This happened few hours ago.

Client: I received an email which says that I won 1 million dollars. They gave me a link in the email, when I entered my credit card details nothing happened.
Me: Wait what? You entered your credit card details.
Client: Yes
Me: That was a scam, you didn’t win anything. They stole your credit details. Contact your bank ASAP and let them know about this.
Client: You guys are handling our email servers, why can’t you guys keep it safe. What type of security do you guys provide.
Me: Wait what? We host your website application not email.
Client: Damn it. My son said the same thing, but I didn’t listen to him. Anyways Cheers.

Hello!
I'm a member of an international hacker group.

As you could probably have guessed, your account [cozyplanes@tuta.io] was hacked, because I sent message you from it.

Now I have access to you accounts!
For example, your password for [cozyplanes@tuta.io] is [RANDOM_ALPHABET_HERE]

Within a period from July 7, 2018 to September 23, 2018, you were infected by the virus we've created, through an adult website you've visited.
So far, we have access to your messages, social media accounts, and messengers.
Moreover, we've gotten full damps of these data.

We are aware of your little and big secrets...yeah, you do have them. We saw and recorded your doings on porn websites. Your tastes are so weird, you know..

But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched!
I think you are not interested show this video to your friends, relatives, and your intimate one...

Transfer $700 to our Bitcoin wallet: 13DAd45ARMJW6th1cBuY1FwB9beVSzW77R
If you don't know about Bitcoin please input in Google "buy BTC". It's really easy.

I guarantee that after that, we'll erase all your "data" :)

A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.

Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.

You should always think about your security.
We hope this case will teach you to keep secrets.
Take care of yourself.

>> RE >>
Well f### you, thanks for telling my password which is obviously fake. I have sent your details to the local police department, shall rest in peace. Don't earn money by this kind of action. STUPID!

My private Email Account got hacked when I was in school, and they sent out a mail with something along the lines of "hey, you should really use this product to lose weight, it is great" to all of my contacts. Many of them ignored it, some of them called me to inform me about the issue (the worst part was, long after I used 2fa and changed passwords regularly, they still had my name and contact list, so they just made email adresses that looked like mine and continued to send out spam to my contacts). Anyway, one teacher of mine didn't know that this was a scam and was insulted because I regularly sent emails about her losing weight. And as if the whole situaion, which I couldn't do anything about, wasn't bad enough, my parents and I had do have a 1h conversation (which ended up in me explaining how those hacks work, and luckily she understood, but still). Never again. I prefer those fake ms support guys that call me over this every day.

FUCK CORPORATE EMAIL SPAM

AND I DON'T MEAN SOME SOME EXTERNAL SCAM/AD/PISHING EMAILS

I MEAN THE SHIT MY OWN COMPANY SENDS TO ME

LIKE:

"tHE WelLbeIng Course : SiGN In now!!!!!"

"#MoRnIngcOfFEE witH SOME cORporatE TWAt"

"Give togetHER : LETs circLE JerK OurSeLveS in SOMe fuCKiNg oNLiNe mEetInG !!!!!!!"

I DON'T FUCKING CARE !

I GET DOZENS (IF NOT FUCKING HUNDREDS) OF SUCH SHIT EMAILS EVERY DAY.

IF I GO ON VACATION, I HAVE TO SPEND HOURS TO SORT SHIT OUT

I HAVE HAD TO SET UP ELABORATE OUTLOOK RULES TO GET IT SORTED AUTOMATICALLY INTO SOME MANAGEABLE FOLDERS (AND SPEND SOME OF MY LIMITED TIME, HERE ON EARTH, TO DO SO)

AND GUESS WHAT

THANKS TO THOSE STUPID RULES I MISSED, ONE FUCKING IMPORTANT EMAIL

CAN YOU JUST STOP FUCKING SPAMMING ME ?!!!

FOR CHRIST SAKE AND I DON'T CARE ABOUT THIS STUPID CORPORATE BULLSHIT

STOP SENDING IT TO ME

This is some state of the art scam

I just received this gem this morning.
First of let me start by saying that I am against scammers and all this Nigerian prince crap.
But some of this shit is so bad that it actually pisses me off. My intelligence feels insulted.

Look at this email. These fuckers spent hours perfecting the Hotmail feel to it. The logo, design and even font are in par. As I started reading the shit, the spelling mistakes are so obvious that I wondered; do these nut suckers know that whatever email editor they use, it autocorrects for you? Are they just ignoring the recommendations? I mean they could've even used the "Did you mean" feature in Google. Or any of the freely available grammatical check sites out there.

