Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Suggestions?
--
Tim Lamb

Are you or they on Yahoo or have any of you ever been
?
Its not much to do with Iphones as far as I can tell. They are probably one
of the most secure portable devices there are.
Look at the actual email addresses used though, as often you will find them
different.
Not a new problem.
Brian

--
----- --
This newsgroup posting comes to you directly from...
The Sofa of Brian Gaff...

Blind user, so no pictures please
Note this Signature is meaningless.!
"Tim Lamb" wrote in message
...
Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Suggestions?
--
Tim Lamb

In message , "Brian Gaff (Sofa)"
writes
Are you or they on Yahoo or have any of you ever been
?
Its not much to do with Iphones as far as I can tell. They are probably one
of the most secure portable devices there are.
Look at the actual email addresses used though, as often you will find them
different.
Not a new problem.

They are both on Yahoo as is my wife. I have an disused Yahoo mail
address.

The lack of sensible message and incorrect send addresses are pretty
obvious on Thunderbird but might fool a phone user.

The usual content is a URL.

--
Tim Lamb

Tim Lamb wrote:
They are both on Yahoo as is my wife. I have an disused Yahoo mail
address.

The lack of sensible message and incorrect send addresses are pretty
obvious on Thunderbird but might fool a phone user.

The usual content is a URL.

At some point, possibly a decade ago or more, somebody got their mail
hacked. Might have been you, them, or anyone you corresponded with. They
hoovered up the addressbook and any correspondances (eg if you sent a mail
to Fred CC daughter, then Fred's account knows you both and knows that you
know each other).

They then send out messages purporting to be from someone you might know.
The illusion will likely fall apart if they try to write text (because it's
quite likely they won't sound like Fred), so they just send a URL and hope
someone is gullible to click on it.

(I'd guess the URL would forward to a fake Gmail/Yahoo/Outlook/etc login
page, in the hope of snaffling your email credentials)

Not a lot you can do about it, except change email addresses and maybe blackhole
mail claiming to come from the old one.

Theo

Yes this is a historic problem. Nearly everyone who used Yahoo mail in the
online way, rather than using a client and has done it for some years seems
to have been hacked partially, ie they know who certain email addresses were
associated with from the address books hacked.
I regularly see their names but filter them via incorrect email addresses
in the line with the right name.
Normally they are of the type. I'm sorry to contact you but I've had my
card stolen and am in (insert place name here) and wondered if you could
give me some money,
Or it might be, Hey found this great site, then they put a graphic of the
innocent looking site obscuring the address of the one with the malware on
it. The latter never works for me as the graphic is not 'read' for obvious
reasons.
Brian

--
----- --
This newsgroup posting comes to you directly from...
The Sofa of Brian Gaff...

Blind user, so no pictures please
Note this Signature is meaningless.!
"Tim Lamb" wrote in message
news
In message , "Brian Gaff (Sofa)"
writes
Are you or they on Yahoo or have any of you ever been
?
Its not much to do with Iphones as far as I can tell. They are probably
one
of the most secure portable devices there are.
Look at the actual email addresses used though, as often you will find
them
different.
Not a new problem.

They are both on Yahoo as is my wife. I have an disused Yahoo mail
address.

The lack of sensible message and incorrect send addresses are pretty
obvious on Thunderbird but might fool a phone user.

The usual content is a URL.

--
Tim Lamb

In message , "Brian Gaff (Sofa 2)"
writes
Yes this is a historic problem. Nearly everyone who used Yahoo mail in the
online way, rather than using a client and has done it for some years seems
to have been hacked partially, ie they know who certain email addresses were
associated with from the address books hacked.
I regularly see their names but filter them via incorrect email addresses
in the line with the right name.
Normally they are of the type. I'm sorry to contact you but I've had my
card stolen and am in (insert place name here) and wondered if you could
give me some money,
Or it might be, Hey found this great site, then they put a graphic of the
innocent looking site obscuring the address of the one with the malware on
it. The latter never works for me as the graphic is not 'read' for obvious
reasons.

