Printable Version of Topic
FightBack Forums _ The Flame Pit _ Argos refund!
Posted by: facade Sat, 3 Feb 2018 - 08:48
Post #1353497
Had a text from Argos (it stacked under Argos, along with the "your order is ready for collection" texts- which is a bit odd...)
Apparently, I have a refund due of £180!
Obvious scam, as if Argos ever sell anything for £180 why didn't they put £179.99 or something*
The link takes me to a page that looks exactly like the Argos log-in, (except none of the hot links to store finder etc work) and when I logged in, somehow guessing Ivor.Biggun's password, I am asked to enter card numbers, security code, mothers maiden name, address, DOB .........
Do people seriously fall for this??
I suppose 1 in 1000 would do nicely.
On a serious note, why did it stack up with kosher Argos texts, is there a sender flag that they are spoofing in an SMS message?
* The one from the DVLA last week was much more believable, my refund is £48.73 or something, I wonder how long it will take to come? (They wanted my bank account number, card security number and my mother's maiden name too, seems a bit OTT when they always refund by cheque, in the hope that you will be unable to find a "bank" that is still open........ )
Posted by: Jlc Sat, 3 Feb 2018 - 08:56
Post #1353498
QUOTE (facade @ Sat, 3 Feb 2018 - 08:48)
...and when I logged in, somehow guessing Ivor.Biggun's password,
I usually leave choice words too but I suspect the humour will be lost on the recipient. (I can picture them frantically trying to logon as Ivor)
Posted by: Redivi Sat, 3 Feb 2018 - 09:05
Post #1353499
Is it illegal to provide the details of parking company bank accounts along with their directors' details ?
Posted by: facade Sat, 3 Feb 2018 - 09:05
Post #1353500
I wouldn't ever have clicked the links on the PC (probably Kaspersky would have stopped me, along with passing my every keystroke to Russia...)
But on my ancient iphone 4, I'm never going to do anything secure or plug it into the PC, and I was curious....
Posted by: Fredd Sat, 3 Feb 2018 - 10:07
Post #1353516
QUOTE (facade @ Sat, 3 Feb 2018 - 08:48)
On a serious note, why did it stack up with kosher Argos texts, is there a sender flag that they are spoofing in an SMS message?
All they have to do is spoof the Caller ID so that it matches Argos' - it's trivial. There's no authentication built in to SMS messaging; it was designed in more innocent times, and certainly nobody imagined it being used for critical purposes such as 2FA.
QUOTE (Jlc @ Sat, 3 Feb 2018 - 08:56)
I usually leave choice words too but I suspect the humour will be lost on the recipient. (I can picture them frantically trying to logon as Ivor)
I doubt they care, or even notice as exploitation of the information is doubtless automated. Providing obviously bogus details may even help them; there's a school of thought that phishing emails are deliberately made obvious to screen out the people who won't fall for subsequent steps in the scam, and so concentrate the pool of victims.
Posted by: DancingDad Sat, 3 Feb 2018 - 10:15
Post #1353519
QUOTE (Fredd @ Sat, 3 Feb 2018 - 10:07)
....... Providing obviously bogus details may even help them; there's a school of thought that phishing emails are deliberately made obvious to screen out the people who won't fall for subsequent steps in the scam, and so concentrate the pool of victims.
It's certainly true the other way, even with begging emails let alone phishing.
Be seen as gullible, earmarked as one of the sheep to be sheared.
Posted by: typefish Sat, 3 Feb 2018 - 10:17
Post #1353521
QUOTE (facade @ Sat, 3 Feb 2018 - 08:48)
Do people seriously fall for this??
I suppose 1 in 1000 would do nicely.
A colleague's wife did this, except didn't hit enter.
DOB, NI, credit card, bank account, everything.
There were fears that that logging took place on data entry (as opposed to when you hit enter) but so far nothing has been stolen
Posted by: cp8759 Sat, 3 Feb 2018 - 12:27
Post #1353561
In the past I've found these websites are hosted on hacked legitimate website, and if you notify the owner of the legitimate website they take it down pretty quickly.
Posted by: bama Sat, 3 Feb 2018 - 17:32
Post #1353723
QUOTE (typefish @ Sat, 3 Feb 2018 - 10:17)
QUOTE (facade @ Sat, 3 Feb 2018 - 08:48)
Do people seriously fall for this??
I suppose 1 in 1000 would do nicely.
A colleague's wife did this, except didn't hit enter.
DOB, NI, credit card, bank account, everything.
There were fears that that logging took place on data entry (as opposed to when you hit enter) but so far nothing has been stolen
Stay alert on it, it is a valid fear. javascript can send back your tying in a web page on the fly.
Posted by: typefish Sun, 4 Feb 2018 - 11:33
Post #1353907
QUOTE (bama @ Sat, 3 Feb 2018 - 17:32)
QUOTE (typefish @ Sat, 3 Feb 2018 - 10:17)
QUOTE (facade @ Sat, 3 Feb 2018 - 08:48)
Do people seriously fall for this??
I suppose 1 in 1000 would do nicely.
A colleague's wife did this, except didn't hit enter.
DOB, NI, credit card, bank account, everything.
There were fears that that logging took place on data entry (as opposed to when you hit enter) but so far nothing has been stolen
Stay alert on it, it is a valid fear. javascript can send back your tying in a web page on the fly.
Indeed, the only reason I know about this was because the worried colleague wanted me to look into the webpage to see what was happening but unfortunately it had been taken down before I had the chance.
Powered by Invision Power Board (http://www.invisionboard.com)
© Invision Power Services (http://www.invisionpower.com)