Re: [bitfolk] idle curiosity? bank phishing scam, was Fw: No…

Top Page
This message is part of the following thread:
M-\the complete thread tree sorted by date
M\MMax B at <-
MMAndy Smith at ->

Reply to this message
Author: Andy Smith
Date:  
Subject: Re: [bitfolk] idle curiosity? bank phishing scam, was Fw: NoticeID:01ZMCX
rov@???>)
    id 1SnZ3B-0003dX-HX
    for users@???; Sat, 07 Jul 2012 17:44:10 +0000
Received: from gw.viorsan.com ([92.255.176.201])
    by mho-01-ewr.mailhop.org with esmtpsa (TLSv1:AES256-SHA:256)
    (Exim 4.72)
    (envelope-from <prvs=05351536fb=dmitriy.kazimirov@???>)
    id 1SnZ34-000NLr-WE
    for users@???; Sat, 07 Jul 2012 17:44:03 +0000
X-Mail-Handler: MailHop Outbound by DynDNS
X-Originating-IP: 92.255.176.201
X-Report-Abuse-To: abuse@??? (see
    http://www.dyndns.com/services/mailhop/outbound_abuse.html for
    abuse reporting information)
X-MHO-User: U2FsdGVkX19rhYxozikYKkvA5hodtQP8
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=viorsan.com;
    s=mail; 
    h=To:References:Message-Id:Cc:Date:In-Reply-To:From:Content-Type:Mime-Version:Subject;
    bh=VvOlHmds4xXdeFGjwvp07pgMjR/MWQlrFNEEahgcCBY=; 
    b=GyzLpwiHP1zqJqPfalKkbaT7LZeDbKb3r9tU8ZaG1a3y1tndVEjOK53X8oTxKoRvw2T4Bz/JDHJoJ69SFoeBxblparJxMUNSDGPyoDgpu+c7l+6lusXhUgiPCmIObypH94/lUPBsRy2jnhR+M9jlSi5ACFtRgRUisQPAq0QrFFQ=;
Received: from inari4.viorsan.com ([10.0.0.6]:51242 helo=viorsan.com)
    by gw.viorsan.com with esmtps (SSLv3:DES-CBC3-SHA:168) (Exim 4.76)
    (envelope-from <dmitriy.kazimirov@???>)
    id 1SnZ2u-0007xr-0k; Sun, 08 Jul 2012 00:43:52 +0700
Received: from inari4.viorsan.com (account dmitriy@??? [10.0.0.6]
    verified) by viorsan.com (CommuniGate Pro SMTP 5.4.3 _community_)
    with ESMTPSA id 1270884; Sun, 08 Jul 2012 00:43:52 +0700
X-CTCH-RefID: str=0001.0A090202.4FF87558.008C,ss=1,re=0.000,fgs=0
Mime-Version: 1.0 (Apple Message framework v1278)
Content-Type: multipart/signed;
    boundary="Apple-Mail=_B7296EAB-7DF8-47AD-A56C-E3D41BD13F0C";
    protocol="application/pkcs7-signature"; micalg=sha1
From: Dmitriy Kazimirov <dmitriy.kazimirov@???>
In-Reply-To: <20120707174019.GY3867@???>
Date: Sun, 8 Jul 2012 00:43:51 +0700
Message-Id: <8BD614AC-06CC-4676-92D9-38641841520E@???>
References: <20120707130537.GA11695@???>
    <ECAE67DBAB7C44C2BA99DA232CC6E395@???>
    <5C522D3C-B8E2-46E2-B4AC-5436A4626E62@???>
    <20120707174019.GY3867@???>
To: Andy Smith <andy@???>
X-Mailer: Apple Mail (2.1278)
X-Virus-Scanner: Scanned by ClamAV on mail.bitfolk.com at Sat,
    07 Jul 2012 17:44:09 +0000
X-SA-Exim-Connect-IP: 204.13.248.71
X-SA-Exim-Mail-From: prvs=05351536fb=dmitriy.kazimirov@???
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
    spamd2.lon.bitfolk.com
X-Spam-Level: **
X-Spam-ASN: AS33517 204.13.248.0/24
X-Spam-Status: No, score=2.4 required=5.0 tests=DKIM_SIGNED,DKIM_VALID,
    DKIM_VALID_AU,MIME_CHARSET_FARAWAY,RCVD_IN_DNSWL_NONE shortcircuit=no
    autolearn=disabled version=3.3.1
X-Spam-Report: * -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at
    http://www.dnswl.org/, no *      trust
    *      [204.13.248.71 listed in list.dnswl.org]
    * -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from
    author's *       domain
    * -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
    *  0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
    *      valid
    * 2.5 MIME_CHARSET_FARAWAY MIME character set indicates foreign
    language
X-SA-Exim-Version: 4.2.1 (built Mon, 22 Mar 2010 06:51:10 +0000)
X-SA-Exim-Scanned: Yes (on mail.bitfolk.com)
Cc: users@???,
 Dmitriy Kazimirov <dmitriy.kazimirov@???>
Subject: Re: [bitfolk] Proving that you are you
X-BeenThere: users@???
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Users of BitFolk hosting <users.lists.bitfolk.com>
List-Unsubscribe: <https://lists.bitfolk.com/mailman/options/users>,
    <mailto:users-request@lists.bitfolk.com?subject=unsubscribe>
List-Archive: <http://lists.bitfolk.com/lurker/list/users.html>
List-Post: <mailto:users@lists.bitfolk.com>
List-Help: <mailto:users-request@lists.bitfolk.com?subject=help>
List-Subscribe: <https://lists.bitfolk.com/mailman/listinfo/users>,
    <mailto:users-request@lists.bitfolk.com?subject=subscribe>
X-List-Received-Date: Sat, 07 Jul 2012 17:44:10 -0000



--Apple-Mail=_B7296EAB-7DF8-47AD-A56C-E3D41BD13F0C
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
    charset=koi8-r


Hi,
in this case... _I_ would used followign crazy idea:
- ask custom for at least N alternate contact points(NOT e-mails, if =
customer things they are unsecure). skype, linkedin account, EVE =
Online(or WoW) char name and use that for secondary verification

08.07.2012, =D7 0:40, Andy Smith =CE=C1=D0=C9=D3=C1=CC(=C1):

> Hi Dmitriy,
>=20
> On Sun, Jul 08, 2012 at 12:05:51AM +0700, Dmitriy Kazimirov wrote:
>> My is just ask permission to charge small (<10 GBP) amount of money =
from last used card and ask customer exact amount(after verification =
just credit money to customer)
>> (if your billing system allow that)
>=20
> Unfortunately at the moment most payment methods involve sending a
> payment request to an email address, so for identity purposes
> they're only about as secure as the customer's email is. If the
> customer considers their email to be secure then they wouldn't have
> disabled emailed password resets. In theory.
>=20
> Cheers,
> Andy
>=20
> --=20
> http://bitfolk.com/ -- No-nonsense VPS hosting
> _______________________________________________
> users mailing list
> users@???
> https://lists.bitfolk.com/mailman/listinfo/users


--Apple-Mail=_B7296EAB-7DF8-47AD-A56C-E3D41BD13F0C
Content-Disposi
This message was posted to the following mailing lists:
users
Mailing List Info | Nearby Messages		<-[bitfolk] idle curiosity? bank phishing scam, was Fw: Notice ID:01ZMCXRe: [bitfolk] idle curiosity? bank phishing scam, was Fw: NoticeID:01ZMCX->
Bitfolk Mailing List Archive administrated by List AdminLurker (version 2.3)