ClubTread Community

ClubTread Community (https://forums.clubtread.com/)
-   Site Announcements (https://forums.clubtread.com/10-site-announcements/)
-   -   beware of "Club Tread" email scams (https://forums.clubtread.com/10-site-announcements/44958-beware-club-tread-email-scams.html)

pmjwright 05-28-2013 07:17 AM

beware of "Club Tread" email scams
 
Just thought I'd pass this warning along of a scam using Club Tread as a hide-behind name. Today I received the first scam email masquerading as a Club Tread community user. I'm hoping a moderator can do something to try to block these things.

We've all seen various scams on email, Kijiji etc. You know the ones: "King So-and-so" from Uganda wants to deposit a million dollars into your account, someone else wants you to send money yada yada.

The email came from a [email protected] and was titled "Sent from Club Tread Community by John10" with the message:
Quote:

quote:Hello

Can you assist me to transfer funds into your account and help me to invest in your country or any part of the world. Please let me know so that I can detail you more.

My Regards, John Wei.

It gave a link -- www.clubtread.com/sforum -- which looks familiar to all of us, but when you hover over it actually links to something completely different. DON'T click on it, of course it's phishing for your bank account information.

blackfly 05-28-2013 07:25 AM

https://www.clubtread.com/sforum/topi...TOPIC_ID=56830

The person has been nuked already, Paul.

HagensborgViking 05-28-2013 07:56 AM

Yeah I just recieved this email this morning.

margaret 05-28-2013 08:00 AM

I got the email today, from the same spammer.

Arnold 05-28-2013 08:01 AM

Gave me a good laugh. I don't know how retarded one needs to be to fall for this.

dshugar 05-28-2013 08:06 AM

I received it too.

Zoran 05-28-2013 08:06 AM

So, all our private email addresses are taken from CC and loaded to spam engines in China?

dougz 05-28-2013 08:21 AM

Quote:

quote: So, all our private email addresses are taken from CC and loaded to spam engines in China?
No, if you read the explanation by Longshadow, as long as you didn't reply, you're fine.

https://www.clubtread.com/sforum/topi...TOPIC_ID=56831

Kanike 05-28-2013 09:07 AM

Oh ya! I did to and posted about it in The Lodge. Hasta la vista John Wei!

guntis 05-28-2013 09:20 AM

Aw damn, and I thought I was going to get rich! Guess I'll call back that Nigerian guy that contacted me yesterday.
https://www.clubtread.com/forumPix/409000/409651.jpg

Zoran 05-28-2013 09:21 AM

Quote:

quote:Originally posted by dougz

Quote:

quote: So, all our private email addresses are taken from CC and loaded to spam engines in China?
No, if you read the explanation by Longshadow, as long as you didn't reply, you're fine.

https://www.clubtread.com/sforum/topi...TOPIC_ID=56831
I can't see option in my account to send mass mail to members of CC. Are you saying he did it that way? He registered for an account and sent mass mail to all of us?

I work in IT and I am having hard time to understand how he mailed to all of us? :)

Longshadow, basically our Chinese friend John Wayne doesn't know our addresses unless we reply to him ... But he is able to send all of us mail through Board. He is got admin rights?

LongShadow 05-28-2013 09:57 AM

He used a bot. Pretty standard. So once he has an acct on the site, they essentially simulate the entry into the form and post it. Forums all have typical URLs (each with their own) so its not that tough to create the necessary scripts. Once you're a member, you can see the member list for the purposes of sending a legitimate PM - note that is PM, not email. They will only get your email if you actually respond to the email.

Now that they have been banned, they can no longer send these messages. One thing that I did forget to do is reset the web server, if their session is still active, it may still permit. I'll do that after submitting this post.




LongShadow 05-28-2013 10:00 AM

BTW, I think you all would be amazed at how many bots and scammers try to get on to CT. I would say that probably about 30-50% of the acct requests during a given period are not legitimate.

I try to filter these out by using known email address spam databases (at a given time), IP lookups (and toast from weird countries & hosts), and profile content review. Generally this catches them all - but unfortunately in this particular case I overlooked it.