Think of this as plagiarism. It's bad but a majority of us can appreciate a well planned out one.

I'm yet to encounter a really good scam email that almost had me click their link. There's always an obvious stand out! Is there like a copyright holder to a perfectly well put scam email?!

(And yes, you just read a rant about someone complaining that scammers aren't doing a great job)

Oh my God...
A colleague of mine got an email. The email was badly translated into our language (probably Google translate was used) it said 'please open invoice attached'.
The anti-virus software successfully marked it as a virus, and did not allow my colleague to open attached 'invoice.exe' file.
Now by this point you would think that the person would just delete the email, but no. The colleague looked at me, and with the bitchiest voice said 'I got an invoice and can't open it after your anti-virus installation. Fix it!'
Needless to say, I had to explain, what a virus is and teach all the colleagues not to get hooked on scam mail... Took about 4 hours to explain this seemingly simple concept.
Fuck knows, how they did not nuke their IT infrastructure before I came here :/

When I left school I decided to apply for a junior dev role. I received a call back later that day and they tried to sell me access to some course with the promise of a job afterwords. They gave me a website to visit to find more information.

I Googled the company and found that it was as I suspected a scam and that they had been praying on the jobless for sometime.

So, I played around on the site they told me to visit for a while and found a rather simple SQLI. I managed to pull the admin email/password (which they stored as plain text) the email address belonged to a Gmail account.

I tried the password for the Gmail account turns out the account belongs to the person running the scam. I find an email from the hosting account and you guessed it the password was the same.

I pulled the site down and replaced it with a picture of the person running the scam along with his name and the words "I'm a dirty scammer".

Then I sent all the info to the police (he'd been running a few others scams too) not sure what that lead to I didn't hear anything back.

Luv this fake email I received yesterday, didn't know Microsoft used DPD to deliver their emails lol!!!

My dad got this scammy E-Mail today...
The strange thing was, the sender and recipient were the same address, but I'll get back to that.
Unfortunately, I can't show it to you, but it said something like this:
"As you can see, I wrote this E-Mail from *YOUR* address. I have hacked your Account. Please pay me 300$ in bitcoin to this address: (address here) ..."
You get the point.
Now... my dad was pretty worried about the Account actually beeing hacked. One of his coworkers also got the same E-Mail. I told him that it's easy to fake the 'From' Header of an E-Mail, at least with the mail command on Linux. So I ssh'd into one of my Servers and sent him an E-Mail from lol@lol.de. Obviously, he didn't expect it to be that easy. Now he believes me that this is a scam and will tell his coworkers tomorrow.

From what I read in that E-Mail there was no part about recipient specific stuff, so I guess someone just wrote one text and made a simple bash Script for that... as you can see, people really do fall for this shit.

Now one question: is there a way to track down the Servers the E-Mail went through? Or is there anything one can do, apart from ignoring it?

When scammers want to follow GDPR regulations - the worst SCAM ever 🤦‍♂️

Long story:
I have just received a SMS message, informing me that my phone number is in several marketing databases. It also had a link to the website called stop-sms.pl, where you're supposed to be able to unsubscribe from those lists. At this moment I felt a little bit confused - the SMS seemed suspicious, but on the other hand who doesn't want to get rid of all this SMS crap. So I carefully followed the link to see the website with a form to fill with personal data - phone number included 😆 If that is not enough to realize that this is just a lame scam website, just below the input where you enter the phone number there are Terms and Conditions where it directly states that: "By filling the form you agree that your personal data (name, email, phone number) will be used for marketing purposes." - WTF?!

Who the f... gets fooled by such crap?! 😂😂😂

I was using the app Jobr to apply for random positions. It’s like tinder — only you swipe to send your resume.

A week or so later I got an email from a company locally that wanted to set up an interview. I honestly thought it was a scam! I didn’t even remember applying for the job.

Long story short, they’re mostly desktop developers, and I’m the first front end web guy. I was initially hired to help with UI stuff but on the last project I was developing Service Workers. So I guess I just get invested and give my fullest.

Now myself and one of the other programmers are working on the 3rd gen of our software, built with Vue.js and rest APIs.

I'm the only one who keep receiving phishing emails about not existing Netflix subscriptions from evident scam email addresses on a daily basis?
I tend to have more of those than newsletters I never subscribed to.

