• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Email scam to get Yahoo account info

J

Johneverd

Senior member
I received an email tonight from "support@yahoo.com" <support@yahoo.com> that said:

Dear customer,

This week we had some trouble with one of our computer systems. While the trouble appears to be minor, we are not taking any chances. We decided to take the troubled system off-line and replace it with a new system. Unfortunately this caused us to lose some member data.
Please follow the link below and confirm your account to make sure your information is not affected. If you'll be asked, please re-enter the information requested. Account balances have not been affected.

Please confirm your account here: http://confirm.yahoo.com/index.php?id=2334


Please note that, if the confirmation will be successfull, your username and password will remain unchanged.

Regards,

Technical Support Department.
Yahoo! Inc.
------------------------------------------

The link that is shown above, http://confirm.yahoo.com/index.php?id=2334, actually points to http://www.auctions-safeharbor.net/confy.htm.

Looks real, but I'd say that it's a fraud. When I put in a fake username/password it returned Thank You. What do you think?
 
WHOIS report:WHOIS information for auctions-safeharbor.net:

[whois.register.com]

Organization:
Richard T. Walden
Richard T. Walden
PO Box 1035
Frisco, CO 80443
US
Phone: 970-389-6834
Email: contulnostru@yahoo.com

Registrar Name....: Register.com
Registrar Whois...: whois.register.com
Registrar Homepage: http://www.register.com

Domain Name: AUCTIONS-SAFEHARBOR.NET

Created on..............: Tue, Jan 21, 2003
Expires on..............: Wed, Jan 21, 2004
Record last updated on..: Thu, Jan 30, 2003

Administrative Contact:
Richard T. Walden
Richard T. Walden
PO Box 1035
Frisco, CO 80443
US
Phone: 970-389-6834
Email: contulnostru@yahoo.com

Technical Contact, Zone Contact:
Register.Com
Domain Registrar
575 8th Avenue - 11th Floor
New York, NY 10018
US
Phone: 902-749-2701
Fax..: 902-749-5429
Email: domain-registrar@register.com

Domain servers in listed order:

NS-1.AMPIRA.COM 216.27.95.6
NS-2.AMPIRA.COM 216.27.95.7

Register your domain name at http://www.register.com

---------------------------

Not Yahoo.

 
Why can't scam artists learn proper English? Their own lack of typing skills gives them away more quickly than their e-mail does.

Hopper
 
Originally posted by: Grasshopper27
Why can't scam artists learn proper English? Their own lack of typing skills gives them away more quickly than their e-mail does.

Hopper
Click to expand...

Good eye Grasshopper27. I never noticed that they spelled 'successful' incorrectly. That's successful, NOT successfull. DUHHHH
 
the thing is that confirm.yahoo.com is under the yahoo subdomain.. unless someone has access to yahoo DNS to add a subdomain under a primary domain it really wont work..
either that or I have lost track and havent been updated in the latest scam ways.. can someone explain this to me.
 
Originally posted by: The_good_guy
the thing is that confirm.yahoo.com is under the yahoo subdomain.. unless someone has access to yahoo DNS to add a subdomain under a primary domain it really wont work..
either that or I have lost track and havent been updated in the latest scam ways.. can someone explain this to me.
Click to expand...
I think you missed part of Johneverd's post 🙂:
The link that is shown above, http://confirm.yahoo.com/index.php?id=2334, actually points to http://www.auctions-safeharbor.net/confy.htm.
Click to expand...


EDIT: 1000th post...yay!
 
Originally posted by: Yomicron
Originally posted by: The_good_guy
the thing is that confirm.yahoo.com is under the yahoo subdomain.. unless someone has access to yahoo DNS to add a subdomain under a primary domain it really wont work..
either that or I have lost track and havent been updated in the latest scam ways.. can someone explain this to me.
Click to expand...
I think you missed part of Johneverd's post 🙂:
The link that is shown above, http://confirm.yahoo.com/index.php?id=2334, actually points to http://www.auctions-safeharbor.net/confy.htm.
Click to expand...


EDIT: 1000th post...yay!
Click to expand...

yes I saw that..

but the thing is that to do it.. one must either have physical access to the DNS to reroute all confirm.yahoo.com to safeharbour - something like an insider at yahoo or they really cant do it.

If I remember right you cant spoof a subdomain like that.. its not easy. While its entirely possible to do in a "lan" its harder on the WWW especially if you got a prudent sys.admin who is watching.. anycase that site is down for me.

 
yes I saw that..

but the thing is that to do it.. one must either have physical access to the DNS to reroute all confirm.yahoo.com to safeharbour - something like an insider at yahoo or they really cant do it.

If I remember right you cant spoof a subdomain like that.. its not easy. While its entirely possible to do in a "lan" its harder on the WWW especially if you got a prudent sys.admin who is watching.. anycase that site is down for me.
Click to expand...

What they did is put the text to say a legitimate site, such as http://confirm.yahoo.com/index.php?id=2334. The actual link points to somewhere else. Here is an example: http://www.ebay.com/. Here it says eBay, but it actually links to Microsoft.

Yes, I did report it to Yahoo last night.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top