I have a Paypal account and I buy a lot of stuff from eBay. My account is connected to my Yahoo email; it used to be with my office email but sometimes our firewall treats Paypal emails as spam.
Anyway, I checked my Yahoo account yesterday and there was a notice that I sent payment of 395.85USD to someone for buying an Omega Constellation Watch (must've been a fake watch that one ). Scrolling down the message there was an area which asked if this transaction is not authorized; I should click on the Problem Resolution Center. I clicked on it and the website appeared which definitely looked like Paypal. It asked me to log in; which I did. The next step was that it asked for my First Name, Last Name, Credit Card info, etc. This actually struck me as being strange. Since I had a Paypal account, logging in automatically tells the website who I am and what my personal details are.
What I did was immediately logged out. I then logged in again and changed my password and secret question (when you forget your password this one prompts you). Logged out again, then logged in and checked my history or activity. It showed that there was no purchase done on the said date (when I supposedly bought a watch). I forwarded the suspect email to: 'sp[email protected]' for them to clarify and investigate for me. I also checked with my credit card company and thankfully they said that there was no activity related to the case I described.
This morning I checked my Yahoo email and Paypal responded saying that they have verified the email to be a fake. The first point is that Paypal will never address you as "Dear Member or Dear Paypal Member". The second point is that there was a difference in the URL used by the fraud link. For those of you who use Paypal; please take some time off and read a little more on this. There's a "Contact Us" section, from there you can type "Fraud" in the search field. A topic saying "How do I differentiate between a fake and authentic email from Paypal" (or something like that).
Lastly, Paypal said that if I did fill out the information requested by the fraud URL; chances are my credit card info would have been obtained and who knows what can happen. I'm sending you a copy of the email I received. PLEASE TREAT THIS AS REFERENCE ONLY. DO NOT COPY OR CLICK ON ANY LINKS.
Cheers
Rob
------------------------------------------------------------------------
--------------------------------------------------------------------------
PayPal <[email protected]>" <[email protected]> Add to Address Book Add Mobile Alert
Subject:
Your payment has been sent to [email protected]
Date:
Tue, 10 Jan 2006 20:20:01 -0700
Dear PayPal Member,
This email confirms that you have paid OMEGAMOVE ([email protected]) $395.85 USD using PayPal.
This credit card transaction will appear on your bill as "PAYPAL OMEGAMOVE".
--------------------------------------------------------------------------------
PayPal Shopping Cart Contents
Item Name:
Omega Constellation Men Watch - mint
Quantity:
1
Total:
$380.85 USD
Cart Subtotal:
$380.85 USD
Sales Tax:
$15.00 USD
Cart Total:
$395.85 USD
--------------------------------------------------------------------------------
Shipping Information
Shipping Info:
James Dickinson
184 Hadley Dr.
Chicago, IL 60614
United States
Address Status:
Unconfirmed
--------------------------------------------------------------------------------
If you haven't authorized this charge, click the link below to cancel the payment and get a full refund.
Dispute Transaction
--------------------------------------------------------------------------------
Thank you for using PayPal!
The PayPal Team
First: check on which domain you are checked.
Most fraud email don't link to real sites.
However: you see good link for example http://www.paypal.com/authorize.html in email, but when you hover over the link, below your good email client you can see real link in status bar, for example http://paypal.proof.nu/auth/login.php or so. Or strange ipnumber http://12.31.78.2/paypal/auth.html.
(links are not real - just for example, no need to clicking!!!!)
Yes, don't look blindly on words on the email. Look always behind the emails: which real links are here used? Is there not extra words used, is grammar okay, and looks altijd first on official sites if there is indeed happens. If there is indeed such information available then you can look further. If there is warning about fake emails, trash the email immediately or forward to paypal site for examining fraud links.
Such strange links are not linked to www.paypal.com. That is why you must always check the real links where you going to.
And when the fraud email links real to www.paypal.com site, then is fraud email useless.
Full image fraud emails are almost fake. You can always trash them.
Similar thing happened to me with an Amazon spoof site. Of course, the email was in HTML and the link redirected me to another site that asked me to sign in and then give credit card details. It looked very convincing indeed. This was the first time I'd ever received such a thing and it nearly caught me off guard but luckily I realised at the last moment that it was illegal 'phishing' activity. I'm not sure who to report this to though, Amazon, or a more authorative body like the police? See the attached images for what the site/email looked like.
Regards,
Neil.
thanks for the info
PayPal Example
mrdummy - You had some great points.
I just came across an interesting example of a PayPal fraud email.
The email had this from header...
"From: [email protected] ([email protected]) "
If you look at the domain name... [email protected] "ACCOUNTS-PAYPAL.COM", you can see that it's not from paypal.com. That's the best way to determine whether or not it's spam email.
