*ONLINE - EMAIL SCAM SECURITY ALERT*
Today a new Suspicious Email arrived in the IN Box of one of our peer groups who uses a gmail account.
It reportedly came from a User at AOL dot COM with the Sent From and Reply To Email Address: marylynntolle AT aol.com -- which may or may not be a real email address being used to spoof or fool users into thinking its from a real person at aol DOT com with that Email Address.
Note: Email addresses in emails sent to you can be faked. The Sent From and Reply To fields can be manipulated using offline or online email programs.
It contains a link to click on -- to a supposed Shared File At Drop Box dot Com, that is believed to be a FAKE DROP BOX location -- located in the country of Columbia or the U.S. States of Missouri or Colorado, so far.
When a user clicks on the link (don't you do it! We do it in lab conditions with developer browser tools to prevent infections from viruses, malware) it goes to a site that shows a Drop Box type background, kind of making one think they are at Drop Box dot Com.
 |
| efynelmantenimiento Reg |
But, the actual website is at a Domain efynelmantenimiento DOT com -- apparently is located in the country of Columbia (and maybe hosted in Colorado Springs, Colorado !?).
The purported Domain Name Registrant is listed as Efrain Correa de la rosa -- with registered Email of efynelgeneralservices AT hotmail DOT com.
It's unknown if the webmaster of that Columbian site [ Efynel General Services ] even knows that a dropbx/view sub-folder(s) have been created on their Domain and is being emailed out.
 |
| Efynel General Services |
It definitely looks Fishy!
 |
| Domain Registered Email |
In Safari Browser, when one tries to go to the DropBox Link - A PHISHING WARNING message comes up -- to warn users against continuing onto the site.
 |
| Safari Phishing Warning |
When you land on the site you see choices to make to Sign In or Register using various Email Accounts.
It looks like you have to Log In using one of your email addresses, in order to gain access to the 'Shared' Drop Box Files -- which all looks bogus, unless you are naive or in a hurry or distracted while checking your email.
 |
| Faux Drop Box Landing |
It 'looks' official to many folks -- with logos of various popular email services with their logos displayed.
This apparent Phishing Site wants unsuspecting users to Click on and Sign In using your current Gmail, Yahoo, AOL or Other Email Account.
 |
| Faux AOL Log In |
After an Email Account choice is made and Clicked on -- then pop up boxes come up asking you to login to your Email Account with your User Name and Password.
 |
| Faux Gmail Sign In |
It looks like if you do that, that Columbian website will have YOUR REAL USER NAME & PASSWORD so they can hack into your email account(s).
 |
| Faux Outlook Sign In |
We searched for marylynntolle at aol dot com and found just a handful of links to that email address and info about Daughters of The American Revolution, Missouri and not much else.
 |
| Faux Yahoo Sign In |
Except a couple things about Wounded Warriors project with the same AOL Email Address.
Some links to Lee's Summit, Missouri.
 |
| Google: marylynntolle aol com |
An email has been sent to the purported Sender [ marylynntolle at aol dot com ] asking if she did in fact, send this Suspicious Email with the link to a Drop Box on the Columbian Server Domain [ efynelmantenimiento dot com/dropbx/db/view/ ] or not.
Be Aware. Be Safe. Do not open or click on strange email without checking out its origins first.
Final Note:
The Company shown on the Domain Name Root appears to be a legitimate company, located in Columbia.
 |
| Domain Root Looks Real |
We question why the Sender chose the marylynntolle AT aol User Name and don't know why the Domain Name linked Registration information has ties to both Columbia and Colorado Springs locations.
Smells like a cannabis connection to me.
Someone upset about postings to do with Ending Prohibition instead of for mega profit and tax burdening and criminalizing 'legalization' that many states have been conned into passing, perhaps.
Or, it's just someone in Colorado or Columbia using resources to send out what looks like spam phishing emails with bogus links.
Very strange indeed! Beware All Fakes & Posers !
Many of our peers have seen their User Names and Real Names on many social media sites, they never signed up for and saw strange posts that they did not write being posted.
REMEMBER:
Most Americans with Credit Files have already likely had their names, social security numbers, address; credit; banking; loan; mortgage; income; dates of birth COPIED AND STOLEN (vis a the last 145 Million Name Equifax Breach of any number of other breaches of security on internet systems over the past several decades).
ASSUME NOW THAT MOST EVERYONE'S
ONLINE PERSONAL DATA HAS
ALREADY BEEN COMPROMISED.
TO BE UPDATED WHEN MORE INFO RECEIVED.
END
.
No comments:
Post a Comment