Wednesday, August 31, 2016

Your Apple ID has been suspended [#398832] (Apple Phishing)

Dear Customer,

We recently failed to validate your payment information, therefore we need to ask you to complete a short verification process in order to verify your account.

> Click here to validate your account information

Failure to complete our validation process could have an impact on your Apple ID status.

We take every step needed to automatically verify our users, unfortunately in this case we were unable to validate your details. The process will only take a couple of minutes and will allow us to maintain our high standards of securing your account.

Wondering why you got this email?

This email was sent automatically during routine checks. We are not completely satisfied with your account information and require you to update your account to continue using our services uninterrupted.

For more information, see our FAQ.

Thanks,
Apple Customer Service

Copyright © 2016 Apple Inc. Apple Inc., Infinite Loop, Cupertino, CA 95014 Company Registration number: 15719. .

Screenshot of the Email :


Email analysis :

NOTE : no-reply.myid@apple.ssl.com
NOTE : 104.130.230.26 ()
NOTE : Received : from [212.48.75.42] (port=61094 helo=User)


NOTE : by server-20 with esmtpa (Exim 4.87)
NOTE : (envelope-from < no-reply.myid@apple.ssl.com >)

Phishing analysis :

CLICK : > Click here to validate your account information
OPEN : http://id-icloud101.com/
REDIRECT : http://id-update.system.my-apple.aspx.cmd.update-cgi.apple-id.apple.com.user1.id-icloud301.com/***/main.php
SCREENSHOT :


VALIDATE : PASSWORD
SCREENSHOT :


Whois id-icloud101.com :

NameEv Finnie
OrganizationEv Finnie
Address202 Christopher crescent
CityDorset
State / ProvinceDorset
Postal CodeBh153hn
CountryGB
Phone+44.7871167787
sebr@r.ctos.ch

Whois id-icloud301.com :

NameEv Finnie
OrganizationEv Finnie
Address202 Christopher crescent
CityDorset
State / ProvinceDorset
Postal CodeBh153hn
CountryGB
Phone+44.7871167787
sebr@r.ctos.ch

Sunday, January 11, 2015

Travel fast!

Hallo,

We are the best and experts of high authentic, Original diplomatic passports. With over a millions of our documents circulating around the world still date and we are still counting.We produce documents of all countries and all sorts and types of documents. We offer only original high-quality passports, driver’s licenses, birth certificates,Marriage certificate,stamps, visas,SSN,universities diploma,ID cards our camouflage IDs include all security features such as genuine holograms, ultraviolet watermarks, intaglio printing, special paper, fluorescent dyes, RFID chips, bar-codes corresponding to your details and more. and same with all other documents for a number of countries

SECTIONS; DIPLOMATIC PASSPORTS

Buy diplomatic passports USA ( United States)
Buy Brazilian diplomatic passports (Brazil)
Buy Canadian diplomatic passports ( Canada)
Buy Finnish diplomatic passports (Finland)
Buy diplomatic passports French ( France )
Buy German diplomatic passports ( Germany)
Buy diplomatic Dutch (Netherlands / Netherlands)
Buy Israeli diplomatic passports
Buy British diplomatic passports (United Kingdom )
Buy Spanish diplomatic passports ( Spain)
Buy Mexican diplomatic passports (Mexico)
Buy camouflage passports
Buy duplicate passport .ETC

SECTIONS; VISAS OF ALL COUNTRIES ETC.

Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc ( United States)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc(Brazil)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc ( Canada)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (Finland)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc( France )
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc ( Germany)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (Netherlands / Netherlands)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (Israel)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (United Kingdom )
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc( Spain)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (Mexico)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (Australia)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc ( South Africa)
Buy visa, work permit, study permit, visit visa, temporary residence, permanent residence etc (Switzerland)
And many more visas available right in your passports.

SECTIONS; GENUINE DRIVER LICENSE

Buy UK driving license
Buy driving license USA
Buy international driving permits
Buy Canadian driver's license ( Canada)
Buy driving license Spanish (Spain)
Buy Mexican driver's license ( Mexico)
Buy driving license Polish (Poland)
Buy German driving license (Germany)
Buy UK driving license (United Kingdom )
Buy driving license NORWAY (Norway)
Buy driving license Brazilian (Brazil)
Buy driving license Italian (Italy). ETC.
we produce the best bio metric documents online.

WE ALSO REVOKE ALL SUSPENDED LICENSE AND PASSPORT ETC.
DO NOT HESITATE TO CONTACT U.S. BY EMAIL FOR MORE INFORMATION AND TO PLACE YOUR ORDERS FOR YOUR VARIOUS PASSPORTS , VISAS , IDENTITY CARDS DRIVER'S LICENSE , BIRTH AND MANY OTHER DOCUMENTS AT email us with your names, address, location, contact numbers and your service message.

