2012 e-Scams-ISP Alerts

2012 e-Scams

The following email messages are examples of actual email phishing scams or attempts to deliver a virus via email. Most of these examples appear to have been sent by your Internet Service Provider (ISP).

You may also receive this type of email scam that appears to have been sent by Facebook, Twitter, Amazon, Ebay, Paypal, or a familiar
credit card or bank.

If you do receive one of the following emails or a similar email message
in your inbox, please avoid opening any attachments and delete
the email.

NOTE: If you receive a questionable email and it is not listed here
do not assume that the email is valid. This list is simply a small sample of the large amount of scam emails that are circulating.

11/20/2012 Phishing Scam (this message comes in HTML format and includes malicious links, it looks very official)

From: Verizon Wireless
To: subscriber@yourisp.com
Sent: Thursday, November 15, 2012 8:30 AM
Subject: Your Past Due Verizon Wireless Account

Your Account is Past Due

Dear Customer

Your Verizon Wireless account is still past due. If a payment is not
made in full immediately, we may suspend services on your account
and a $15 per line reconnection fee will be charged to reinstate your account.

If you have questions about your bill, please feel free to view your bill
and manage your account online at My Verizon. If you do not have a
My Verizon account, you can sign up for free at any time. You can also
contact Verizon Wireless Customer Financial Services by calling 866.266.1445.

Paying your bill is simple; we accept checks, debit cards, and most
major credit cards. Payments can be made 24 hours a day. You can choose
from one of the following options to pay your bill:

ē Sign in to My Verizon.

ē Visit our easy-to-use, secure payment website at www.verizonwireless.com/PayMyBill.

ē Dial #PMT from your Verizon Wireless phone and follow the instructions.

If you have already made your payment in full, please disregard this email.

Thanks for choosing Verizon Wireless ó we truly value your business.


Verizon Wireless Customer Financial Services

9/21/2012 Phishing Scam (includes malicious links)

Your Orders
Your Account

Order Processing Confirmation
Order #002-4307970-21571478
Hello johnsonc-c@sdplains.com,

Thank you for shopping with us.
We thought you must be informed that  amazon shipped your item, and that this completes your order. If you need to return an item from this shipment or manage other orders, please visit Your Orders on Amazon.com. our estimated  shipment delivery date is:    
Friday, September 21, 2012

Why tracking information may be unavailable?

Your order   was shipped to:
Customer name
Customer address
Anytown,  WA
United States

This shipmentdoesn't have an associated delivery tracking No. Conveyance Details Sceptre  XVT3D48, BV-FHDD 40-Inch 1080p 400 Hz Cinema 3D S-iPS HDTV  FullHDandTwo Pairs of 3D Glasses Sold by  trenter Condition:  used-new

Item Subtotal:
Shipping & Handling:           $28.61
Total Before Tax:               $573.93
Shipment Total:                 $573.93
Paid by  Discover:             $573.93

Returns are easy. Visit our Online Return Center. If you need any assistance with your order, please visit Merchant Contact Form. We hope to see you again soon!


Unless otherwise noted, items are sold by Amazon LLC. Learn more about tax and good provider information. This email was sent from a notification-only address that cannot accept incoming email. Pleasedon't reply to this message.

9/17/2012 Phishing Scam (includes malicious links)

Mail Administrator<mail@admin.net>
Date: September 15, 2012 11:18:24 AM MDT
To: (Recipient List Suppressed)
Reply-To: Mail Administrator<mail@admin.net>

You are advice to click on the below link and Re-valide your  E-mail account by filling the Helpdesk form (malicious link).

Thank you,
Technical Helpdesk Service.

8/28/2012 Phishing Scam
(includes malicious links)

From: Smiley eCard [mailto:address@smilercards.com]
Sent: Tuesday, August 28, 2012 1:19 AM
To: customer@yourdomain.net
Subject: You have a new eCard from Smiler Cards!
Importance: High

You have a new ECard

You Are Able to Open It by Going Here (malicious link).

Cant click the link? Cut and paste this URL into your browser's
address bar (The address has been shortened to make things easier.):

(Possible virus or malware link inserted in the message here.)

8/3/2012 Phishing Scam (includes malicious link)

From: Xanga [mailto:noreply@xanga.com]

Sent: Friday, August 03, 2012 5:21 AM
To: sysadmin@yourdomain.com

Subject: Fwd: Your ACH Transfer N50967695

ACH Transaction, initiated from your checking account, was canceled.