Other than exercise caution, there doesn't seem much can be done.

--
Tim Lamb

Brian Gaff (Sofa 2) wrote

Yes this is a historic problem. Nearly everyone who used Yahoo mail in the
online way, rather than using a client and has done it for some years
seems to have been hacked partially,

That would certainly explain why I have never seen
it even tho yahoo has always been my main email
address that I have used for decades now. I don’t
use the online system at all and have no address
book there.

ie they know who certain email addresses were
associated with from the address books hacked.

I regularly see their names but filter them via incorrect email addresses
in the line with the right name.

Normally they are of the type. I'm sorry to contact you but I've had my
card stolen and am in (insert place name here) and wondered if you could
give me some money,

Or it might be, Hey found this great site, then they put a graphic of the
innocent looking site obscuring the address of the one with the malware on
it.

Never got any of either type.

The latter never works for me as the graphic is not 'read' for obvious
reasons.


"Tim Lamb" wrote in message
news
In message , "Brian Gaff (Sofa)"
writes
Are you or they on Yahoo or have any of you ever been
?
Its not much to do with Iphones as far as I can tell. They are probably
one
of the most secure portable devices there are.
Look at the actual email addresses used though, as often you will find
them
different.
Not a new problem.

They are both on Yahoo as is my wife. I have an disused Yahoo mail
address.

The lack of sensible message and incorrect send addresses are pretty
obvious on Thunderbird but might fool a phone user.

The usual content is a URL.

--
Tim Lamb

On Tue, 24 Dec 2019 00:54:38 +1100, cantankerous trolling geezer Rodent
Speed, the auto-contradicting senile sociopath, blabbered, again:

FLUSH troll****

00:54 in Australia??? Now what? Did you just get out of bed and START with
your trolling or did you just stop it before you went to bed, you abnormal
senile asshole troll? I'll soon find out! LOL

--
Richard addressing Rot Speed:
"**** you're thick/pathetic excuse for a troll."
MID:

Brian Gaff (Sofa) wrote

Are you or they on Yahoo or have any of you ever been ?

I am and don’t have a problem with junk mail.

Its not much to do with Iphones as far as I can tell. They are probably
one of the most secure portable devices there are.

Yes, but it is still possible to allow an app access to your contacts.

Look at the actual email addresses used though, as often you will find
them different.

But that doesn’t help with stopping it happening in future.

Not a new problem.

"Tim Lamb" wrote in message
...
Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Suggestions?
--
Tim Lamb

On Mon, 23 Dec 2019 04:23:54 +1100, clinically insane, pedophilic, serbian
bitch Razovic, the resident psychopath of sci and scj and Usenet's famous
sexual cripple, making an ass of herself as "jew pedophile Ron Jacobson (jew
pedophile Baruch 'Barry' Shein's jew aliash)", farted again:


Are you or they on Yahoo or have any of you ever been ?

I am and don¢t have a problem with junk mail.

NOBODY asked you ANYTHING, you retarded piece of trolling senile ****! tsk

--
Website (from 2007) dedicated to the 85-year-old trolling senile
cretin from Oz:
https://www.pcreview.co.uk/threads/r...d-faq.2973853/

Well it does if you use offline clients on pop3, also Many I-phones can be
easily set up to see the email address it came from which is seldom yahoo.

I never really go to sites from emails, unless I've checked the send address
first these days, though the malware infected sits are fewer and as has been
said, the phishing aspect has increased, I guess because there are so many
gullible people about One trick of course is to viesw email in plain text,
this reveals the real web addresses in the email, but means links do not
work and for many badly configured email newsletters the content appears
either blank or just with the the footer on it as the dweeb who sent it did
not send anything but the html.
Brian

--
----- --
This newsgroup posting comes to you directly from...
The Sofa of Brian Gaff...