Email analysis :

NOTE : X-Yahoo-Newman-Id : ******.*****.bm@omp****.mail.ne1.yahoo.com
NOTE : Return-Path : < harryall@yahoo.ca >
NOTE : Mime-Version : 1.0
NOTE : X-Yahoo-Newman-Property : ymail-3
NOTE : Content-Type : multipart/alternative; boundary="----=_Part_*_*.*"
NOTE : Received : by 98.138.105.253; Wed, 07 Jan 2015 21:08:58 +0000
NOTE : Travel fast!

Tuesday, February 4, 2014

Backscatter

Backscatter (also known as outscatter, misdirected bounces, blowback or collateral spam) is incorrect automated bounce messages sent by mail servers, typically as a side effect of incoming spam.

Recipients of such messages see them as a form of unsolicited bulk email or spam since they were not solicited by the recipients, are substantially similar to each other and are delivered in bulk quantities. Systems that generate email backscatter can end up being listed on various DNSBLs and be in violation of internet service providers' Terms of Service. Backscatter occurs because worms and spam messages often forge their sender address, and mailservers configured by naive administrators send a bounce message to this address.

Measures to reduce the problem include avoiding the need for bounce message by doing most rejections at the initial SMTP connection stage; and sending bounce messages only to addresses which can be reliably judged to have not been forged.

Contents

1 Cause
2 Reducing the problem
2.1 Preventing email address collection
2.2 Connection-stage rejection
2.3 Checking bounce recipients
2.4 Filtering backscatter
3 See also
4 References
5 External links

Cause

Authors of spam and viruses wish to make their messages appear to originate from a legitimate source to fool recipients into opening the message so they often use web-crawling software to scan usenet postings, message boards, and web pages for legitimate email addresses.
Due to the design of SMTP mail, recipient mail servers receiving these forged messages have no simple standard way to determine the authenticity of the sender. If they accept the email during the connection phases then, after further checking refuse it - for example because they believe it to be spam they will use the (potentially forged) sender's address to attempt a good-faith effort to report the problem to the apparent sender.

Mail servers can handle undeliverable messages in three fundamentally different ways:

Reject. A receiving server can reject the incoming email during the connection stage while the sending server is still connected. If a message is rejected at connect time with a 5xx error code then the sending server can report the problem to the real sender cleanly.

Drop. A receiving server can initially accept the full message, but then determine that it is spam, and quarantine it - delivering to "Junk" or "Spam" folders from where it will eventually be deleted automatically. This is common behaviour, even though RFC 5321 says: "...silent dropping of messages should be considered only in those cases where there is very high confidence that the messages are seriously fraudulent or otherwise inappropriate..."

Bounce. A receiving server can initially accept the full message, but then determine that it is spam or to a non-existent recipient, and generate a bounce message back to the supposed sender indicating that message delivery failed.
Backscatter occurs when the "bounce" method is used, and the sender information on the incoming email was that of an unrelated third party.

Reducing the problem

Every step to control worms and spam messages helps reduce backscatter, but other common approaches such as those in this section also reduce the same problem.

Preventing email address collection

It is common to attempt to obscure email addresses in a manner that is not easily machine-readable. Several methods are available, such as simply not using a standard text format (john (at) example.com) or using a bitmap image of the address rather than raw text. More complex address obscuration methods are available, such as encoding the addresses using a substitution cipher, embedded as program code within a tiny javascript or Adobe Flash program for each address, which when clicked, opens a temporary window and sends the decoded mailto: address to the local email client, but all such obscuration methods can potentially be attacked by spammers in the same manner as CAPTCHAs.

Connection-stage rejection

During the initial SMTP connection mailservers can do a range of checks, and often reject email with a 5xx error code while the sending server is still connected. Rejecting a message at the connection-stage in this way will usually cause the sending MTA to generate a local bounce message or Non-Delivery Notification (NDN) to a local, authenticated user.
Reasons for rejection include:

- Recipient validation
- Anti-forgery checks such as SPF, DKIM or Sender ID
- Servers that do not have a forward-confirmed reverse DNS entry
- Senders on block lists.
- Temporary rejection via greylisting methods

Mail transfer agents (MTAs) which forward mail can avoid generating backscatter by using a transparent SMTP proxy.

Checking bounce recipients

Mail servers sending email bounce messages can use a range of measures to judge whether a return address has been forged.

Filtering backscatter

While preventing backscatter is desirable, it is also possible to reduce its impact by filtering for it, and many spam filtering systems now include the option to attempt to detect and reject backscatter emails as spam. In addition, systems using schemes such as Bounce Address Tag Validation "tag" their outgoing email in a way that allows them to reliably detect incoming bogus bounce messages.

© Wikipedia, the free encyclopedia