I understand that my Keto Pure Diet my Keto Pure Diet membership can be canceled at anytime by calling 1-888-628-6284, by emailing support@ketopurediet.com. Your Keto Pure Diet membership entitles you and your household dependents to consultation fee free calls with licensed doctors 24-hours per day, 365-days per year, as well as access to thousands of dentists with typical savings of 50% off regular bills, vision care savings, and prescription savings at most pharmacies in the US. To learn more value to the included Keto Pure Diet program, go to http://www.ketopurediet.com, and look for emails explaining the programs and services included in the membership.

Notice that if you stop ordering this product, you have just given permission for monthly dues to some worthless program to be charged to your credit card, and nothing is ever said about how much those monthly dues are until you’ve bitten the hook.

There’s a lot more legal noise in those terms and conditions, which mostly assure you that the company has all rights and that you have very few.

But what about the product itself? Is it any good? will it work? Wow, it’s so easy:

The ketogenic diet has been around for a long time. There is a massive body of information out there about it, some positive and some negative. While the marketeers would have you believe that exogenous ketones (i.e. the stuff that comes from outside your body) can put you into a state of ketosis in minutes, that’s highly debatable. So if you want to release weight with a ketogenic diet, follow step 2 above (but be sure to consult with your healthcare provider before beginning any program of this nature.) Step 1 can be safely replaced with:

  • Singing opera 10 minutes a day
  • Painting with Bob Ross
  • Learning to speak Turkish
  • Taking homeopathic weight loss drops
  • Not taking homeopathic weight loss drops
  • Standing on your head and spitting nickels
  • Anything
  • Nothing

… and you’ll get exactly the same results, whatever those are.

The Internet is awash with pages like this, because most affiliate marketers will say absolutely anything to get you to buy the product, for which sale they get a commission. And most affiliate marketers have the ethics of an angry honey badger.

Don’t be taken in by “offers” like this from sleazy, irresponsible salespeople. Stay away from any product that claims to help you lose weight fast.

Be careful out there.

The Old Wolf has spoken.

The scammers are getting desperate

Posted on by The Old Wolf

A friend of mine in Finland just got one of these, it falls into the same category as the sextortion scam about which I have already written: desperate bad guys blasting out millions of emails to the entire world, hoping to catch the handful of people who *do* visit adult sites, have unsecured webcams, a guilty conscience, and very little education.

In this case, they’re hoping to snare the fearful and gullible segment of the world’s populace. It astonishes me that people could be so foolish as to fall for these kinds of scams, but if it didn’t work at some level, the bad guys wouldn’t do it.

But the takeaway here is the same as always: This is a scam, there’s no truth to it, and you should never send money to criminals. Please keep your loved ones, particularly the elderly and vulnerable, educated and protected.

The Old Wolf has spoken.

The “computer services” refund scam

Posted on by The Old Wolf

A new sort of scam call has been infesting my phone in the last week or so. The number calling is 405-493-8251.

If you answer, you hear a recorded voice with a heavy female India accent telling you that “our company is closing and you are due a refund for computer services. Please press 1 to speak to an executive.” If you call back, the ringtone changes to an international-sounding one, and you are put in touch with someone in an Indian boiler room who asks you how much you paid for computer support last year.

Following the scam down the rabbit hole, I told the individual that I had paid $495.00. I was told, “I will refund you that amount right away.” I was then given step-by-step instructions to download and run either Supremo or TeamViewer, which would give them complete access to my computer.

It goes without saying, never do this! If you allow criminals to have total access to your computer, they would steal information or upload malware or ransomware to your machine. Any legitimate organization would not need remote access to issue a refund for something.

These drones are targeting anyone gullible or uninformed, but specifically people who were scammed by a previous con for fake computer assistance.

Be careful out there. Protect your elderly or vulnerable loved ones, and make sure they understand that things like this are the worst kind of scam.

The Old Wolf has spoken.