Millersmiles Forum - Phishing, email hoaxes and scams discussion

[hermie]

Help! Does anyone have experience of these spoof e-mails who can re-assure me that if you don't enter any data then you are probably safe. I had such an e-mail about two months ago and clicked the link before I realised it was a spoof site - I did not enter any passwords or account or credit card details but I have recently been victim of a credit card fraud. The liklihood is that the card was cloned somewhere else BUT I need to know that the site could not have downloaded a KEYLOGGER trojan and captured my card details the next time I made an internet purchase. I have run every anti spyware software known to man and can't find anything, but as I can't think of any other way my card could have been cloned, I'm terrified to use my new card on the internet.
If anyone has any knowledge I would be very grateful.
Thanks

[mikeo]

I get them every day, Mostly I ignore them, but sometimes I fill in all the details, yes with spoof data. Its easy to generate Visa cards numbers that will at first seem to be genuine and invent names and addresses to go with them. It then bu+++s up the phishers and wasts their time.
I did find one phishing site that had a very poor design and was able to exploit a buffer overflow, they were outside the EEC.
I often send my site warning notice that the site allows entry only on MY Conditions and these allow excessive, vicious strike back!
Sometimes I have had a grovelling apology from the site supervisor.

BTW I have been into computing since 1961, IBM STRETCH using fortran-2.
I worked for years for the UK Government. AWE, MOD(Navy), etc.
I am now retired and do a bit of data recovery. I used to use my tower data recovery system and stick the target HDD in the second caddy, but from HongKong on eBay I bought for just over a tenner including shipping a truely excellent device. Its a small USB card with a power supply. It has an IDE (Desktop), Laptop and a SATA interface, so any old dual boot (Linux/WinXP) PC or laptop can be used to break in and recover data.
From my experience, IT security is very difficult if anyone can get physical access, but data recovery is often a trivial task with free software. I personally wouldn't keep any confidential information on a PC (or Mac, though I have never hacked or even run a Mac!)I don't do on line banking and for paypal I use a special bank account. Every day I get exposure to eCrime.
If I reported it I would gum up the works. Typically I get 70 to 100 emails each day plus 60 to 80 spam, of which 10 to 15 are eCrime. I am a moderator on several groups.