How To Keep Your Computer Safe
|
|
How To Keep Your Computer Safe |
Sample fraud email:
At first glance, this appears to be a valid message. All the links at the bottom of the page point to actual eBay webpages. But If we view details about the message, we see:
Return-Path: <apache@lucy.floogy.net>
Received: from unknown (HELO lucy.floogy.net) (216.127.78.112)
by 0 with SMTP; 6 Jan 2005 21:42:20 -0000
Received: (from apache@localhost)
by lucy.floogy.net (8.11.6/8.11.6) id j06MdBa07221;
This shows us that the email did not come from eBay but from another site (lucy.floogy.net).
In addition, if we look at the "click here" link within the text of the message, we see
http://218.150.220.111:81/signin.ebay.com/ws2/eBayISAPI.dll/b2baf0b6a57d39abd6c44b48d6fe3559112c21e54b7e705ecc5116b3c7c38c37949e8aa81848934faf0821be04210e8c2ded3c4159edbee3ee1439f3892a3e91/
At first glance, this
looks like it could be a legitmate eBay website, too -- after all, it does
include signin.ebay.com. But before that, we see 218.150.220.111:81.
This would actually connect us to a different website.
Last Updated: 6 January 2005