The Property must be located in a well-reserved,serene,secure and highly-hygienic environment because I am most particular about the safety and sound health of my family.
I wish to make this transaction with you in a very secret and confidential manner due to my position as a cabinet minister here in my country Ghana.

Therefore,upon response from you I will connect you with my agent here whom I trust so much to represent my interest in this purchase.franciskweme2007@[hidden].com
Thank you and accept my kindest regards,

Dr. dan

Want to complete this article?

What issues do you see with the text of this message and why would I assume that it is a Phishing Email? Complete this story via comment and we’ll feature your comment as a part of the article and link back to your website.

We have a winner, David Schur completed the article via this comment on Facebook:

David Schur – I’ll take a shot Joe.
1) does not address you by name. Nobody will buy your house, or send you millions of dollars without knowing who the heck you are
2) Total lack of pii. If this was legit, they would know your address, which is the relevant pii in this case. My bank or cc includes the last 4 digits of my account to let me know the email is real.
3) Typo’s…when will the phishers learn that simply hiring a native english speaker to proofread would make a difference (maybe there is ba business opportunity here)
4) simple common sense…to good to be true = false…100% of the time

This won’t work for a real hack…but luckily phishers these days never invest in data that connects your email to any meaningful form of pii…luckily axiom 4 will ALLWAYS be true

Joe’s comment – I really like David’s rule #4, I think Phishers best tool is exploiting people’s greed. Also David had no desire to have a link back to anywhere so I asked him what Charity he likes, here is his response:

“American Red Cross…when bad stuff happens they get my money…then I can safely and with good conscience ignore the inevitable scam charity emails” – David Schur

Low Importance

I recommend using this flag when sending Emails to people who you know to be very busy that are not time critical. Chances are busy people will respond promptly to all most messages anyway but it is a nice way to say “Hey I know your time is valuable, there is no rush here.”

Not Flagged or Normal Importance

Most Email fits in this category, most people don’t flag messages at all or use the subject line of the Email to indicate the nature of the message.

High Importance

This option is sometimes over utilized, I’ve seen some Email users that seem to flag a large percentage of their messages as high importance. This is acceptable if it is factual. I recommend using this option for messages where the response required is timely or the information will be considered urgent by the recipient. In conjunction with some carefully crafted subjects you can provide a range of urgency to the recipient.

Here is the location of this tag in Microsoft Outlook 2010:

Check out more Quick Tips.

“In the field of computer security, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication.” – Wikipedia

What I noticed was an Email purportedly from Bank of America telling me that there was an “Account Resolution Required”:

Message in Outlook Allegedly from Bank of America

I scanned over to the preview pane and noticed that it had a link that appeared to be correct, so I hovered over the link to see if the link was spoofed and to no big surprise, it was. Here is how the message looked in my preview pane, I did not download pictures because that is a popular way for spammers/crooks to confirm Email addresses of their targets/victims:

Full Phishing Email Screenshot

Let me further clarify in lay terms, the link that reads:

https://www.bankofamerica.com/home/1244618/ddjdfdkfi126.aspx?screenid=Update_Acct

is actually:

http://prostyle-esports.nl/index.php

and this is evident when I hover over, or place my mouse cursor on the “alleged” link. This is a tactic you can use to check links you are unsure of. However I should clarify that it doesn’t always work. There have been occasions where this has been spoofed effectively typically it has to do with the Email client or Browser and security patches on your computer.

Testing the Link

Using a test environment I pasted the link to see what the target site looked like:

Blocked - Forgery

I was pleased to see it had been blocked, this saved me the time of researching and Emailing the Internet Provider involved. After confirming this I used “properties” on Outlook to get the header information, there is a lot of information but plenty of clues to let me know that this message was not authentic (had everything else appeared right, which most certainly the SSL certificate warning would have popped up unless it was an unprecedented forgery!). Here are a few of the more obvious lines I parsed from the headers:

Output of Arin.net Whois - RIPE

There are a lot of ways to spot fraudulent/Phishing Emails. Our advice to our clients is if they are not 100% certain we recommend they forward the messages to us for analysis. Most of these kinds of messages are blocked and we don’t see them, but if something doesn’t look quite right it probably isn’t.

12/18/2009 1414 Pacific – Services have been restored, if you note any lingering issues please contact us.

Watch this video to learn how to access and use the Webmail/Spam quarantine options as well as our forwarding and auto responder options. If you cannot view or don’t see the video the analog directions follow:

There are 2 important things you should know about your new Managed Solutions email account.

1. Your spam quarantine is by default only accessible via the webmail interface.
2. You have flexibility if you do not like the default Spam quarantine options.

Step 1 – Login to Webmail – Point your browser to https://webmail.managedsolutions.com
Step 2 – type the email address of your account and password provided. Contact us if you’ve forgotten or lost your password.

The webmail looks something like this:

Once logged in you will know if there are unread messages in your Spam quarantine by looking at the folder on the left hand side under Email Folders something like this:

In this example there is one unread message in the inbox and 116 messages in the Spam Quarantine. You can then click the Spam folder to manage those messages. The interface is fairly intuitive. Should you decide you wish to modify the Spam Quarantine options, access the Settings button all the way on the top right of your browser window (just above search).  Select the Spam Settings Folder and make the adjustments that you favor. Be sure to click save if you do make a change.

We hope you’ve found this article to be helpful. Let us know if there is anything we can do to improve it.

“Hello, I wish to let you know that i have been paid by a client to assasinate you at convenience,and i have signed a contract of $650,000 yesterday for this.I have never met you before,but they gave me the full description of your identity and contact,together with your photograph which my boys have used to trace you.

The reason why they want you Dead is not disclosed to me as i was not allowed to know,but you are now not better that the dead ok.

My BOYS are now contantly watching you,they are following you-home,office,everywhere…..,you go and they are waiting for my instruction to terminate you.And they will strike at convenience.

THIS IS MY MESSAGE-

LISTEN VERY WELL !!!!,the Police cannot do much to help you out in this right now because you are being watched,any such attempt is very risky cause you will push us to terminate your life without option. Your calls are not safe also.In fact you are traced. I have no business with you but at least i have cleared the way as a pro-,but you may have one chance to live again if you can contact me not latter that 24 hours after this mssage.

GOODLUCK!!!”