W3C home > Mailing lists > Public > site-comments@w3.org > December 2009

Re: Potential spam/phishing attempt (was "Re: Warning Notice!!!")

From: Helder Magalh„es <helder.magalhaes@gmail.com>
Date: Sun, 6 Dec 2009 09:17:18 +0000
Message-ID: <2a1ddf8a0912060117p29a8af94w584b80c1f6bbf76f@mail.gmail.com>
To: SVG WG <www-svg@w3.org>
Cc: W3C Site Comments <site-comments@w3.org>
Hi again,

I just noticed that I missed including the general W3C contact address
in my message: after originally adding it, I noticed a few more
interesting bits and rewrote the email from scratch. Sorry for the
annoyance/persistence, but I feel that this is an important matter...

The previous message, together with the attachment, is already
available [1] in the archive.


[1] http://lists.w3.org/Archives/Public/www-svg/2009Dec/0008.html

2009/12/6 Helder Magalh„es <helder.magalhaes@gmail.com>:
> Hi everyone,
> I'm reporting what appears to be a potential spam/phishing attempt,
> made on behalf of the W3C Webmaster to the www-svg mailing list [1]
> (and, as I'm subscribed to it, to my personal email address).
> The full message is attached, as the visible message headers obfuscate
> the true origin of the message (a server located at
> "webmail.xnet.hr").
> As I wasn't sure about what the best way to report this, I'm replying
> to the message and also CCing the general address (stated in the
> general contact instructions [2]).
> Please take appropriate measures, as the message seems to be
> sufficiently well forged to deceive users: I must confess that I was
> starting to evaluate whether to reply or not; if the message contents
> were a little more coherent (and didn't request the password), I might
> not been convinced to crawl through the original message raw data.
> Hope this helps,
> †Helder
> [1] http://lists.w3.org/Archives/Public/www-svg/2009Dec/0007.html
> [2] http://www.w3.org/Consortium/contact#otherwise
> ---------- Forwarded message ----------
> From: W3 Online Team <webmaster@w3.org>
> Date: 2009/12/6
> Subject: Warning Notice!!!
> To:
> A DGTFX virus has been detected in your folders
> Your email account has to be upgraded to our new
> Secured DGTFX anti-virus 2009 version †to prevent
> damages to our email log and your important
> files.
> Click your reply tab, Fill the columns below and
> send back or your email account will be terminated
> immediately to avoid spread of the virus.
> Note that your password will be encrypted with
> 1024-bit RSA keys for your password safety.
> † † † † † WARNINGS
> If the above details is not sent you will
> experience login problems after you log out.
Received on Sunday, 6 December 2009 09:18:23 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:52:30 UTC