Rejected transaction:
Transfer ID: FE-365562742910US
Transaction Report: View

NACHA - The Electronic Payment Association

8/1/2012 Phishing Scam (includes malicious link)

From: Bebo Service [mailto:service=noreply.bebo.com@bebo.com] On Behalf
Of Bebo Service
Sent: Wednesday, August 01, 2012 5:13 AM
To: Customer Name

Subject: Re: Wire Transfer Confirmation (FED REFERENCE 27079SZ91)

Dear Bank Account Operator,

WIRE TRANSFER: WRE-06834395016374229


Please REVIEW YOUR TRANSACTION as soon as possible.

7/30/2012 Threatening Phishing Scam

Thursday, July 26, 2012 8:24 AM
Subject: YOUR LIFE AT RISK (Donít Ignore this email).

Again:Donít ignore this email.

Read this letter very carefully, fail to ask how I got your Contact because I do
not want to reveal my identity and this could be the last one you read from me
if you fail to co-operate.

I am Italian man and a special assassin, I have killed so many people around
the world that fails to co­-operate with me and get them self of this mission to assassinate them.

I have been paid to assassinate you, I have every reason to carry out my
mission because I have been paid for it but I decided to give you a chance,
your life and that of your family from the endless pain.

I was paid 80,000Usd to kill you, but the allegation brought to me was not enough reason for me to just kill a person like you and make your family suffer
a very big lost. I also have your picture with me.

I will give you AFTER GUIDELINES ON WHAT TO DO NEXT, to avoid this and save your SELF and your family.

For Your Own Good, you must keep this to yourself, BECAUSE YOU DO NOT KNOW WHO IS AGAINST YOU, I want you to keep this as a secret until I forward you the video tape of the people that wants you assassinated so that
you can nail them down after while am gone..

I really don't know why I want to help you, but thank your stars because I have killed about 40 Business men and woman within the past two Months.

I have spend 30,000Usd in making all arrangement in carrying Out this Mission, which am finally DONE on that and that was spenton the money I was paid to assassinate you, which I have to return back the money if I donít carry Out this Mission.

I am already in your location to carry out my mission in assassinating you,
but I really don't know why I want to help you ONLY if you co­-operate.

MY Eyes are on you, so don't try anything stupid OR involved the F.B.I OR POLICE on this, because I will have known OPTIONS but to kill you.

Get back to me as soon as you get this message so that I can tell you all
to do for the safety of your life.

Contact me back on my private email: spammeraddress@domain.com

I have 78hours to make sure my mission is carried out.


7/24/2012 Phishing Scam (includes malicious links)

From: service@paypal.com [mailto:service@paypal.com]
Sent: Tuesday, July 24, 2012 7:31 AM
To: username@yourisp.com
Subject: Paypal has sent you a bank transfer.

We are sending funds from Paypal to your bank account.
Total amount transferred             $ 952.49


Transaction ID   26536512826191614

Help Center Resolution Center Security Center
Please don't reply to this email. It'll just confuse the computer that sent it and you won't get a response.
Copyright 2012 PayPal, Inc. All rights reserved. PayPal is located at 2211 N. First St., San Jose, CA 95131.

7/24/2012 Phishing Scam (includes malicious links)

From: Message Center [mailto:user@hotmail.com]
Sent: Monday, July 23, 2012 3:06 PM
To: Customer name
Subject: Customer, (Your ISP name) has just sent you a gift!

Dear Customer,

On behalf of (ISP name) you have been issued a $1,000 Visa Gift Card free of charge.

Card type: Visa Gift Card
Issued to: (Customer name)
Issuing branch: Anytown, Any state
Valid until: 08/2015

Please use the following website to claim your card and have it shipped to the address of your choosing:

Go to: www.(malicious link).com

Note that claims must be made within 48 hours from this email being sent, or the above link will become invalid.

Sincerely, Rachel
Customer Service
Employee Benefits Center, LLC

7/20/2012 Phishing Scam (includes malicious links)

Good morning,
The Wire fund transfer was canceled by the other financial institution.

Rejected transaction:
Wire Transfer Report: View

Federal Reserve Wire Network

5/25/2012 Phishing Scam (includes malicious links)

Thanks for your order, username@yourdomain.net!

Did you know you can view and edit your orders online, 24 hours a day?

Visit Your Account.

Order Information:
E-mail Address:  username@yourdomain.net
Billing Address:
Abraham Blevins Av. FL 67151
United States
Phone: 1-495-357-2587

Order Grand Total: $ 66.99

Earn 3% rewards on your Amazon.com orders with the Amazon Visa Card.

Learn More

Order Summary:
Order #:               B10-5462324-9321193
Subtotal of items:            $ 66.99
Total before tax:              $ 66.99
Tax Collected:                   $0.00

Grand Total:                   $ 60.00
Gift Certificates:               $ 6.99
Total for this Order:        $ 66.99

The following item is auto-delivered to your Kindle or other device. You can view more information about this order by clicking on the title on the Manage Your Kindle page at Amazon.com.