Zoran 05-28-2013 10:01 AM

Thank you.

guntis 05-28-2013 10:03 AM

LongShadow, I think you do a terrific job filtering out the garbage. I've been on the site for a few years and don't remember receiving any other spam. Maybe that's why it was amusing this time, but certainly wouldn't want it to become a regular thing.

pmicheals 05-28-2013 10:05 AM

Longshadow they are sending email's also. I just got one this moment that went to junkmail directly.

Quote:

quote:"Hello pmicheals
You received the following message from: john10 ([email protected])

Hello
Can you assist me to transfer funds into your account and help me to invest in your country or any part of the world. Please let me know so that I can detail you more.

My Regards, John Wei."
If you receive your mail via MSoffice outlook browser, don't open it.


LongShadow 05-28-2013 10:17 AM

This looks like one of the PMs that would have been site generated.

I also just fully reset the server, so their session would be toast as well (just in case still active).





greyowl 05-28-2013 11:00 AM

Quote:

quote:Originally posted by LongShadow

BTW, I think you all would be amazed at how many bots and scammers try to get on to CT. I would say that probably about 30-50% of the acct requests during a given period are not legitimate.
These figures are truly disheartening. They explain why there would be a delay for new registrants to get approved. I don't envy you having to check every application. Good job, don't feel bad about having missed one!

pmicheals 05-28-2013 11:03 AM

I assume the bot is capable of doing a mass profile access and able to get everyone's email address. Is their anyway to hide the email address and still allow the member to send an email like on Craigslist? Maybe it wouldn't help that much.

eg: In profile section
E-mail Address:
Allow Forum Members to Send you E-Mail?: Yes/No (dropbox)
Hide email address from sender? Yes/No (dropbox)

All of your efforts are definitely appreciated longshadow :)




ShadowChaser 05-28-2013 11:34 AM

Quote:

quote:Originally posted by pmicheals

I assume the bot is capable of doing a mass profile access and able to get everyone's email address. Is their anyway to hide the email address and still allow the member to send an email like on Craigslist? Maybe it wouldn't help that much.
Already does, at least initially. The messages are sent from the server, so unless you reply they won't know what your email is.

There are two mitigations that should be added:
* Rate limiting on messages
* The approval system should take email address domain into account.

billdcat 05-28-2013 11:50 AM

You'd think that no one would go for these, but all they need for this stuff to work is one guy in 10,000 for which it hits the right note. I've had to convince people that these things aren't real, so I know there are willing victims out there. Sad.

KARVITK 05-28-2013 12:48 PM

I checked and received none of these. That's good

K

darren 05-28-2013 01:08 PM

Thanks to all the people who emailed us about this. Good work, team!

As for the scam, I worked in fraud at a credit union for years, and I saw seriously educated, smart and resourceful people fall for simple scams. We are not as rational as we might like to think.


FamilyGuy 05-28-2013 01:59 PM

Uh oh. This is a scam? My wife is going to kill me.....again.

19351 05-28-2013 04:57 PM

:DFamily Guy you crack me up !!!

Sadly if people didn't fall for these things they wouldn't be doing it. Send enough out and you are bound to hit a few suckers.

I read a story once where this I.T. guy played along with the spammer for a few weeks. The story had me in howling everytime I read an update. In the end he got the guy arrested by setting up a meeting ...only it was the police he was meeting with.

Farmer 05-28-2013 05:11 PM

There was a goood one like that going on TGR (I think) a while back.

Outlook decided it was spam. I had to check my junk box to see if I made the cut.

LongShadow 05-28-2013 08:19 PM

Thanks all for your understanding and for letting us know!




no quitting 05-28-2013 08:33 PM

I got one but just deleted :) Thanks :)

pmjwright 05-29-2013 09:04 AM

Keep up the great work, Longshadow and moderators!

I get almost-daily emails from RBC, ScotiaBank, HSBC, BMO saying there's a problem with my account and I must reset securities. PayPal too. You've seen them, eh. Yeah, there's a problem with my account all right....I don't have one!!! Ain't gonna fall for that...


All times are GMT -4. The time now is 10:47 PM.

Powered by vBulletin® Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.6.1
User Alert System provided by Advanced User Tagging (Pro) - vBulletin Mods & Addons Copyright © 2021 DragonByte Technologies Ltd.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2021 DragonByte Technologies Ltd.

 
For the best viewing experience please update your browser to Google Chrome