Every day I get a number of e-mails trying to steal my personal information. Normally my SPAM filter catches them and doesn't let them get to my inbox. Some do make it though and they can be annoying. Of course none of them come out and say they are trying to steal your personal information. Most of them are offering you some type of gift you will never receive.
My favorite says it is from Marriott and due to a recent stay they want to send me 2 of their famous pillows. First off, I didn't know Marriott hotels has famous pillows worth wanting. The first giveaway that the mail is a fraud is that they spell Marriott with a single "T" at the end. Anyone who stays at the hotel frequently knows how to spell it. I imagine that the e-mail is meant to trap people that don't stay often but want a free gift.
A similar message comes from a hardware store telling me I have won some free power tool. I've seen the e-mail come from Harbor Freight, Home Depot, and Lowe's. There are similar telltales that let me know it is not really from the company they claim to be. Most of the time it is a poorly-created logo. Ultimately the return address is a dead giveaway too. It might be from marriotpillows@somecompany.com or powertools@somecompany.com. If Marriott or Home Depot is giving you something, the return e-mail will be from their domain, not some other company.
One day I received 4 or 5 solicitations to steal my personal information and it really annoyed me. I decided I wanted to see who kept trying to trick me and if all of the attempts came from the same people. I hovered my mouse cursor over the button to claim my various prizes and made a note of the domain name that the link would take me to. I never clicked the link, I just wanted to see where it would take me.
Then I pulled up a terminal window on my Mac and typed in: "whois somecompany.com" for all of the domain names. Each e-mail had a different one and so all of the e-mails seemed to be coming from different people. The utility whois does a domain-name lookup and tells you who actually owns the domain. As expected all information pointed back to the same company in Bellevue, Washington that acts as a domain name supplier and is not one of the major players. From that I concluded that all of the personal information thieves are related.
I wondered if I should pursue the matter any further but decided against it. I have a lot more important things I can do with my time. Perhaps when I retire I will spend time going after malicious hackers. Not right now though.
Special note: The "whois" command does not come standard on Windows. You will need to download it from the Microsoft website. I think that is a shame as everyone should be able to easily use it without having to do anything special.
No comments:
Post a Comment