On Fri, 2015-01-23 at 15:13 -0700, Greg King wrote: > I got a call today from someone who claimed to be with the "Canada Public > Safety Agency" saying my "cyber id" had been traced to spam emails and he > needed access to my PC to check it. He gave me a name (probably bogus) and a > phone number of an actual federal government agency > http://www.publicsafety.gc.ca/index-eng.aspx but his caller id didn't match > the number. I told him off and hung up. I'm thinking this was a missed > opportunity to fire up a honeypot and let the caller take control of it and > delve into what he was trying to do. > > Has anyone done this? I've googled around and see there a some open source > distros in this area and am leaning towards Stratagem. I have no idea how > much work it is to support one of these or if I will get any useful data from > it, other than the satisfaction of screwing with the scammers. I'd be > interested in hearing others experience with honeypots. > > BTW I called the government agency and there must be a lot of this going on > because their recorded message says that if you got a call from them to > ignore it - it is a phishing attempt, and to report it to the anti fraud > centre which I did > http://www.antifraudcentre-centreantifraude.ca/english/reportit-howtoreportfraud.html > . > > Greg > > > _______________________________________________ > clug-talk mailing list
Hi Greg, I have been getting way to many annoying calls to, and I get so annoyed I mostly let them go unanswered. Had some issues about a month ago trying to register on mail list and it said my IP was known to be associated with spam and registration was blocked. So I went on line and my IP number checked out A OK. just an example http://www.dnsbl.info/dnsbl-database-check.php Turned out one of the servers he was using had shut down. so the program was listing everyone new with the same false positive. The only way I could get through was on his blog messages that he finally looked at. He removed the dormant server link and all was well. With the honey pot idea, be a good idea to find out if its legal nowadays, what with the strange new laws (relating to IT and spam) they are coming up with lately to supposedly legislate safety. Saw another article lately cautioning people/businesses to be careful they have permission to monitor their clients computers, or they could be caught braking the law. Ref http://www.msp-advisor.com/warning-canadian-msps-falling-victim-new-anti-spam-laws-just-monitoring-clients-systems Rolling on the floor laughing;) So seriously, do you have written permission to monitor your evil crooks and scammers computer? Would it seem that there are so many ways a law can backfire from it's intended purpose? Mel _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