Blind user, so no pictures please
Note this Signature is meaningless.!
"Rod Speed" wrote in message
...
Brian Gaff (Sofa) wrote

Are you or they on Yahoo or have any of you ever been ?

I am and don’t have a problem with junk mail.

Its not much to do with Iphones as far as I can tell. They are probably
one of the most secure portable devices there are.

Yes, but it is still possible to allow an app access to your contacts.

Look at the actual email addresses used though, as often you will find
them different.

But that doesn’t help with stopping it happening in future.

Not a new problem.

"Tim Lamb" wrote in message
...
Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Suggestions?
--
Tim Lamb

Brian Gaff (Sofa 2) wrote

Well it does if you use offline clients on pop3,

It does what ?

also Many I-phones can be easily set up to see the email address it came
from which is seldom yahoo.

I never really go to sites from emails, unless I've checked the send
address first these days,

I just check the url that it wants to go to.

though the malware infected sits are fewer

And my email client and anti virus software
finds those and reports a few of them.

and as has been said, the phishing aspect has increased, I guess because
there are so many gullible people about

I don’t get caught by those.

One trick of course is to viesw email in plain text, this reveals the real
web addresses in the email,

I can see that when hovering over the link.

but means links do not work and for many badly configured email
newsletters the content appears either blank or just with the the footer
on it as the dweeb who sent it did not send anything but the html.

Don’t read any newsletters like that. I do read
a few professionally produced ones.

"Rod Speed" wrote in message
...
Brian Gaff (Sofa) wrote

Are you or they on Yahoo or have any of you ever been ?

I am and don’t have a problem with junk mail.

Its not much to do with Iphones as far as I can tell. They are probably
one of the most secure portable devices there are.

Yes, but it is still possible to allow an app access to your contacts.

Look at the actual email addresses used though, as often you will find
them different.

But that doesn’t help with stopping it happening in future.

Not a new problem.

"Tim Lamb" wrote in message
...
Coincidence or....?

A few times recently I have had junk mails purportedly from my
daughters shortly after contacting them.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Suggestions?
--
Tim Lamb

On Tue, 24 Dec 2019 01:03:03 +1100, cantankerous trolling geezer Rodent
Speed, the auto-contradicting senile sociopath, blabbered, again:

FLUSH troll****

REALLY??? 01:03??? AGAIN??? LMAO! And you are up and trolling ALREADY???????

ROTFLOL! Just HOW clinically insane are you, senile Rodent?

--
Bill Wright addressing senile Ozzie cretin Rot Speed:
"Well you make up a lot of stuff and it's total ******** most of it."
MID:

On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Suggestions?

First have at the full message headers of spoofed email. That will tell
you if it actually came from her mail system or an unrelated one. Look
for a SPF record in the header as well, and see what status is attached
to it (e.g. "Pass" or "Soft fail").


--
Cheers,

John.

/================================================== ===============\
| Internode Ltd - http://www.internode.co.uk |
|-----------------------------------------------------------------|
| John Rumm - john(at)internode(dot)co(dot)uk |
\================================================= ================/

In message , John
Rumm writes
On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?
A few times recently I have had junk mails purportedly from my
daughters shortly after contacting them.
I post to a number of other folk without this happening. Is it my
end (limited anti-virus protection) or their end ( i-phone users)?
Suggestions?

First have at the full message headers of spoofed email. That will tell
you if it actually came from her mail system or an unrelated one. Look
for a SPF record in the header as well, and see what status is attached
to it (e.g. "Pass" or "Soft fail").

I have yet to find my way around T bird headers. This might be the
incentive. They display marked as probable junk but I would check anyway
because of the lack of content.



--
Tim Lamb

On 22/12/2019 18:59, Tim Lamb wrote:
In message , John
Rumm writes
On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?
Â*A few times recently I have had junk mails purportedly from my
daughtersÂ* shortly after contacting them.
Â*I post to a number of other folk without this happening. Is it my
endÂ* (limited anti-virus protection) or their end ( i-phone users)?
Â*Suggestions?