GMail does a great job of helping you determine this. This email wouldn't have even showed up in your spam box since GMail wouldn't have accepted it because it's claiming to be from "paypal.com" and it's actually from "accounts-paypal.com".
Other good email fraud tips.
GMail will also put a little key next to the sender's name if it is a legitamate email... atleast in PayPal's case.
Hey guys im using an exchange push mail service from www.drmorley.com
They charge $3 a month for a 200meg mailbox with push email support. Whats even nicer is that when you send mail form for instance mine is [email protected] you attach an alias for instance [email protected] so mail sent from the drmorley account looks like its sent directly form your gmail account. I applied for it and i was all setup and go in less than 2 hours. It support push mail for pocket pc and blackberry support. Please have a look. He is looking at setting up cluster/load balancing support so even if one mail server goes down there will be a backup in place without any downtime.
Try them and leave some feedback. He even supplies a certificate for WM5 devices foc.
Hi, I thought I'd share a bit about my setup.
About my Hardware/Setup:
My servers are a pair of Dell 2950 PowerEdge server with 2Ghz Xeon Dual Core processors and 8GB of RAM. They've got about 500GB of storage in a RAID5 array with a spare hot swap drive just in case a drive starts acting up. I can pull it out and enable the spare within a hour ensure the data survives. A full backup is done daily and once a week the backup file gets offloaded to a remote datacenter just as a precaution. I also have backup MX servers that will archive 1GB of mail for up to 14 days in the event of a major outage. The servers themselves are colocated in a datacenter in Chicago where I live. I purchase colo space from SteadFast Networks which is located in an Equinix datacenter. The servers are hooked into a 100MB connection so bandwidth is not an issue.
I'm sorry, but I do not offer any SharePoint services or public folders. I didn't think I had the time or resources to adequately offer it so I chose not to offer it.
I have an economy plan for $3/month (paid yearly) that includes:
• 200MB Storage
• 10 aliases (ability to use your own domain)
• Outlook Anywhere, Activesync (Direct Push for Windows Mobile Devices), OWA
• POP3 & IMAP Access
• Antivirus Scanning (inbound & outbound) - Provided by Forefront Security for Exchange
• Entourage support for Macs
• iPhone Support (via IMAP)
The $5/month plan comes with a mediocre spam filter that I offer for free. It does an okay job, but if you really get a lot of spam (100+/day) then you'll want something better. I do pride myself on offering one of the best anti-spam solutions out there. After a lot of testing and research I found that no single spam filter could really do a fantastic job of filtering spam. So I went with a two tier approach. On the edge of my network I use Postini to filter the bulk spam that most filters catch easily. My users can administrate it themselves and whitelist/blacklist as they see fit. The second layer of protection is Cloudmark SPAM filter for Exchange. It's a server side solution and when used in conjunction with the Postini eliminates 99.9% of spam. The best part is that the false positive ratio with Cloudmark is nearly flawless. Ham will never be filtered as Spam--as a business class user you can't afford to miss an important client email. With Cloudmark spam filtering you don't have to worry about false positives.
As it relates to mobile phones (blackberries and windows mobile devices) the spam filtering is done BEFORE the mail hits your inbox to spam won't continually be sent to your mobile phone.
Here's how my pricing works. I had to change it recently to due changes in some of the licensing fees I have to pay to MSFT and Cloudmark.
• $5/Mailbox Includes:
• 1GB Storage
• unlimited aliases (for up to three domains)
• Antivirus Scanning (inbound & outbound) - Provided by Forefront Security for Exchange
• Postini SPAM Filter
• Outlook Anywhere, Activesync (Direct Push for Windows Mobile Devices), OWA
• POP3 & IMAP Access
• Entourage support for Macs
• iPhone Support (via IMAP)
Additional Services:
• Cloudmark Anti Spam Technology - $3/month to cover licensing fees
• Blackberry Support - $10month
• Additional Storage $1/month per extra GB of storage
I hope this answers some of your initial questions. Please let me know if you have any additional questions. I can be reached at frank at frankmorley dot com
I don't have a formal terms of service, but I reserve the right to disable your account if I feel you've been using my service to spam. I went through great pains to make sure email from my domain is accepted by other mail servers and if I feel you are jeopardizing things for others you will be banned immediately no questions asked. I will refund your money, but your account will be locked up and you will be permanently banned.
why not use mail2web.com ? it's FREE
i use mail2web too, is a good free service
push mail powa
how 'bout emoze? it's free and works with OWA prettttyyy good.
I really like the idea of your spam filtering thats probably my biggest complaint with my current setup but looking at your plans the only way to get both spam filtering is pretty much $8 a month correct?
Can you tell me what the OWA addy is just so I can see if my works websense blocks it or not?
I have a question about the push email. With this type of solution how does the push email work? Does it send a SMS msg to force checking of the account or is it connected all the time?
