Internet fraud again

VicS

VicS

Well-Known Member
Joined
13 Jul 2002
Messages
48,739
Visit site
Yesterday we ordered a couple of items from Damart on line

After the usual confirmation email we also received the following apparently from Damart.

Dear Irene McKechnie,
We are writing with regard to a recent order you placed with us; (2012-04-29 21:29:45).
We have received a query from our payment merchant (Sagepay) requesting that your transaction is to be verified before we can complete our payment process.


From now on, to protect our customers as well as our own personal information and to prevent fraudulent activity which isagainst The Fraud Act 2006, we require your immediate response to complete and submit our verification form.


Please click HERE to view the form.


Once your details have been reviewed by our payment merchant, your order will become successfully verified, processed and dispatched as planned.


Sincere apologies for any inconvenience this may have caused,


Please Note; If you fail to comply with this security procedure your order will be effected.
Kind Regards,

- Carol Heyman
Senior Sales Director, Damart.




The incorrect name puzzled me but the alarm bells did not ring loudly enough to stop me looking at the form mentioned :eek:

The form requested all our credit card/bank account details :eek::eek:

Hovering over the return address revealed it was not Damart's

Fortunately I'm not totally stupid but I came close to falling for it.
Although they do warn customers to be alert for such things.

Ive sent the details off to Damart


What did I order you want to know...... A pair of "Welly clogs" and a rubber mat to go outside the back door.
 
Last edited:
VicS said:
Yesterday we ordered a couple of items from Damart on line

After the usual confirmation email we also received the following apparently from Damart.

Dear Irene McKechnie,
We are writing with regard to a recent order you placed with us; (2012-04-29 21:29:45).
We have received a query from our payment merchant (Sagepay) requesting that your transaction is to be verified before we can complete our payment process.


From now on, to protect our customers as well as our own personal information and to prevent fraudulent activity which isagainst The Fraud Act 2006, we require your immediate response to complete and submit our verification form.


Please click HERE to view the form.


Once your details have been reviewed by our payment merchant, your order will become successfully verified, processed and dispatched as planned.


Sincere apologies for any inconvenience this may have caused,


Please Note; If you fail to comply with this security procedure your order will be effected.
Kind Regards,

- Carol Heyman
Senior Sales Director, Damart.




The incorrect name puzzled me but the alarm bells did not ring loudly enough to stop me looking at the form mentioned :eek:

The form requested all our credit card/bank account details :eek::eek:

Hovering over the return address revealed it was not Damart's

Fortunately I'm not totally stupid but I came close to falling for it.
Although they do warn customers to be alert for such things.

Ive sent the details off to Damart


What did I order you want to know...... A pair of "Welly clogs" and a rubber mat to go outside the back door.
Click to expand...

"effected" would have pressed delete on my PC.

when they perfect their grammar it will be worse.
 
I'd be even more worried that that. How did they know you'd just placed an order with Damart? Most reputable online shops use SSL encryption, and certainly for the payment part of the transaction. SSL is very strong and it's designed to defeat just this "man in the middle" attack. I would be concerned that you have some sort of keylogger or trojan on your PC that is telling the bad guys what you'e doing.

As a first step I'd scan it thoroughly with the free versions of SuperAntiSpyware and Malwarebyte's Anti-Malware
 
Its also faintly possible that some part of the SagePay site has been hacked so giving them a heads up wouldnt hurt too. There have been other instances of hacking into third party payments systems.
 
little_roundtop said:
I'd be even more worried that that. How did they know you'd just placed an order with Damart? Most reputable online shops use SSL encryption, and certainly for the payment part of the transaction. SSL is very strong and it's designed to defeat just this "man in the middle" attack. I would be concerned that you have some sort of keylogger or trojan on your PC that is telling the bad guys what you'e doing.

As a first step I'd scan it thoroughly with the free versions of SuperAntiSpyware and Malwarebyte's Anti-Malware
Click to expand...

Yes I was wondering how they would know.

Thanks for those suggestions. I already have Anti-Malware installed. I'll up-date it and run it and I'll get SuperAntiSpyware and give that a go.

I forgot to mention that my postal address also appeared on the email!

It's worrying. It would only have needed the mistakes to have been corrected and for it to have been generally tidied up and better presented for it to have looked really genuine.
 
I almost got caught by one of these a few months ago. I'd had a discussion over the phone with AOL over an unclear bill which was resolved amicably. An hour later an email, allegedly from AOL, arrived confirming that my billing was to be adjusted and that they just needed some additional information... The coincidence of timing was such that I very nearly fell for it.
 
I made an enquiry to a motorhome/caravan accessory shop about a Propex Heater today. When filling in the enquiry form an "Autocomplete Enquiry form" (not perhaps the correct description) flashed upon my screen and in the form amongst other details requested was credit or debit card details. I am not familiar with this but it looks like a system that helps you avoid inputting the same details to different retailers online but I did not like the idea so logged out of it.
Is this a secure system or is it something else, is it used much by peeps? Still will not use it but curious.
 
Consider installing Rapport which is offered stand-alone or via various banks' on-line systems. It will warn you if you are entering security information into a website that is not your usual bank's site. It helps you avoid being fooled by phishing scams.
 
Question to the knowledgeable please..
Is it in order to install both security systems mentioned by Little_Roundtop, the Super anti Spyware and Malwarebytes or does one give the other problems?
 
