The story of one unsuccessful hack
I’m already used to that my mailbox, which is already about seven years old, receives a lot of spam, and it’s very different: from distant relatives from distant countries who bequeathed me millions of money, to banal offers to increase everything and everything and put it into practice immediately. I have a positive attitude to spam: you open the mail, and there are a lot of letters, and you sit open like lottery tickets - what’s the matter and what to throw out.
But a couple of weeks ago letters began to pour in one after another from the displeased "Mail.ru administration" that supposedly my mail account was sending spam and I was not a good person. The first letter was even a little surprised, it was so similar in style and format to messages from this administration. Of course, the letters were fictitious, and the links to which it was suggested to go were fake and led to sites for stealing passwords.
Having received a couple of such letters, I warned the entire female and older part of my relatives and acquaintances, showed bad letters and explained why I should not pay attention to them and that the real site administration would never require a username and password in the letter. Everyone nodded, but said that no one had received such letters.
Well, all right, I thought, but soon a letter comes to my mail with the heading “Re: hacked!” And the following content:
Please send me a screen image of the page with letters in the inbox. I can also write a letter with this mail as a sender
----- Original Message -----
From:
To: 5551777@mail.ru
Date: Thu, 28 Jan 2010 10:24:27 +0300 (MSK)
Subject: Hacked!
> Hello, you ordered a hack of this mail with which I am writing to you ... to get a password, write to nethack07@gmail.com
Here dsbav@mail.ru is the address of my mail (I changed the real address to a similar one. The real address consists of the same characters and is the same nonsense and does not make any sense). In addition to my address, I transmit the letter 1 in 1 as is.
Then it became immediately clear why I was so generously showered with letters asking me to give my password. Someone ordered someone to hack into my mailbox, which in itself became unpleasant. I could hardly imagine why the attackers needed my mail, since nothing super interesting was registered on it: ICQ, hosting, a couple of domains and a torrents.ru account with a rating of one - the most interesting thing you can get from it. Of course, it became very interesting what kind of people these were, and I began to search the network for people by mail addresses.
The search for a friend at 5551777@mail.ru yielded no results, but nethack07@gmail.com, as it turned out, is an experienced scammer. First, this “hacker" pings out the password through phishing emails, and when it doesn’t work out, he simply sends out a letter, substituting the mail to be cracked at the sender’s address. That is, if out of two people (the owner of the mail or the customer), at least one is inattentive or simply simple-minded, the hacker gets his money.
And here the customer turned out to be a simpleton, albeit an incredulous one. Having received a letter from supposedly my mailbox, he doubted and asked for a screenshot from incoming messages. He just sent the letter not to the hacker, but to me, by simply clicking on the answer button. Then it was a sin not to take a moment to find out the reason for the attempt to hack my mail, which I actually did. I registered 2 mail accounts: 5511777@mail.ru and nethack07@mail.com, which at first glance resemble real addresses of attackers. I decided to use practically their own methods in general. And he wrote 2 letters: to the hacking customer and to the contractor. Everything is banal with the performer - he didn’t even answer, apparently immediately cut through the whole situation (although the next day 2 more letters came with a proposal to enter your username and password somewhere). But the customer immediately responded, for in the letter I put a screenshot of the incoming messages. He asked me to double-check it again and write the wallet number. Which I did by sticking another screenshot. The next day, 1000 rubles appeared in my wallet. It turns out how much it costs to hack a mail.ru mailbox ... The customer wrote 3 letters, threatening that if I deceive him, he will write a complaint to the Webmoney arbitration. Very funny!
He explained to the man that for some time he had been talking not with the hacker, but with the owner of the mail, offered to return the money to him if he explained why he needed my mail. In response, he received "I have such a nickname." In general, I got too sick to continue talking with this character. My mail is, frankly, an erratic set of letters, for I registered it just for registration in all kinds of forums, but as a result I began to use it as the main one. In addition, this login is free on the domains list.ru, bk.ru, etc. We will assume that they taught a negligent customer bad things, and a nedohacker. And the money will remain for some time in the wallet in case the person apologizes and nevertheless explains why he started all this, and if the miracle does not happen, I will give it somewhere where they really come in handy, because there is no desire to use it.
