Received this email this morning. Purportedly from National HQ Office of the Assistant IG for Education and Training
Good Afternoon
Your invoice-0000871 for 2400.86 is attached. Please remit at your earliest convenience.
>>>>http://grupatroja.pi/invoice-00000759/
Reported this fraud to NHQ, but some of you may also receive this bull*** scam in the next few days.
Is this about renewing member ship then getting an email from NHQ that you payed more money than you accualy did because if so I got a similar email
No, Says it's an invoice from CAP Assistant IG for Education and Training. Claims they want $2400. I reported it to National HQ and they are aware of it.
oh well mine might just be a mistake in their system saying i paid for more than just the $60 basic yearly renewal. because when i checked my bank it says that cap only took the $60 and not the $$$ the email told me i paid
that is a remarkably specific phishing scam.
CAP.gov emails have been getting a bit spammy due to phished accounts lately, I noticed that as well on mine. I just delete the mails even without opening them, yay for the gmail interface with its preview line.
Quote from: DJ Light Chop on June 28, 2017, 11:08:45 PM
that is a remarkably specific phishing scam.
They are getting more sophisticated. My company's IT folk sent a warning this morning about one regarding the integration of another resort into our company. Very well written and looks official. If someone did not know better, they'd easily assume it was real.
I've been getting the same scam message about my iTunes store account.
It's for an in-game add on for Clash of the Clans.
Quote from: arajca on June 29, 2017, 01:51:17 PM
Quote from: DJ Light Chop on June 28, 2017, 11:08:45 PM
that is a remarkably specific phishing scam.
They are getting more sophisticated. My company's IT folk sent a warning this morning about one regarding the integration of another resort into our company. Very well written and looks official. If someone did not know better, they'd easily assume it was real.
+1 - the concept of PERSEC is lost on a lot of members, coupled with legit needs to have contact info listed publicly.
It's better now, but a lot of activities and units used to have rosters posted on their websites in areas easily spidered.
Google your CAPID, you might be unpleasantly surprised.
Couple that with people in 2nd and 3rd world nations with bandwidth and time where $100 could be life changing,
and there's plenty of incentive to try and target with more specificity.
I sent a warning this week to my clients about Docusign - they got hit with a breach, and now people are getting
phones calls and emails related to wire transfer phishing. I've never sent a wire in my life, I don't even know how,
so when I got a call it was obvious, but I have clients who are non-technical / half-attention admins who process
5-& 6- figure wires all the time. Very easy marks.
Quote from: Eclipse on June 29, 2017, 03:07:20 PM
Quote from: arajca on June 29, 2017, 01:51:17 PM
Quote from: DJ Light Chop on June 28, 2017, 11:08:45 PM
that is a remarkably specific phishing scam.
Google your CAPID, you might be unpleasantly surprised.
Googled my CAPID, a seven piece screwdriver came up
;D ;D ;D ;D ;D ;D ;D ;D
Mine comes up as a sad series of sub-300GB HHDs.
Quote from: Eclipse on June 29, 2017, 03:07:20 PM
Google your CAPID, you might be unpleasantly surprised.
I have to hand it to you, you are correct. Mine was a policy letter for Nurse Calls at the University of Michigan. I am not a nurse and I hate Michigan. :(
Interesting, apparently I am a gene in a Norway Rat as well as a Microsoft help article for XP and a postal code in Singapore.
Quote from: LSThiker on June 29, 2017, 05:03:18 PM
I am not a nurse and I hate Michigan. :(
Buckeyes fan, huh? Sad.
Quote from: NIN on June 29, 2017, 06:55:27 PM
Buckeyes fan are sad.
FTFY. I agree, they are. :)
Patent for an electric light display system...
That said....heed the warning. Eclipse is right....the scamming is getting much better...my employer has intercepted several very sophisticated attempts to phish in the 'company pool', and a former employer was (electronically) shut down due to passwords never being changed for their default on a Unix system.