Tech – for Everyone

Tech Tips and Tricks & Advice – written in plain English.

Is That Email Legitimate?

Folks, a reader sent in a question I really think you should see…

Q: “Tech Paul;
For several weeks I’ve been keeping-up with your blog. Recently, I have been given some ‘devastating’ news and I turn to you for help. For many months I have been corresponding with business-people by emails. The incoming emails arrive directly to my ‘inbox’ not spam. The emails sent to me have ‘official’ government and bank ‘logos and tradmarks’. The emails also have ‘official’ government ‘seals’ and pictures of prominent leaders. Also received are ‘signatures’ and business ‘duty stamped seals of approval’. To say the least those emails look very sophisticated. The corresponce went on for months with the exchange of emails and telephone calls. Then all of a sudden the communication suddenly stopped. Without warning. Now, and most recently, when telephoning the other party; their phones are ‘disconnected’. When sending emails, my emails are returned to me ‘unanswered’. Needless to say I did send monetary payments (within a ‘time-limit’). Can you please tell me how one can ‘verify’ the legitimacy of an email? Is there any way to determine the ligitimacy of an email-address? I do enjoy reading your blog. However, the emails I receive leave me baffled, bewildered and perplexed. You have to see the emails for yourself. They look very professional and very sophisticated. They look genuine and authentic. And yet, when it comes to money payments; how can you tell if they are ‘fake’ or ‘real’? Your response is appreciated.”

A: Dear Reader,
It is rather easy to obtain, and paste in, official looking images…

But, without getting into your particular situation, and focusing in on what I understand your particular question to be — Is there any way to determine the legitimacy of an email?

The short version is: “sort of” but, no not really. You can look at the header (by viewing details) and see a more accurate picture of the Sender, but those can be faked (“spoofed“) or proxies used. Your real and true friends can have their machines get infected and used as spam bots, and mail from them (their machines) can be sent by criminals, and so on and so forth. Email without stringent controls in place (such as in a corporate setting) is a very insecure medium.

While we have invented “filters” which try to catch scams and spam, it is incumbent upon us – ourselves – to determine if an email is “legit”. Since the earliest days of the Internet, people have been told the basic Email rules:

1) Do not open mail from strangers
2) If they ask for personal information and/or money, it’s a scam
3) Write as if the whole world can read your words (or, “write like your mother will read it.”)
4) Don’t click links, open attachments, or “trust” email.

If you unsure about the legitimacy of an email, what you can do is look up the phone number elsewhere. Like, in the phone book. And call that number, not the number in the email, and you ask the supposed sender, “did you send me a email?

(But.. if you follow Rule #1, you don’t [usually] ever get that far..)

These scammers sometimes set up websites, phones, mailboxes, print up stationary, and more, to help pull off their cons.

… Since the FBI was nice enough to let me *borrow* their logo, I’m going to refer you to an excellent webpage they have; FBI.gov: New E-Scams & Warnings, as well as a link to the FBI’s IC3 Internet Crime Complaint Center, http://www.ic3.gov/default.aspx (which, as you can imagine, is swamped..)

Here’s some tips on avoiding becoming a victim, http://www.artscams.com/. (The Internet is literally filled with such advice..)

If you believe you have been scammed out of money, and therefore are the victim of fraud, there are many resources available to you.. (such as the one I discuss here, The World’s Largest Online Safety and Help Group) but I would start by talking with the local police. They can guide you as to your best immediate course of action.

I’ll say it yet again: you really do need to exercise Paranoid Common Sense on the Internet.

It ain’t Disneyland. (Please see, The Internet Is Not Disneyland)

We know about $105 billion per year in cybercrime ‘losses’, and we know that’s just the tip of the iceberg.. most go unreported. You listening, Cyber Czar?

Copyright 2007-2010 © “Tech Paul” (Paul Eckstrom). All Rights Reserved.

>> Folks, don’t miss an article! To get Tech – for Everyone articles delivered to your e-mail Inbox, click here, or to subscribe in your RSS reader, click here. <<

Share this post :

December 13, 2010 - Posted by | computers, e-mail, Internet, Internet scam, Phishing, security, tech | , , , , , , , , , , , , , , ,

2 Comments »

  1. Thanks for sharing this Paul. That readers /senders email looks sort-of-questionable…is it?
    …and many logos certainly look legit, I would hesitate to trust my judgment of logos on any incoming mail, so I do not open any mail from anyone I do not recognize.

    Gaia

    Like

    Comment by Gaia | December 14, 2010 | Reply

    • Gaia,
      It’s really very simple: If you did not ask to receive it, and/or you do not recognize the name (as a business associate or friend), delete it unopened.

      (Most people don’t see the evidence of the following fact, because their ISP filters most of it out back at their headquarters, but at any given moment 95% of ALL the “traffic” [the 1’s and 0’s being sent from place to place] on the Internet is spam [unsolicited] email. These spammers/scammers are not only a blight on humanity, but their activity is an outrageous waste of energy and resources… yet not much has ever been done about it except the toothless CANN-SPAM act.
      Sad as it is, it makes a certain kind of sense – the Internet was made “public” for one reason, and one reason only: to show us ads [and sell us *stuff* we don’t need].)

      Like

      Comment by techpaul | December 14, 2010 | Reply


Post your Comment/Question

« Previous | Next »