This will be a quick post. We have received a phishing mail to our info@lemmy.world mail address telling that they are “lemmy.world Security Team”, telling that they will “disconnect” your account from our instance. This is ofc, not us. Do not fall for it! The attached image is how the mail looks like.

~Lemmy World Team.

146 points
Deleted by creator
permalink
report
reply
78 points

Hello I am Tim from Microsoft Apple Your computer has a virus and I need you to do the needful

permalink
report
parent
reply
27 points

You forgot “asap”

permalink
report
parent
reply
17 points

download the free robux generator

permalink
report
parent
reply
3 points

robux.exe

permalink
report
parent
reply
7 points

John Appleby

permalink
report
parent
reply
4 points

having info@microsoft.com as your personal email would be pretty sick. i would love to put that on my resume

permalink
report
parent
reply
98 points

Hello, it is I, John Security. Please respond to this message with your name and SSN or the FBI will arrest you for unpaid back taxes. Also, do you have any iTunes or Google play gift cards laying around?

permalink
report
reply
36 points

Don’t forget! Lemmy automatically detects and blocks sensitive information so it’s totally safe to enter your SSN:

###-##-####

See! It works!

permalink
report
parent
reply
29 points

Hunter2

Did it work?

permalink
report
parent
reply
23 points

Yes, that looks like ####### to me

permalink
report
parent
reply
4 points

This will never stop to be funny.

permalink
report
parent
reply
8 points

Mr McAfee noooo.

permalink
report
parent
reply
7 points

Arnold Michael Scott 419-06-1111

I have $5000 in iTunes and $6,000,000 in Google play gift cards, why do you ask?

permalink
report
parent
reply
1 point

I’d send to Microsoft EEs today, might get a few bites.

permalink
report
parent
reply
93 points

Jesus. Phishing emails like this have become so commonplace I actually miss the old Viagra spam emails in l33tspeak.

permalink
report
reply
36 points

My spam folder is still chock full of those.

permalink
report
parent
reply
16 points

When’s the last time you checked your spam folder, 2003? I legitimately haven’t seen the 1337sp34k spam in 20 years. Lately it’s been Africans leaving me money at the embassy that I have to go pick up

permalink
report
parent
reply
15 points

For some reason I seem to be getting a lot of spam emails in French. And all of the links are pretending to be French Canadian postal service websites.

I don’t know why because I’m neither French nor Canadian. Nor have I ever been to Canada.

permalink
report
parent
reply
1 point

The subject is sometimes a word with random capitalisation and potentially letters replaced with numbers or symbols.

permalink
report
parent
reply
6 points

lately i’ve been getting a lot of phishing attempts targeting users and customers of mainstream sites with that, or l___o___t___s of punctuation separation i.n t.h.e t.e.x.t itself.

permalink
report
parent
reply
66 points

How do you guys know it’s not you guys?

Joke aside, i wonder why they wanna phish for user account in lemmy? Unlike the exploit like a few months ago that specifically target admin, this one seems like it target anyone, it so random.

permalink
report
reply
25 points

To exploit password reuse.

permalink
report
parent
reply
5 points

Bingo!

permalink
report
parent
reply
15 points

Awesome because of the way it’s written it’s practically guaranteed that admins will know it’s a scam.

permalink
report
parent
reply
58 points

Isn’t it a waste of time trying these scams on lemmy.

I could be wrong here but I would argue the vast majority of users are somewhat tech proficient since it’s not reached mass adoption and the user base is well, just us nerds?

permalink
report
reply
55 points

Tech folks still fall for phishing. It takes a momentary lapse, failure to caffeinate, it happens.

Lemmy is currently full of newly registered domains with weird suffixes, the kind that traditionally have been a phishing indicator. Lemmy.world is going to be harder to phish than some of the other ones where you have to read closely.

permalink
report
parent
reply
13 points

I guess hubris can be a factor too.

permalink
report
parent
reply
9 points

I’m not “ignoring your emails” and “never responding”, I’m just security conscious

permalink
report
parent
reply
3 points

This is the story how my Steam account got hacked:

I was talking to a friend of mine at a party and I just bought a new game (forgot which one). He told me that he thought about buying the game as well and asked if I could let him try it out one time. I said “sure, just message me and you can log into my account and test it”. 2 days later, he wrote me on steam asking for my login data and I thought nothing of it since we spoke about it in person, so I gave him the info. Turned out, his account got hacked and the intruder basically got a two for one special by just asking lol

Steam support rectified the situation and didn’t even scold me for sharing my account which is clearly a violation of their ToS.

permalink
report
parent
reply
30 points

Well one of the best scam hunters on YouTube lost his account to a scam. So not really a waste of time, trying Lemmy.

permalink
report
parent
reply
9 points
*
Deleted by creator
permalink
report
parent
reply
9 points

That sounds so crazy, who was it? What happened?

permalink
report
parent
reply
10 points

Looks like he was tricked into deleting his own channel by someone masquerading as YouTube support. https://futurism.com/the-byte/youtube-channel-hunts-scammers-gets-scammed

permalink
report
parent
reply
6 points

I was curious too so I googled it:

Scam baiter Jim Browning bamboozled by scammers into deleting his own YouTube channel

https://www.bitdefender.com/blog/hotforsecurity/scam-baiter-jim-browning-bamboozled-by-scammers-into-deleting-his-own-youtube-channel/

From what I read, some scammer tricked him by impersonating YouTube Support and telling him he would lose all his adsense revenue, which prompted Browning to fall for it.

permalink
report
parent
reply
1 point
*

It was Jim Browning, as another comment said. I can never remember his name more than Jim, so I settled for job description, as he is easy to find that way.

But others have been through it also, Linus Tech Tips, The Spiffing Britt and Atomic Shrimp are the other big ones I know of, but there is plenty more. Of those Atomic Shrimp is also a scam hunter like Jim, so it definitely shows that just because you are very familiar with what it looks like you aren’t immune too it.

I can’t remember if they all fell for the same or similar ones or if it was different ones, but that really doesn’t matter so much.

And what happend was Jim and LTT got tricked into deleting there channels. LTT by a fake sponsorship and Jim I don’t remember someone else said it was fake YouTube support.

Spiff had something of a similar thing happen but I don’t remember the means, and Atomic Shrimp I believe was a different typ of scam not related to YouTube.

But everyone got their channels back in the end.

permalink
report
parent
reply
3 points

Atomic Shrimp did a video on how he fell for a spear phishing scam

permalink
report
parent
reply
15 points

i click every link that shows up in my email, keeps life interesting

permalink
report
parent
reply
8 points

Living on the edge

permalink
report
parent
reply
6 points

Doing my part to keep our security team at work employed.

permalink
report
parent
reply

Lemmy.World Announcements

!lemmyworld@lemmy.world

Create post

This Community is intended for posts about the Lemmy.world server by the admins.

Follow us for server news 🐘

Outages 🔥

https://status.lemmy.world

For support with issues at Lemmy.world, go to the Lemmy.world Support community.

Support e-mail

Any support requests are best sent to info@lemmy.world e-mail.

Report contact

Donations 💗

If you would like to make a donation to support the cost of running this platform, please do so at the following donation URLs.

If you can, please use / switch to Ko-Fi, it has the lowest fees for us

Join the team

Community stats

  • 471

    Monthly active users

  • 98

    Posts

  • 12K

    Comments