Crashed Pips - Computers, politics, emetic trash

Monday, August 18, 2008

Spammety spammety spam.

Filed under: Security — Tags: , , , — Jonathan Rothwell @ 12:47

Spam is one of those things that’s often so bad, it’s good. Today, I received one of those messages. It was sent to the hello@crashedpips.co.uk e-mail address (obviously harvested, from here) and I present the text below:

Dear customers,
Thank you for using our new service “Buy airplane ticket Online” on our website.
Your account has been created:

Your login: hello@crashedpips.co.uk
Your password: passRHK6

Your credit card has been charged for $669.57.
We would like to remind you that whenever you order tickets on our website you get a discount of 10%!
Attached to this message is the purchase Invoice and the flight ticket.
To use your ticket, simply print it on a color printed, and you are set to take off for the journey!

Kind regards,
Spirit Airlines

There are multiple reasons why this is dubious.

  1. I never booked a flight, and the idea I would do so with Spirit Airlines is ludicrous. Because they operate in the Americas as an ultracheap airline (a bit like EasyJet in the UK, but without as much orange.)
  2. As Spirit is an ultracheap airline, $669 (even with the current state of the dollar) is excessive.
  3. Printer is mis-spelled printed. It seems unlikely that a medium-size airline (still quite a large operation) would make such a mistake - can they not afford a dictionary?
  4. The ‘invoice’ and ‘flight ticket’ are attached in a ZIP file, apparently. Examination of the zip file reveals - yes, you guessed it - Ticket_N141-SK.exe, which looks suspiciously like a virus. I’ll be sending this off to some antivirus companies for analysis.
  5. They’ve obviously put in no effort with header spoofing whatsoever: the ‘from’ address is kvtgady (at] bradshawplace (full stop) com (address obfuscated to prevent spam to the (possibly) innocent owner of this address).
  6. Yep, the usual “Dear Customers” opening line (surprise, surprise).
  7. This is perhaps the most important point of all. It demolishes the e-mail’s premise in one swipe: I don’t even have a damn credit card. Even if I did, I’d have paid in pounds or euros, rather than dollars. If I did have to pay in dollars, I would have sent the money using a money transfer service or simply by popping a cheque in the post.

For the record, I’ve tried to contact Spirit about this, but the only phone numbers I can find are for their reservations centre, and the only e-mail addresses I can find are for comments on the Web site. If anyone can source a number or address direct to Spirit’s HQ, I’d be very grateful - it’s best the airline knows about this so it can post an advisory in its website.

EDIT: I’ve sent the file to McAfee and its online scanner says it’s spy-agent.bw. An extra .dat file is being issued for this - I’ll see what McAfee’s rules on redistribution are, and if it’s OK with them I might mirror it here for if you’re using a McAfee scanner. Meanwhile, Symantec won’t let me show them the virus unless I pay them money, and Sophos’s process is long and irritating.

The file will now be shredded to protect other machines on my network.



Saturday, February 9, 2008

Unsubscribe? My foot

Filed under: Security — Tags: , — Jonathan Rothwell @ 18:12

Spam often contains an ‘unsubscribe’ link that allows you to ‘remove your address from the mailing list’. Rubbish. It only proves the Email address is active.

You didn’t think the spammers would actually kindly refrain from emailing you, would you? No. Now we’ll put that to the test.

This is a widget showing the inbox of a Mailinator address - it was empty at 1810GMT today, and has been ‘unsubscribed’ from the mailing list using this address.

I fully expect it to be filled with spam by tomorrow: quite interestingly, the message displayed after unsubscribing said “my address has been removed” - whereas it should never have been on the list in the first place.



Thursday, January 24, 2008

Thursdays are spammy

Filed under: Humour, Internet — Tags: , , — Jonathan Rothwell @ 19:49

What is it with Thursdays and spam? First I get that bizarre underwear advert, before finding that someone sounding like a government minister going by the name of ‘ClaraWilly’ is spamming Backfeed with fake voluntary work info. Hmm… spotting a pattern here?



Monday, December 3, 2007

Insult spam?

Filed under: Security, Software — Tags: , , , , — Jonathan Rothwell @ 13:36

Spam

I’d like to share with you the text of some comments left on various articles on this blog today, which were very quickly thrown to the (Akismet) dogs.

NO NO NO! You are barking up the wrong tree mate! Most if not all the items which you have put shame upon are great!!!. HOW dare you. you insult me!

Your ideas aren’t very great, as a matter of fact, they won’t work. Sorry but I think you should reconsider most of your ideas.

壞主意!這無疑是個壞壞壞!你是不是一個很好的人,我不喜歡你,你侮辱了我!

I have no idea what this last quote means - if anyone can speak Japanese, you are invited to leave a comment (in English) on this post.

Приятель что вы о! BBC + ОИС = MI5? в россии даже нет имени мы получить эти каналы! Но, с другой стороны некоторые ваши рассказы довольно хорошие на iphone один очень верно! не в том, что ive даже рассматривать характер.

This one appears to be in Russian.

Crashedpips.com ist der schlimmste Website, die ich je gesehen habe, die nicht auffällig oder interessant, und es nützlich ist.

A quick translation on the Dashboard reveals this this is roughly equivalent to:

Crashedpips.com is not remarkable or interesting the worst Website, which I saw ever, those, and it is useful.

At least get the bloody address right!

OMG what a insulting website. Do you ever plan to write some positive on this website. I feel so stringly about my views i have decided to create a wikipedia for your crashed pips!! ENJOY.

The only people I think I could have insulted on this website are spambots, Microsoft, conservatives, George Bush and New Labour.

Either way, this Wikipedia article that was supposedly created does not, in fact exist.

Is this a new type of WordPress spambot? Has anyone else had similar experiences?



Thursday, June 28, 2007

Micro$oft pays bloggers to advertise

Filed under: Uncategorized — Tags: , , — Jonathan Rothwell @ 15:49

This is, as usual, so infuriating I want to scream. Another of Microsoft’s stealth marketing tactics. They asked bloggers to write a short blurb on what their slogan, ‘People-ready Business’, means to them. For a bit of money, of course.

Hmm… what happened to these blurbs? Well, they ended up in banner ads. Of course.

If you want then, Mr. Gates, here is my idea of what a people-ready business is.

THE PEOPLE READY BUSINESS AND WHAT IT MEANS TO ME

by J Rothwell

In my experience, a people-ready business is a business that’s finally seen sense and thrown away its computers, and is now using a pen and paper. Alternatively it could be a business using Linux. Or Macs. Either way, it’s something other than Windows.

So there. Bill, I take cheque, cash, and all major credit cards.



Powered by WordPress 2.7 Comments are the responsibility of their respective author. The Rest © 2007-2009 Jonathan Rothwell, unless otherwise stated.