Come on, man, at least try harder to steal my data or money.

Oh my dear internet,

FUCK THIS FUCKING SHIT
I AM SICK AND TIRED OF IT, WHO BUILT THIS HACKED TOGETHER ORWELLIAN SWAMP PIT?

Fuck the same fucking Envato template on every content page with 70 layers of sidebars, inline ads, popups, cookies and content shifting as if I was playing CATCH UP WITH YOUR FUCKING CONTENT.

FUCK the same fucking annual upselling 'plans' on every 7-day trial overengineered scam app that requires me to sign up for 1 fucking, falsely advertised task where my fucking password generator doesn't even recognize the input as a password field so I have to cmd+, to my FUCKING BABYLONIAN PASSWORD ARCHIVES PROMPTING ME FOR THE MASTER PASSWORD.
Thank god I can at least CREATE A BURNER CREDIT CARD THAT FREEZES ITSELF BECAUSE I CANNOT BE BOTHERED TO UNSUBSCRIBE FROM YOUR FUCKING STEAMING CRAP.

FUCK every fucking step I take being recorded by our CYBERPUNK OVERLORDS REQUIRING ME to sign up for 5 different fucking privacy protection tools' annual plan or duct tape some open source shit onto my browser just for some BASIC PRIVACY WHILE TRYING TO NAVIGATE ALL THE OTHER 5000 annuals plan naval mines like A FUCKING FRENCH SUBMARINE IN 1940 GERMAN WATERS.

FUCK my walled garden scam ecosystem not being compatible with your walled garden scam ecosystem prompting me to reactivate my old SATANIC GOOGLE DON'T BE EVIL ACCOUNT from 2012 sending me on a DANTE ALIGHIERI STYLE ODYSSEY THROUGH THE 9 LAYERS OF PASSWORD RESET QUESTIONS, UNEXPECTED ERROR, 2FA MY PHONE DIED HELL to come out on the other side as a broken man.

Thank GOD I have your useless SUPPORT PAGE to aid with my signup problems that is actually just an FAQ with a hidden EASTER EGG HUNT for your support form CRISP AI BOT THAT IS ALSO 'currently experiencing high demand due to COVID' which is peculiar since that has been 3 years ago, but fortunately for you enabled you to fire ALL YOUR SUPPORT STAFF AND REPLACE IT WITH THIS BANNER.

I might as well just SCRAPE your fucking content, it'd be faster.

And although it is quite funny, FUCK THIS PAGE TOO for having me create another of 10.000 accounts to write this shit, where my browser firmly placed a newly created burner email into the PASSWORD FIELD.

I do not know how we managed to create something that is even more unwieldy than 56k DIAL-UPS, but I know that if this shit continues I'll have to train my own AGI to proudly interact with of all this STUPID SHIT on my behalf or I'll have to move into THE FUCKING MOUNTAINS AND LIVE WITH THE DEER.

Brave Browser.

There’s a reason why brave is generally advised against on privacy subreddits, and even brave wanted it to be removed from privacytools.io to hide negativity.

Brave rewards: There’s many reasons why this is terrible for privacy, a lot dont care since it can be “disabled“ but in reality it isn’t actually disabled:

Despite explicitly opting out of telemetry, every few secs a request to: “variations.brave.com”, “laptop-updates.brave.com” which despite its name isn’t just for updates and fetches affiliates for brave rewards, with pings such as grammarly, softonic, uphold e.g. Despite again explicitly opting out of brave rewards. There’s also “static1.brave.com”

If you’re on Linux curl the static1 link. curl --head
static1.brave.com,
if you want proof of even further telemetry: it lists cloudfare and google, two unnecessary domains, but most importantly telemetry domains.

But say you were to enable it, which most brave users do since it’s the marketing scheme of the browser, it uses uphold:

“To verify your identity, we collect your name, address, phone, email, and other similar information. We may also require you to provide additional Personal Data for verification purposes, including your date of birth, taxpayer or government identification number, or a copy of your government-issued identification
Uphold uses Veriff to verify your identity by determining whether a selfie you take matches the photo in your government-issued identification. Veriff’s facial recognition technology collects information from your photos that may include biometric data, and when you provide your selfie, you will be asked to agree that Veriff may process biometric data and other data (including special categories of data) from the photos you submit and share it with Uphold. Automated processes may be used to make a verification decision.”

Oh sweet telemetry, now I can get rich, by earning a single pound every 2 months, with brave taking a 30 percent cut of all profits, all whilst selling my own data, what a deal.