First have at the full message headers of spoofed email. That will
tell you if it actually came from her mail system or an unrelated one.
Look for a SPF record in the header as well, and see what status is
attached to it (e.g. "Pass" or "Soft fail").

I have yet to find my way around T bird headers. This might be the
incentive. They display marked as probable junk but I would check anyway
because of the lack of content.

In thunderbird, just hit CTRL + U to display the full message source.


--
Cheers,

John.

/================================================== ===============\
| Internode Ltd - http://www.internode.co.uk |
|-----------------------------------------------------------------|
| John Rumm - john(at)internode(dot)co(dot)uk |
\================================================= ================/

In message , John
Rumm writes
On 22/12/2019 18:59, Tim Lamb wrote:
In message , John
Rumm writes
On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?
*A few times recently I have had junk mails purportedly from my
daughters* shortly after contacting them.
*I post to a number of other folk without this happening. Is it my
end* (limited anti-virus protection) or their end ( i-phone users)?
*Suggestions?

First have at the full message headers of spoofed email. That will
tell you if it actually came from her mail system or an unrelated
one. Look for a SPF record in the header as well, and see what
status is attached to it (e.g. "Pass" or "Soft fail").
I have yet to find my way around T bird headers. This might be the
incentive. They display marked as probable junk but I would check
anyway because of the lack of content.

In thunderbird, just hit CTRL + U to display the full message source.

Right! 4 pages of gobbledegook:-)

Sent from jumbo.zone but otherwise nothing I understand. It obviously
passed all the authentication checks.

--
Tim Lamb

You need to selectively read the things, even the from line can be very
interesting if you compare it to the one you see on a good valid message.
Normally the email client is also listed which can be a give away straight
away.
Brian

--
----- --
This newsgroup posting comes to you directly from...
The Sofa of Brian Gaff...

Blind user, so no pictures please
Note this Signature is meaningless.!
"Tim Lamb" wrote in message
...
In message , John Rumm
writes
On 22/12/2019 18:59, Tim Lamb wrote:
In message , John
Rumm writes
On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?
A few times recently I have had junk mails purportedly from my
daughters shortly after contacting them.
I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?
Suggestions?

First have at the full message headers of spoofed email. That will tell
you if it actually came from her mail system or an unrelated one. Look
for a SPF record in the header as well, and see what status is
attached to it (e.g. "Pass" or "Soft fail").
I have yet to find my way around T bird headers. This might be the
incentive. They display marked as probable junk but I would check anyway
because of the lack of content.

In thunderbird, just hit CTRL + U to display the full message source.

Right! 4 pages of gobbledegook:-)

Sent from jumbo.zone but otherwise nothing I understand. It obviously
passed all the authentication checks.

--
Tim Lamb

On 23/12/2019 08:54, Tim Lamb wrote:
In message , John
Rumm writes
On 22/12/2019 18:59, Tim Lamb wrote:
In message , John
Rumm writes
On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?
Â*A few times recently I have had junk mails purportedly from my
daughtersÂ* shortly after contacting them.
Â*I post to a number of other folk without this happening. Is it my
endÂ* (limited anti-virus protection) or their end ( i-phone users)?
Â*Suggestions?

First have at the full message headers of spoofed email. That will
tell you if it actually came from her mail system or an unrelated
one.Â* Look for a SPF record in the header as well, and see what
status isÂ* attached to it (e.g. "Pass" or "Soft fail").
Â*I have yet to find my way around T bird headers. This might be the
incentive. They display marked as probable junk but I would check
anywayÂ* because of the lack of content.

In thunderbird, just hit CTRL + U to display the full message source.

Right! 4 pages of gobbledegook:-)

Sent from jumbo.zone but otherwise nothing I understand. It obviously
passed all the authentication checks.

Past em here or email them to me, and I can probably get you a bit more
info - like where it came from, whether its using a compromise account
or just spoofing etc.

(we only need the headers - you can snip the actual body, and react any
real mail addresses etc)


--
Cheers,

John.