Just curious as my current solution stays connected all the time and is a drain on battery life.
mail2web ISN'T free if you want to use your own reply-to address.
Does Outlook everywhere support HTML email?
Mail2web is a nice service but does not provide HTML support cause they are still using Exchange 2003 SP2. I talked to a technical guy and there's no plan to upgrade to 2007 which support HTML. Only Executive plan is using Exchange 2007a nd in this case you have to pay!
Otherwise, the live2web (Free service) is working fine but without HTML read format.
Cheers!
papafred said:
i use mail2web too, is a good free service
push mail powa
Click to expand...
Click to collapse
epimazzo said:
Mail2web is a nice service but does not provide HTML support cause they are still using Exchange 2003 SP2. I talked to a technical guy and there's no plan to upgrade to 2007 which support HTML. Only Executive plan is using Exchange 2007a nd in this case you have to pay!
Otherwise, the live2web (Free service) is working fine but without HTML read format.
Cheers!
Click to expand...
Click to collapse
Look here : http://www.exchangemailhosting.com
Unlimited domain alias, unlimited e-mail alias , unlimited storage and fully Exchange 2007:
This mean OWA,ActiveSyncPush,OutlookAnywhere, HTML support etc etc
Cost around 9$ per month
MrDSL said:
I really like the idea of your spam filtering thats probably my biggest complaint with my current setup but looking at your plans the only way to get both spam filtering is pretty much $8 a month correct?
Can you tell me what the OWA addy is just so I can see if my works websense blocks it or not?
Click to expand...
Click to collapse
mail2web has a spam filter.
Everyone has a spam filter..
Anyways, yes mail2web is free but you get mail2web at the end of your address, this is no go for some people.
His $3 a month plan is right up my alley, that is a perfect plan for a user such as myself.
nahguam said:
mail2web has a spam filter.
Click to expand...
Click to collapse
They all have spam filters but I need a real one and his sounds pretty good..
MrDSL said:
They all have spam filters but I need a real one and his sounds pretty good..
Click to expand...
Click to collapse
horses for courses... I actually asked mail2web to disable it because it kept blocking legitimate emails. I don't get very much spam at all though (maybe 2-3 per month) so it's fine.
nahguam said:
horses for courses... I actually asked mail2web to disable it because it kept blocking legitimate emails. I don't get very much spam at all though (maybe 2-3 per month) so it's fine.
Click to expand...
Click to collapse
Lucky you I get that per hour easy..
Sounds like a nice deal @ $3 bucks a month..... I have mail2web, but it doesn't support HTML. So I quit using it. I just forward my everything to my gmail and have my phone check every 10min. But for $3 I think it's a steal.
Thanks for the great offer!
P.S. Your server does support HTML? How about outlook calendar? Please let me know.
Chris
Is there a link for the $3/month plan? All I see is the $5 and the $13. I'm currently using mail2web and the aliases and outlook 2007 is making me think about switching
How does the Exchange Activesync affect battery life? Do you notice a big change?
MrDSL said:
Lucky you I get that per hour easy..
Click to expand...
Click to collapse
Try 3-4k a day....
I spent two years researching and testing different spam filters. For those of you than manage your own mail servers Cloudmark offers some of the best protection out there and their false positive ratio is nearly flawless. Worth every penny if you ask me.
Has anyone else had this problem? I purchased Rom Manager on October 2nd 2010 via paypal. I had to reload all my programs and one of them was Rom Manager. I go in to put in my Transaction ID from my Paypal account and it tells me that there is no premium License for that Transaction ID. I emailed the developer to see what is going on but I have not heard anything back . Another monkey wrench is that I no longer have access to that email as it was hacked and I have no way of getting that email back. If Koush or someone needs the information that I have from my Paypal account I can gladly private message them.
I've got the same issue. I've emailed Koush (from the email address associated with the Paypal account with which I paid for the licence) several times and sent him a private twitter. I've had no contact from him at all.
Working now
hey peeps! I had this issue too but checked again today and its working mint Tapped the "Device ID" in settings and displayed "Licence Retrieved" like it used to.
Nice.
Hello all,
WYMO (Watch Your Mobile Operator) is an Android friend that helps you find the cheapest mobile plan available for you in the UK market.
Our application is in beta testing phase and we are looking for volunteers who would agree to use WYMO's services free of charge and to give us invaluable feedback on their experiences.
If you are interested in giving our app a try and you have Android 2.3 on your phone please go to wymo.co.uk or search for Wymo on Facebook to get to our app's page, where you can find a link (as a noob I can't link here now) or drop a mail to [email protected] and I'll send you the apk.
If you’re a tester don’t hesitate to share your questions and ideas here in this thread or via the email address above. Testers will be asked in a few weeks by a questionnaire as well.
