Dear Spammer,
Thank you for your email of 29/03/2011. Unfortunately we will not be downloading your .zip file and infecting our computer with whatever malware it contains.
May we offer you some advice for future scams that might lead to a higher success rate?
1) Use correct grammar. This may sound pedantic but "a spam WAS sent" or "a spam HAS BEEN sent" would be more appropriate use of English than "a spam IS sent". Equally you should have signed off with "Thank you for YOUR attention".
2) We applaud your ingenuity for referring to spam in a spam email in an effort to make it seem that it isn't in fact a spam email. It is a great device and you should expand this for your next iteration of spam emails.
3) Telling us that our password has been changed for safety is a very easy lie to expose. All we would need to do is log in to our Bookface account and check the veracity of this claim.
4) Performing the simple task in 3) above then renders your next sentence also utterly irrelevant as we now know for certain that we do not need to download your malware.
5) As a side issue our current Bookface password is 45 characters long containing upper case, lower case and numerical characters that were randomly generated. We think that level of complexity would prevent all but the most serious of attempts to hack into our account. Anyone so determined will probably find the record of our toilet habits and hangover complaints checklists more than a little dull.
Once again may we thank you for your attempt to infect our machine with malware and wish you every success in your future career.
manwiddicombe
Posts
3 comments:
When they spam me asking to click a link back to the fake log-in page, such as a false bank log-in page, then I sometimes go there and input a fictious log-in name followed by a fictious log-in password.
Then I send the spam email to the fraud division of the institution they were pretending to be, alerting them that I received the spam and letting them know what false name and false password I input into their fake log-in screen.
Then the institution will know to be on the look-out for someone attempting to log in under the pseudonym and false password and trace back their IP address to the actual identity of who the spammer was.
That is one way to handle it also, is to con them back into using false information which is also provided to the genuine institution to be looking for when they attempt using it.
It appears Man in a Shed has also been getting similar. They're active, aren't they?
Indeed they are JH. I mentioned it in the pub last night and three people had either had the email or their friends had had the email.
Hopefully none of them downloaded the file.
Post a Comment