| |

419

adviserangelo0@gmail.com (Advisor Angelo) writes under the subject line "VERY URGENT!!!!!!!!!"

Obviously, one has to pay careful attention to such a missive.

FCRO Subsection: 

The situation in Afghanistan is appalling. Exactly how appalling, we cannot know unless we are present. As journalists fly in, report from the tarmac or, in one case, from just outside the airport gates as bullets flew, we get a multitude of one-dimensional pictures that create a collage but not a cohesive whole. Stories of abuse are rife but on the other hand so are stories that the Taliban is far from the version of 20 years ago. All we can say is that the situation is extraordinarily complex, dangerous and it's likely to become far, far worse.

In the middle of all of this, a mail arrives. It's headed "Urgent request from Mohammed."

FCRO Subsection: 

I am so blessed. This chap has purloined money from a cryptocurrency account and wants to send it to me. So he chose an address at antimoneylaundering.net.

FCRO Subsection: 

We haven't seen this one for a while, or rather we've not seen it in this format.

The simplest and oldest 419 scam is back in time for Christmas.

And once more, Google is complicit. Look at the "reply to" address. How is not possible that they are not required to identify and block things such as this? Oh, yes. They say "we are google. We are big. You can bog off."

FCRO Subsection: 

You just know it's going to be a fraud when the subject line reads "[email address], KINDLY GET BACK TO ME ASAP!!!"

When the "from" is a pretentious name for a law firm ('SMITH GLOBAL LAW') and the address an obviously fictitious "Smithlegaloffice@Un.org" The deal is almost sealed. That final nail in the coffin of the approach is the return address: Smithlegaloffice@mail.ru . If he'd sent from that, our filters which automatically delete undelivered and unread items from mail.ru would have meant it didn't reach its target.

But we're glad it did - for it's a demonstration of the cyclical nature of fraud. This is a genuinely vintage classic.

FCRO Subsection: 

There's more than USD2,000 million in moneys clawed back from fraudulent deals.

Oh, wait. It's a spam-scam. And it wants you to send your identification documents "via" a telephone number. Genius.

FCRO Subsection: 

We get the best of the best when it comes to examples of rubbish spam-scams. This just made our day.

FCRO Subsection: 

We can barely contain the laughter. This scam e-mail is the same old same old but unlike so many, it's beautifully written. But what's not funny is that Microsoft and Google continue to facilitate fraudulent conduct.

FCRO Subsection: 

Perhaps in the Arab world the usual hook for spam-scammers of a few hundred thousand dollars, or even a couple of million, is small change. So this fraud is offering me more than 25 million (undefined) dollars in a most unusual manner. But then it turns to a bog standard, old fashioned, Nigerian (advance fee fraud) Scam.

BIScom Subsection: 

The advance fee, or 419, scam industry is always looking for new opportunities and the fraudsters like to use genuine background as the reason they make contact with potential victims. A case in the High Court of England and Wales has created the conditions that are ideal for fraudsters as a hook.

We'ld like to thank Mr Andrea Van for the opportunity to earn 10% of USD125,500,000. His email address, should you want to take him up on his offer, is mabutdengjok@gmail.com. So, not Andrea Van, then. And he's apparently sent from infor@inbox.com which hardly encourages faith in his bona fides and nor does the fact that he's spoofed that address: inbox.com does not authorise his IP address, 165.227.107.154, for sending mail. So, basically, every verifiable "fact" is a lie. And that's before we get onto what he's offering.

Aw, bless, as they say in London's East. This scam is just so funny it's sad. It's supposedly from a central bank. Guess who's?

FCRO Subsection: 

It's amazing: the old 419 scam still works enough for people to persist in using it. From mail in envelopes via, in some cases, telex and then fax and onto e-mail, they just keep on coming. This one purports to come from someone working at Barclays Bank.

BIScom Subsection: 

We looked up the domain used for this spam-scam: samba-bank.co.uk. There's something not quite right about the available information but it's too limited to be sure that the domain has, either, been critically compromised or that it has been obtained by fraudsters. But it's not the first spam we've had that uses this same domain. Perhaps someone from Samba would like to tell us if the domain is, in fact, under their control. The spam-scam, itself, is interesting, too. It's the first time for a while we've seen a 1970s style Nigerian Scam letter and even the language is in the old style!

BIScom Subsection: 

Pages

hahagotcha