Downsman said:
Question to the knowledgeable please..
Is it in order to install both security systems mentioned by Little_Roundtop, the Super anti Spyware and Malwarebytes or does one give the other problems?
Click to expand...

I tried SuperAntiSpyware a couple of weeks ago and got rid of it again - I'm sure its very good but the overhead on an 1.6Ghz XP machine was more than I want to deal with. Had to force the uninstall too - there are no uninstall options in the product menus. There can often be overlaps and problems between anti virus tools, at the time I had AVG installed.
 
Thanks for that Robbie. Think I'll give it miss then as I already have one anti-virus installed, which seems to cope with the basic stuff that I use on the Internet. Cheers..:)
 
Well I ran a full Virus scan. That found one "potentially unwanted program" but nothing to blame for last night's trouble.

I updated and ran Malwarebytes Antimalware. that found nothing.

I downloaded and ran the antispyware program. That has removed a shed load of cookies but nothing more.

I'll have to watch out next time I do an on line order .
 
I have AVG which seems to give me all the protection I need.

Advise has always been to install only one source of protection. Multiple protection software can create problems.
 
snowleopard said:
Consider installing Rapport which is offered stand-alone or via various banks' on-line systems. It will warn you if you are entering security information into a website that is not your usual bank's site. It helps you avoid being fooled by phishing scams.
Click to expand...
The prob with Rapport is that, allegedly, it slows down machines. I get peeps coming in saying that their machines are running slow, they all have Rapport on them. See here http://www.pcpro.co.uk/realworld/359617/is-hsbcs-security-software-more-trouble-than-its-worth
Stu
 
Downsman said:
Question to the knowledgeable please..
Is it in order to install both security systems mentioned by Little_Roundtop, the Super anti Spyware and Malwarebytes or does one give the other problems?
Click to expand...

You should never have two real-time anti-virus systems installed at the same time, however the free versions of SuperAntiSpyware and Malwarebyte's Anti-Malware are only on-demand virus scanners, they do not offer any real-time protection.

It is perfectly safe to have both of these installed at the same time, though you should only ever run one antivirus scan at a time of course.
 
Elessar said:
"effected" would have pressed delete on my PC.

when they perfect their grammar it will be worse.
Click to expand...
I'm afraid such a finely-tuned sense of error detection is likely to produce a lot of false positives!

I doubt whether 50% of the population would spot that what the writer actually wrote meant "If you fail to comply with this security procedure your order will be carried out." !

They might even consider the distinction between "affected" and "effected" to be an affectation. :D

And even those that do know the difference can sometimes make mistakes.
 
VicS said:
Yesterday we ordered a couple of items from Damart on line

After the usual confirmation email we also received the following apparently from Damart.

Dear Irene McKechnie,
We are writing with regard to a recent order you placed with us; (2012-04-29 21:29:45).
We have received a query from our payment merchant (Sagepay) requesting that your transaction is to be verified before we can complete our payment process.


From now on, to protect our customers as well as our own personal information and to prevent fraudulent activity which isagainst The Fraud Act 2006, we require your immediate response to complete and submit our verification form.


Please click HERE to view the form.


Once your details have been reviewed by our payment merchant, your order will become successfully verified, processed and dispatched as planned.


Sincere apologies for any inconvenience this may have caused,


Please Note; If you fail to comply with this security procedure your order will be effected.
Kind Regards,

- Carol Heyman
Senior Sales Director, Damart.




The incorrect name puzzled me but the alarm bells did not ring loudly enough to stop me looking at the form mentioned :eek:

The form requested all our credit card/bank account details :eek::eek:

Hovering over the return address revealed it was not Damart's

Fortunately I'm not totally stupid but I came close to falling for it.
Although they do warn customers to be alert for such things.

Ive sent the details off to Damart


What did I order you want to know...... A pair of "Welly clogs" and a rubber mat to go outside the back door.
Click to expand...



Vic....This could have actually been quite genuine. It seems that the banks introduce a higher level of security verification if used for internet transactions. SOmetimes this Verification process is triggered the first time you use the card for an Internet transaction.

This happened to me when using a terminal in John Lewis to buy something through John Lewis online. I was horrified at the way Santander threw up a most amateurish web page wich gave me a difficult to remember user name and requested a password etc before the transaction could continue.

The RBS system wasn t much better! Once this system is validated it pops up at most internat transactions and asks for three specific characters from the password. There is usually an attached web site where the user name and password allow you to view internet transactions on that card. Both RBS and Santender have such sites.
 
little_roundtop said:
You should never have two real-time anti-virus systems installed at the same time, however the free versions of SuperAntiSpyware and Malwarebyte's Anti-Malware are only on-demand virus scanners, they do not offer any real-time protection.

It is perfectly safe to have both of these installed at the same time, though you should only ever run one antivirus scan at a time of course.
Click to expand...

Ah! understood, thanks. I knew there was something about having two systems but I was too thick to grasp it..What Robbie said about no easy uninstall proceedure frightened me off though, as I have the computer skills of a chocolate mouse and without clear instructions would be lost.:)
 
You must log in or register to reply here.

Other threads that may be of interest

A
HELP! Trapper 300 Restoration - Seeking Blueprints for a Unique Family Yacht!
Replies
2
Views
257
Neeves
N
N
Integral Battery Electric Outboards… with MORE POWER!
Replies
11
Views
740
ontheplane
O

Share this page

Top