Details about how our app works:
The app is counting incoming and outgoing calls, SMSes, MMSes, data traffic and roaming as well (due privacy reasons it only watches the first 4 numbers of phone numbers). Then it searches for the cheapest plan available on the UK market by analysing the data gathered. The user will get an email about the better offers.
To gather sufficient amount of data the app needs a few weeks monitoring of usage. This happens automatically as the process runs in the background showing a green logo on the status bar.
On the first start the app asks for a few data: only a valid email address and the name of your operator is required. Gender, age, education and postal code are optional.
The main screen has 6 options:
Show report shows the measured usage data.
Discount numbers is where the user can add those numbers which it can call with discount prices (this helps us to be more accurate)
Number portability is where the user can set those contacts who have different prefix than their operator (it helps us to be more accurate as well).
Upload data to server option uploads the measured data to the server.
Settings leads to the app settings.
Purchase leads to the Market’s in-app payment system, where the user can pay to get the cheaper offer’s list. The user will get an email with the list of offers and their prices. For beta testers the service is free.
Should you have any questions, feel free to ask here or via email.
daniel
I recently ordered an S9+ from clove.co.uk the other day. I checked my email to see if I had gotten any shipping/tracking info and saw the following email:
Thank you again for your order.
Due to the nature of the goods we sell there are unfortunately many attempts to obtain goods fraudulently and we have been advised to request additional information from new customers. Please can you provide one of the options below.
A) If we are delivering to the registered card holder address you can email or fax a copy (photo, scan or pdf) of your passport or driving license. We understand that you may wish to conceal some information - that is fine and the document can be in any language.
OR
B) Please note that you will need to do this if we are NOT delivering to the registered card holder address. Please can you ensure that your card issuer has a record of the delivery address required and then provide us with your full card number (we only have access to the last 4 digits) and expiry date, so that we can call them to verify that shipment to the alternative address has been authorised by the registered card holder.
Your co-operation with this security procedure is appreciated and we look forward to hearing from you soon.
Please use the link below to read our delivery information page if you have not already done so. (If clicking on the link does not work, please copy and paste it into your web browser.
Seems silly they would ask for a DL or Passport with most the information obfuscated. I mean anyone could just use photoshop off Google. Plus I also have issues with sending this kind of info over unencrypted email (lol 'security'). I am just wondering if anyone else that has ordered from this site has received this email? I asked if they could reply back in encrypted fashion but I'm sure they'll give me some excuse why they can't.
Booyaah82 said:
I recently ordered an S9+ from clove.co.uk the other day. I checked my email to see if I had gotten any shipping/tracking info and saw the following email:
Thank you again for your order.
Due to the nature of the goods we sell there are unfortunately many attempts to obtain goods fraudulently and we have been advised to request additional information from new customers. Please can you provide one of the options below.
A) If we are delivering to the registered card holder address you can email or fax a copy (photo, scan or pdf) of your passport or driving license. We understand that you may wish to conceal some information - that is fine and the document can be in any language.
OR
B) Please note that you will need to do this if we are NOT delivering to the registered card holder address. Please can you ensure that your card issuer has a record of the delivery address required and then provide us with your full card number (we only have access to the last 4 digits) and expiry date, so that we can call them to verify that shipment to the alternative address has been authorised by the registered card holder.
Your co-operation with this security procedure is appreciated and we look forward to hearing from you soon.
Please use the link below to read our delivery information page if you have not already done so. (If clicking on the link does not work, please copy and paste it into your web browser.
Seems silly they would ask for a DL or Passport with most the information obfuscated. I mean anyone could just use photoshop off Google. Plus I also have issues with sending this kind of info over unencrypted email (lol 'security'). I am just wondering if anyone else that has ordered from this site has received this email?
Click to expand...
Click to collapse
Have you checked header of the email?
Sent from my SM-N950F using Tapatalk
uigiflip said:
Have you checked header of the email?
Sent from my SM-N950F using Tapatalk
Click to expand...
Click to collapse
Yes I found this, still not sure if legit but the IP does resolve to the UK:
Received: from clove.co.uk (78.137.118.108.srvlist.ukfast.net [78.137.118.108])
by smtp.mclhosting.com (Postfix) with ESMTP id 7AE6628A05
X-Sender-IP: 84.45.99.231
X-SID-PRA: [email protected]
Booyaah82 said:
Yes I found this, still not sure if legit but the IP does resolve to the UK:
Received: from clove.co.uk (78.137.118.108.srvlist.ukfast.net [78.137.118.108])
by smtp.mclhosting.com (Postfix) with ESMTP id 7AE6628A05
Click to expand...
Click to collapse
Could be legit but if you dont like giving out personal documents maybe buy else where
Sent from my SM-N950F using Tapatalk