I’ve mentioned the Ashley Madison hack and ensuing scam – mail demands for Bitcoin payments – a few times over the last few weeks and thought I would now add a closing note, since, for me, the whole has to have an end somewhere. In one of the posts I mentioned that the mail address being used to send out the blackmail mails has been used for other services too – if you can call extortion a service. Perhaps, if anyone in the States is interested, this could be of use to them:
Give us a call to be accepted for the Government’s New Student Aid Program.
Experienced representatives are ready to accept your call from 8 – 9 pm EST.
Student Investment Aid
It comes from the same mail address (firstname.lastname@example.org) with the following Headers:
Authentication-Results: strato.com 1;
Date: Thu, 15 Oct 2015 09:09:42 +0200 (CEST)
(strato.com: domain aol.com designates 220.127.116.11 as permitted sender)
Received: from taclomr-m004e.mx.aol.com ([18.104.22.168])
by mailin.rzone.de (RZmta 37.14 OK)
with ESMTP id r04859r9F79gEOf
Thu, 15 Oct 2015 09:09:42 +0200 (CEST)
Received: from vm-149-174-150-116.asset.aol.com (vm-149-174-150-116.asset.aol.com [22.214.171.124])
by taclomr-m004e.mx.aol.com (Outbound Mail Relay) with ESMTP id E0CD53800DF8;
Thu, 15 Oct 2015 03:09:41 -0400 (EDT)
Subject: Lucas recommends – FACEBOOK RECOMMENDS : *** CALL US BACK *** READ IT NOW
Content-Type: text/html; charset=us-ascii
Please, don’t anyone send me threatening mails about this: I’m only passing it on, I didn’t originate it! And, no, I couldn’t be bothered calling the telephone number either – for obvious reasons – but perhaps they can give a little more information about the darker side of their business.
- Viktoria Michaelis.