Unfortunately it is all too easy to "spoof" someone's e-mail identity. An e-mail message is merely a text message where some of the text (at the beginning of the message stream) are headers that identify the sender, reply address, and other information. The remainder of the message is the actual message body or information text itself.
So, anyone can fabricate an e-mail message (the rules are defined in several different publicly available RFCs, e.g. RFC 2822). This was not an uncommon occurrence in some software technology companies, especially those with lots of Unix oriented programmers. It was simple to use telnet to originate a message to be sent to the SMTP port on some computer. You merely typed in the headers you wanted to identify the sender and reply address and the receiver could have no way of figuring out if the message was sent by the actual person whose e-mail address was used or not. There are some ways, such as clues to which utility wrote the e-mail message (e.g. MS Outlook) that you could also fabricate. There are ways to prevent this, such as digital encryption and using digital signatures, but this would require a major rework of electronic mail. Many corporate e-mail systems do not use the regular RFC defined mail protocols unless messages are sent externally outside of the corporate e-mail system. Instead, they use systems such as MS Exchange or IBM "Lotus" Notes. 73, phil, K7PEH On Jan 17, 2010, at 6:54 AM, Johnny Siu wrote: > There should be a hacker, hacking into Ted's computer and steal all the > contact information in the address book of Ted's mail account. Therefore, > everyone on Ted's address book will receive this email asking for some money. > Since the amount requested is not significantly large, there is a chance > that someone just believe that email and remit the funds. > > One of my colleague in Hong Kong has recently fallen into this trap. If you > want to ascertain whether email is a valid request, send a reply to the > hacker and ask for some precision information such what is mother's middle > name or who was the first girl friend before marriage. Then you will get a > dead silent from the hacker. > > The hacker always pretends to be the administrator of hotmail, gmail, yahoo > or even paypal. They send you a link ask you to update or reconfirm your > information. Once you click the link and login, then your login information > such as user name or password will be hacked. The address book of your mail > account will be in the hand of the hacker. > > 73 > > Johnny SIU VR2XMC > > > > ----- 郵件原件 ---- > 寄件人﹕ Andrew Moore <andrew.n...@gmail.com> > 收件人﹕ Hector Padron <ad4c2...@yahoo.com> > 副本(CC) Elecraft@mailman.qth.net > 傳送日期﹕ 2010/1/17 (日) 10:46:02 PM > 主題: Re: [Elecraft] My predicament > > I have no doubt that Ted didn't write the scam. Someone just grabbed his > identity. > > On Sun, Jan 17, 2010 at 9:39 AM, Hector Padron <ad4c2...@yahoo.com> wrote: > >> Guys maybe Ted is not the one who wrotte that scam,I have talked to him on >> 40M several times and he seemed to be a very decent guy,there are scammers >> all over the net and I will say this is one of them.Don't blame him yet >> until we know all the facts. >> Its just a thought. >> >> AD4C >> >> >> >> "For a refined ham it is compulsory to own a k3" >> >> --- On Sun, 1/17/10, Steve Ellington <n...@carolina.rr.com> wrote: >> >> >> From: Steve Ellington <n...@carolina.rr.com> >> Subject: Re: [Elecraft] My predicament >> To: "Andrew Moore" <andrew.n...@gmail.com>, ted1...@operamail.com, >> Elecraft@mailman.qth.net >> Date: Sunday, January 17, 2010, 2:20 PM >> >> >> Interesting how the scam came from Ted Orant, WB9JOX, who is in fact a K1, >> K2 owner and no doubt a list member. How's that work? >> >> Steve >> N4LQ >> n...@carolina.rr.com >> ----- Original Message ----- >> From: "Andrew Moore" <andrew.n...@gmail.com> >> To: <ted1...@operamail.com>; <Elecraft@mailman.qth.net> >> Sent: Sunday, January 17, 2010 8:47 AM >> Subject: Re: [Elecraft] My predicament >> >> >>> Common scam. >>> >>> >>> On Sun, Jan 17, 2010 at 8:43 AM, ted orant <ted1...@sbcglobal.net> >> wrote: >>> >>>> I'm writing this with tears in my eyes,we came down here to >>>> London for a short vacation and i was mugged at gun point last >>>> night at the park of the hotel where we lodged all cash,credit card >>>> and cell were stolen off me, thank God we have our life and passport >>>> my rents are not in town they all travel to Fiji island i lost all >>>> contact. >>>> >>>> I've been to the embassy and the Police here but they're not >>>> helping issues at all,my flight leaves in next few hours from now >>>> and am having problems settling the hotel bills. >>>> the hotel manager won't let me leave until i settle the hotel bills >>>> am freaked out...you can wire the money to me through western union >>>> all you need is Name on my passport and location information below... >>>> >>>> Location :United Kingdom London >>>> Name:ted orant >>>> Amount Needed :1450pounds >>>> >>>> That is all you need to get the money sent to me and get back to me with >>>> the western union transfer details the confirmation code MTCN number >> ... >>>> >>>> Hope to hear from you . >>>> ted. >>>> >>>> Ted wb9jox > > > > Yahoo!香港提供網上安全攻略,教你如何防範黑客! 請前往 http://hk.promo.yahoo.com/security/ 了解更多! > > ______________________________________________________________ > Elecraft mailing list > Home: http://mailman.qth.net/mailman/listinfo/elecraft > Help: http://mailman.qth.net/mmfaq.htm > Post: mailto:Elecraft@mailman.qth.net > > This list hosted by: http://www.qsl.net > Please help support this email list: http://www.qsl.net/donate.html ______________________________________________________________ Elecraft mailing list Home: http://mailman.qth.net/mailman/listinfo/elecraft Help: http://mailman.qth.net/mmfaq.htm Post: mailto:Elecraft@mailman.qth.net This list hosted by: http://www.qsl.net Please help support this email list: http://www.qsl.net/donate.html