/================================================== ===============\
| Internode Ltd - http://www.internode.co.uk |
|-----------------------------------------------------------------|
| John Rumm - john(at)internode(dot)co(dot)uk |
\================================================= ================/

Well most devices these days can be set up so that you are informed when
email is being sent.
Even way back in the Outlook Express days as I still am, you can set a flag
to let you know when something tries to send email behind the scenes. Many
pcs particularly get themselves boted, but greylisting has actually stopped
a lot of that.
The server always rejects the first attempt to send the email, hoping that
the botted machine just sends the lot fast to avoid detection, hence they
all get rejected, but a proper email from your own client will retry.
Brian

--
----- --
This newsgroup posting comes to you directly from...
The Sofa of Brian Gaff...

Blind user, so no pictures please
Note this Signature is meaningless.!
"Tim Lamb" wrote in message
...
In message , John Rumm
writes
On 22/12/2019 11:23, Tim Lamb wrote:
Coincidence or....?
A few times recently I have had junk mails purportedly from my
daughters shortly after contacting them.
I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?
Suggestions?

First have at the full message headers of spoofed email. That will tell
you if it actually came from her mail system or an unrelated one. Look for
a SPF record in the header as well, and see what status is attached to it
(e.g. "Pass" or "Soft fail").

I have yet to find my way around T bird headers. This might be the
incentive. They display marked as probable junk but I would check anyway
because of the lack of content.



--
Tim Lamb

"Tim Lamb" wrote in message
...
Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

Contacting them how ?

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Very unlikely to be their end infected. The iphone is
very very difficult to infect because of the walled garden
approach to apps only being able to see what you allow
them to see.

Of course its possible they have allowed an app to have
access to their contacts and that's how its happening.

Suggestions?

Ask them if others get a similar result after contacting them.

In message , %
writes


"Tim Lamb" wrote in message
.. .
Coincidence or....?

A few times recently I have had junk mails purportedly from my
daughters shortly after contacting them.

Contacting them how ?

CCd in a mail for the last one.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Very unlikely to be their end infected. The iphone is
very very difficult to infect because of the walled garden
approach to apps only being able to see what you allow
them to see.

Of course its possible they have allowed an app to have
access to their contacts and that's how its happening.

Suggestions?

Ask them if others get a similar result after contacting them.

OK.

--
Tim Lamb

Yes well, I think a sensible approach to what you let have access to your
address book is in order. I know for example that in order to use the amazon
echo devices to make calls you need to allow it to have access to the
mobiles address book. I have yet to see any problems from this.
The main things I do see with mobiles are the location services being used
to try to get you to go to shops etc. The Tile App does this on its free to
use app, but of course you can ignore them or turn off location services
sharing so it only works when you want to find something. There is no such
thing as a free lunch, and to be fair they do tell you in their voluminous
terms and conditions which nobody reads of course!

There are a lot of things to be wary of out there, never post pictures
unedited to facebook while on holiday, as unless you are careful they reveal
where you are and what time you were there in the metadata, allowing the
canny crook to go and do over your home address while you are away.
Brian

--
----- --
This newsgroup posting comes to you directly from...
The Sofa of Brian Gaff...

Blind user, so no pictures please
Note this Signature is meaningless.!
"Tim Lamb" wrote in message
...
In message , %
writes


"Tim Lamb" wrote in message
. ..
Coincidence or....?

A few times recently I have had junk mails purportedly from my daughters
shortly after contacting them.

Contacting them how ?

CCd in a mail for the last one.

I post to a number of other folk without this happening. Is it my end
(limited anti-virus protection) or their end ( i-phone users)?

Very unlikely to be their end infected. The iphone is
very very difficult to infect because of the walled garden
approach to apps only being able to see what you allow
them to see.

Of course its possible they have allowed an app to have
access to their contacts and that's how its happening.

Suggestions?

Ask them if others get a similar result after contacting them.

OK.

--
Tim Lamb