But a couple of weeks ago letters began to pour in one after another from the displeased "Mail.ru administration" that supposedly my mail account was sending spam and I was not a good person. The first letter was even a little surprised, it was so similar in style and format to messages from this administration. Of course, the letters were fictitious, and the links to which it was suggested to go were fake and led to sites for stealing passwords.
Having received a couple of such letters, I warned the entire female and older part of my relatives and acquaintances, showed bad letters and explained why I should not pay attention to them and that the real site administration would never require a username and password in the letter. Everyone nodded, but said that no one had received such letters.
Well, all right, I thought, but soon a letter comes to my mail with the heading “Re: hacked!” And the following content:
Please send me a screen image of the page with letters in the inbox. I can also write a letter with this mail as a sender
----- Original Message -----
From:
To: 5551777@mail.ru
Date: Thu, 28 Jan 2010 10:24:27 +0300 (MSK)
Subject: Hacked!
> Hello, you ordered a hack of this mail with which I am writing to you ... to get a password, write to nethack07@gmail.com
Here dsbav@mail.ru is the address of my mail (I changed the real address to a similar one. The real address consists of the same characters and is the same nonsense and does not make any sense). In addition to my address, I transmit the letter 1 in 1 as is.
Then it became immediately clear why I was so generously showered with letters asking me to give my password. Someone ordered someone to hack into my mailbox, which in itself became unpleasant. I could hardly imagine why the attackers needed my mail, since nothing super interesting was registered on it: ICQ, hosting, a couple of domains and a torrents.ru account with a rating of one - the most interesting thing you can get from it. Of course, it became very interesting what kind of people these were, and I began to search the network for people by mail addresses.
The search for a friend at 5551777@mail.ru yielded no results, but nethack07@gmail.com, as it turned out, is an experienced scammer. First, this “hacker" pings out the password through phishing emails, and when it doesn’t work out, he simply sends out a letter, substituting the mail to be cracked at the sender’s address. That is, if out of two people (the owner of the mail or the customer), at least one is inattentive or simply simple-minded, the hacker gets his money.
And here the customer turned out to be a simpleton, albeit an incredulous one. Having received a letter from supposedly my mailbox, he doubted and asked for a screenshot from incoming messages. He just sent the letter not to the hacker, but to me, by simply clicking on the answer button. Then it was a sin not to take a moment to find out the reason for the attempt to hack my mail, which I actually did. I registered 2 mail accounts: 5511777@mail.ru and nethack07@mail.com, which at first glance resemble real addresses of attackers. I decided to use practically their own methods in general. And he wrote 2 letters: to the hacking customer and to the contractor. Everything is banal with the performer - he didn’t even answer, apparently immediately cut through the whole situation (although the next day 2 more letters came with a proposal to enter your username and password somewhere). But the customer immediately responded, for in the letter I put a screenshot of the incoming messages. He asked me to double-check it again and write the wallet number. Which I did by sticking another screenshot. The next day, 1000 rubles appeared in my wallet. It turns out how much it costs to hack a mail.ru mailbox ... The customer wrote 3 letters, threatening that if I deceive him, he will write a complaint to the Webmoney arbitration. Very funny!
He explained to the man that for some time he had been talking not with the hacker, but with the owner of the mail, offered to return the money to him if he explained why he needed my mail. In response, he received "I have such a nickname." In general, I got too sick to continue talking with this character. My mail is, frankly, an erratic set of letters, for I registered it just for registration in all kinds of forums, but as a result I began to use it as the main one. In addition, this login is free on the domains list.ru, bk.ru, etc. We will assume that they taught a negligent customer bad things, and a nedohacker. And the money will remain for some time in the wallet in case the person apologizes and nevertheless explains why he started all this, and if the miracle does not happen, I will give it somewhere where they really come in handy, because there is no desire to use it.