Bold Phisherman

This blog has gone a bit neglected recently in favor of my totally corporate blog. I thought I would share an email I received today, the most remarkably bold phishing scam I have ever read:

Subject: Your Computer It Is In Ouer Base Of Dates

Dear Sir,
From your Ip Adress was found at ouer server was made inegality from your computer.
Please send as your Ip and User Acounts.

Example : Ip Adress — (64.105.196.234).
User Acounts — (Administrator,Quest….).
Password — (Your password….).

After you sent this dates ouer operators will acces your computer to fiind out what was the reason was make the inegality.
After you sent the dates in time at 2 weeks since we recived your dates will no`t access your computer.
After we remake this problem you will change your pasword (at list 8 characters).

Your dates please send at ouer institut or in ouer email adress is : <email address>@hotmail.com

In caz you will no`t send the dates ouer team from intervention will came at your home and will you take your computer for probes and it is the risk to be panegement whit jail.
Please don`t make more dificult this situation.

Thank you for understanding.

No slick Paypal or eBay lookalikes here; just the most tenuous grasp of the English language and the daring author was off. I had to read it a few times to grasp it all. Here is my best attempt at a translation guide:

  • date = data
  • base of dates = database
  • inegality = illegally
  • panegement = punishment

I’m impressed they spelled “Administrator” correctly, but that may have been a copy and paste job, and “Guest” is misspelled immediately afterwards (“Quest”). After enough readings, I believe that this is the scam the phishers were attempting to perpetrate:

Our database indicates that an illegal access attempt was made from your computer to ours. In order for us to investigate this, you need to email us your IP address and your account logins and passwords. After we investigate this matter you will be free to change your passwords. If you do not comply we will be forced to come to your residence and examine your computers and you could face fines and jail time.

Funny stuff. The worst part is knowing that there must be some people out there falling for it. If I had more time and a little more interest, it might be educational to set up a Honeynet and study the network traffic after sending them the login/password.