The Hunger Games by Suzanne Collins [Kindle Edition] $ 66.99

Sold By: Random House Digital, Inc.

You can review your orders in Your Account. If you've explored the links on that page but still have a question, please visit our online Help Department.

Please note: This e-mail was sent from a notification-only address that cannot accept incoming e-mail. Please do not reply to this message.

Thanks again for shopping with us.
Earth's Biggest Selection

Prefer not to receive HTML mail? Click here

3/26/2012 Phishing Scam (includes malicious attachment)

Small business, rejoice. TM

Dear customer: Thank you for ordering from Intuit Market. We are processing
and will message you when your order ships. If you ordered multiple items, we may sned them in more than one delivery (at no extra cost to you) to ensure quicker delivery. If you have questions about your order please call 1-900-538-1238 ($5.09/min).


Please download your complete order id #8764010 from the attachment.

©2012 Intuit, Inc. All rights reserved. Intuit, the Intuit Logo, Quickbooks,
Quicken and TurboTax, among others, are registered trademarks of Intuit Inc.

3/20/2012 Phishing Scam (includes malicious links)


You have to check in from 24 hours and up to 60 minutes before your flight
(2 hours if you're flying abroad). After that, all you need to do is print your boarding pass and go to the gate.

Confirmation code: 525180

Check-in online:  Online reservation details

Flight     Departure city and time

5090       Washington, DC (DCA) 10:00PM                                                 

                Depart date: 3/20/2012                               

We are committed to protecting your privacy. Your information is kept private and confidential. For information about our privacy policy visit usairways.com.

US Airways, 111 W. Rio Salado Pkwy, Tempe, AZ 85281 | Copyright US Airways |
All rights reserved.

3/16/2012 Phishing Scam (includes malicious attachment)

From: American Airlines [mailto:message@aa.com]
Sent: Friday, March 16, 2012 1:57 PM
To: user@yourdomain.com
Subject: Your Order#68562 has been completed

Dear Customer,

DATE & TIME / MARCH 20, 2012, 10:25 PM

Your bought ticket is attached.
To use your ticket you should print it.

Thank you
American Airlines.

3/14/2012 Phishing Scam (includes malicious link)

From: admin@yourdomain.net

Sent: Wednesday, March 14, 2012 7:41 PM
To: user@yourdomain.net
Subject: Account Deactivation Request!

We are experiencing an unknown malware Trojan virus on your account requesting for Account deactivation. To keep your account active we
recommend that you click on http://www.maliciouslinkinsertedhere  to fix this within the next 48 hours.

3/14/2012 Phishing Scam (includes malicious link)

Sent: Wednesday, March 14, 2012 8:11 PM
To: admin@yourdomain.net
Subject: Re: Account Deactivation Request!

admin@yourdomain.net wrote:

The information you Entered is incorrect, reconfirmed your information and click on http://www.maliciouslink.com/builder/form/A2ac606f06sfdvw50

3/1/2012 Phishing Scam (includes malicious link)

support@yourdomain.net [mailto:support@yourdomain.net]

Sent: Sunday, February 26, 2012 4:47 AM
To: username@yourdomain.net
Subject: Re: Banking security update.

Dear Online Account Operator,
Your ACH transactions have been
temporarily disabled.
View details

Best regards,
Security department

2/1/2012 Phishing Scam (includes malicious link)

From: Your ISP Webmaster [mailto:salmansk@dhaka.net]
Sent: Wednesday, February 01, 2012 12:18 PM
To: undisclosed-recipients:
Subject: Account Update

This is to inform you that we have carried out maintenance on your email
account and so therefore you cannot be able to receive or read new messages
in your inbox until you complete the maintenance process. To complete the maintenance on your email account, Please kindly login to our message center within the next 24hrs so as to avoid any problem with your email account.

Click here to complete the process

Note: The information contained in this message, including any attachments, may be privileged, confidential, or protected from disclosure under state or
federal laws. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution, or
copying of this communication is strictly prohibited. If you have received this communication in error, please notify the Sender immediately by a "reply to sender only" message and destroy all electronic or paper copies of the communication, including any attachments.

1/25/2012 Phishing Scam (includes malicious link)

From: American Airlines [mailto:JordanNiswender@somedomain.cl]
Sent: Tuesday, January 24, 2012 7:08 PM
To: user@yourdomain.com
Subject: Your Flight Order NO648_6177799

Dear Customer,

DATE & TIME / FEBRUARY 25, 2011, 14:18 PM

Please download and print out your ticket here:

http://www.aa.com/flight-nyc/flightno76864017 (malicious link)

Harlan Randall,
American Airlines