From: "Wolfgang S. Rupprecht" <wolfgang.rupprecht@xxxxxxxxx>
Sent: Thursday, 2010/May/06 15:11
>
> jackson byers <byersjab@xxxxxxxxx> writes:
>> from Gmail Support <useralert00@xxxxxxxxx>
>> to
>> date Sun, May 2, 2010 at 7:19 PM
>> subject ALERT: Act Fast!
>> mailed-by gmail.com
>> signed-by gmail.com
>> hide details May 2 (4 days ago)
>> Gmail Team is working on total security on all accounts and as a
>> result of this security upgrade we require all Google members to
>> verify their account with Google. To prevent your account from
>> disability you will have to update your information by clicking the
>> reply button and filling the space below.
>>
>> Account:
>> Password:
>> Birth date:
>> Country:
>> Warning!!! Account owner that refuses to update his or her account
>> within Seven days of receiving this warning will lose his or her
>> account permanently.
>> Thank you for using Gmail!
>>
>> The Gmail Team
>
> You want to look at the full, uneditied header, not the highly redacted
> message you forwarded. Follow the chain of "Received" headers to see
> where the message really came from. The top-most one will most likely
> be google receiving the mail from the spammer. The ones below that are
> most likely fiction injected by the spammer. Discount every header that
> was added by the spammer. Only the top ones added by your service
> provider (google) can be trusted.
>
> -wolfgang
> --
> Wolfgang S. Rupprecht
> If the airwaves belong to the public why does the public only get 3
> non-overlapping WIFI channels?
It looks like the miscreant use Google mail to send the phish. Although
there does seem to be a lack of the expected number of received-from:
headers.
{^_^}
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