In addition this request: “brave-core-ext.s3.brave.com” seems to either be some sort of shilling or suspicious behaviour since it fetches 5 extensions and installs them. For all we know this could be a backdoor.

Previously in their privacy policy they shilled for Facebook, they shared data with Facebook, and afterwards they whitelisted Facebook, Twitter, and large company trackers for money in their adblock: Source. Which is quite ironic, since the whole purpose of its adblock is to block.. tracking.

I’d consider the final grain of salt to be its crappy tor implementation imo. Who makes tor but doesn’t change the dns? source It was literally snake oil, all traffic was leaked to your isp, but you were using “tor”. They only realised after backlash as well, which shows how inexperienced some staff were. If they don’t understand something, why implement it as a feature? It causes more harm than good. In fact they still haven’t fixed the extremely unique fingerprint.

There’s many other reasons why a lot of people dislike brave that arent strictly telemetry related. It injecting its own referral links when users purchased cryptocurrency source. Brave promoting what I’d consider a scam on its sponsored backgrounds: etoro where 62% of users lose all their crypto potentially leading to bankruptcy, hence why brave is paid 200 dollars per sign up, because sweet profit. Not only that but it was accused of theft on its bat platform source, but I can’t fully verify this.

In fact there was a fork of brave (without telemetry) a while back, called braver but it was given countless lawsuits by brave, forced to rename, and eventually they gave up out of plain fear. It’s a shame really since open source was designed to encourage the community to participate, not a marketing feature.

Tl;dr: Brave‘s taken the fake privacy approach similar to a lot of other companies (e.g edge), use “privacy“ for marketing but in reality providing a hypocritical service which “blocks tracking” but instead tracks you.

I received this random email. Can someone explain me from dev side how does someone send this scam if the email was sent from xxx@google.com?

This is what I’ve got on LinkedIn today People are getting creative, not sure how to respond to that. I am curious to see what this scam is all about 🤷‍♂️

Dear PappyHans,

I hope this email finds you well and safe. My name is **** and I work for ******, a leading expert network company based in New York. I am currently working with a client who is conducting a project and needs expertise on Digital Engineering - ***** .

After some research I did regarding the topic, I concluded that you would be a great fit for this project, given your experience.

Please, let me know if you would be willing to share your expertise on this subject through a paid phone consultation. For your input and time, you will be compensated with a fee that you can set yourself. As a reference – the average rate of our consultations is around 400$/hour.

It is essential to note that in no way will you be asked to discuss your current employer nor any kind of confidential information during the phone consultation.

Should you be interested in this subject, I would be more than happy to address any questions regarding the topic on LinkedIn or by phone

Kind Regards
(Sender name)

The latest scam someone that works with me fell for - I hope I just prevented the rest of my company from falling for (will know tomorrow). Firstly we use fucking imap, secondly how the fuck did you email me to tell me I can't receive emails???

Still pretty well executed.

Received this scam email, but honestly how long that email! those people are crazy mother fuckers.

I just launched my startup and I got an email the other day telling ME that open enrollment for benefits has started and I need to send information by clicking the attachment.

We don't offer benefits. 😬

They had the company logo in shitty res as the signature.

Kind of curious to see what the HTM attachment was tho. It's obviously a phish. 🎣

So I got a scam email... well I hope it’s a scam email
Saying that they know my email and password, stating the email and password (I think it was the correct password or maybe older version), have installed whatever on my OS and want blackmail me w/ my info for money or else they’ll release it in 48 hrs and ugh
I have exams, honestly can’t be fucked dealing with this.

It is a scam right???

#concerned
#dumbass

Just an idea...

Fuck scam calls and texts. I feel like wrapping their phone cords around their necks and beating them with the handset.

So short story long, I'm looking at developing a website that has a list of websites and endpoints for text and call subscriptions. The stupider the better. Enter the annoying phone number or email address, subscribe them to every damn service on the list, and let the fun begin.

Has anyone got any such websites they'd like included?

Just did an elixir job interview for tsg global, 10 hr test, got the email of fuck you email. Do not fuck with this company they will scam you out of your time i should have spent my 10 hrs wiser lesson learned, im going to be a homeless elixir dev with 20 yrs exp. All cuz parasitic companiess like this. I submitted a prod ready solution that was most likely what they wanted built and i did fir free cuz i dont wanna be homeless. I hate life.