[Scspamcop] Moral obligation to phishing victim?
Kenneth Brody
kenbrody at spamcop.net
Thu Apr 5 10:43:30 EDT 2007
Okay, what are my moral obligations to someone I think has been a
victim of a phishing scam?
Specifically, I got the typical "limited account access" from a
PayPal phisher. Naturally, I "logged in" with fake information.
I think used the same URL, with the filename removed, and was
greeted with a directory listing, including a .txt file holding
all of the info gathered. Most were things like "f*** you" and
other obviously-fake info directed at the phisher.
However, among the entries was something that looked legit, and
a reverse phone number lookup give the same name and city as in
the phisher's .txt file. The SSN and credit card info loog like
they may be valid. An attempt to log in to PayPal using the
account and password fails. Of course, that may be due to the
phisher having logged in and changing it.
There is an apparently-valid phone number in the file. Should I
give the victim a phone call?
--
+-------------------------+--------------------+-----------------------+
| Kenneth J. Brody | www.hvcomputer.com | #include |
| kenbrody/at\spamcop.net | www.fptech.com | <std_disclaimer.h> |
+-------------------------+--------------------+-----------------------+
Don't e-mail me at: <mailto:ThisIsASpamTrap at gmail.com>
More information about the SCspamcop
mailing list