Plusnet
Monday 15th March 2010Login | Register | Help
Home » Forum » Technology Discussions » Web and Internet » A new scam
Pages: [1]

A new scam

« on 12/10/2009, 18:10 »
Well new to me anyway!

Just got this email from "no-reply@hmrc.gov.uk"

Quote
Taxpayer ID: ken-00000717113591UK
Tax Type: INCOME TAX
Issue: Unreported/Underreported Income (Fraud Application)

Please review your tax statement on HM Revenue and Customs (HMRC) website (click on the link below):

review tax statement for taxpayer id: ken-00000717113591UK

HM Revenue and Customs

Now the link is to:-
http://online.hmrc.gov.uk.esssaze.co.uk/SecurityWebApp/httpsmode/statement.php?id=8926517549855721851799691975129305358417668807454786&email=xxx@yyyyy.co.uk&tid=ken-00000717113591UK

And the header shows:- X-Mailer:Microsoft Outlook Express 5.00.2919.6600

Nice to know the good folk at HMRC are using M$ OE for their email client as well! Cheesy

Since if anything the gov owes ME money, I don't think I will be clicking on the link Cry
This is Linux Country, on a quiet night you can hear WINDOZE! Systems REBOOTING !!
Logged
  • Alex
  • Bright Spark
  • *
  • Posts: 1462
  • View Profile
« Reply #1 on 12/10/2009, 18:25 »
I've been getting a load of those as well.
No idea what's on the other side of the link, I suspect something nasty.

Not that I click on any links from e-mails, but I use a bare VM for sites/apps I'm not quite sure on.
So if anything happens I'll just trash it Smiley
Logged
« Reply #2 on 12/10/2009, 19:33 »
As someone who works for HMRC (for a given value of 'work' and a given value of 'for'  Wink), I can tell you all that HMRC never communicate with 'customers' (as we now must call you) by e-mail.

There are two reasons for this:

1) Data security: all settings have been at 'maximum paranoia' since that business with the lost CDs a couple of years ago (we can't even send 'customer' data via internal e-mail); and
2) Only about 20% of staff in the Department have got external e-mail access anyway.

And we're using M$ Outlook 2003 and Exchange, FWIW
Nigel
Logged
« Reply #3 on 12/10/2009, 21:31 »
I am well aware that no council department would send this by OE, let alone a government one, that was one of the items I thought strange, the main one was the dodgey web site address. I don't ever click on a unrequested link like that. The first thing I do is examine them and if I can pass on the scam to someone who's web site has been hacked then I will but this one looked like a site setup to garner bank details etc. (Just from looking at the link not from visiting the site, I hasten to add)
This is Linux Country, on a quiet night you can hear WINDOZE! Systems REBOOTING !!
Logged
  • Alex
  • Bright Spark
  • *
  • Posts: 1462
  • View Profile
« Reply #4 on 12/10/2009, 21:35 »
On the subject of new scams .. I got this today:

Quote
Attention!

On October 16, 2009 server upgrade will take place. Due to this the system may be offline for approximately half an hour.
The changes will concern security, reliability and performance of mail service and the system as a whole.
For compatibility of your browsers and mail clients with upgraded server software you should run SSl certificates update procedure.
This procedure is quite simple. All you have to do is just to click the link provided, to save the patch file and then to run it from your computer location. That's all.

[URL Removed]

Thank you in advance for your attention to this matter and sorry for possible inconveniences.


                                                                                                                   System Administrator
Logged
  • MrC
  • Posts: 299
  • View Profile
« Reply #5 on 12/10/2009, 23:46 »
Quote from: biker955 on 12/10/2009, 18:10
Now the link is to:-
http://online.hmrc.gov.uk.esssaze.co.uk/SecurityWebApp/httpsmode/statement.php?id=8926517549855721851799691975129305358417668807454786&email=xxx@yyyyy.co.uk&tid=ken-00000717113591UK

First time I've got one however SWMBO has had a few in the past. The link in mine would have sent me to online.hmrc.gov.uk.neaazan.cn though and there's probably others.

There is an email address you can forward these to - phishing@hmrc.gsi.gov.uk - although I'm not sure what they can do about them.
Logged
Pages: [1]
Home » Forum » Technology Discussions » Web and Internet » A new scam
Jump to:  

Related Sites

Community Apps

Here at Plusnet we're always trying to use clever open source things to make our lives easier. Sometimes we write our own and make other people's lives easier too!

View the Plusnet Open Source applications page

About Plusnet

We sell broadband, phone, VoIP and more to homes and businesses in the UK. Winner of 9 out of 11 Categories in the 2008 USwitch survey. Winner of "Best Consumer ISP" at 2008 ISPA awards. Voted number 1 in the Broadband Choices 2008 survey.

© Plusnet plc All Rights Reserved. E&OE

Powered by SMF | SMF © 2006-2008, Simple Machines LLC

Add to Technorati Favourites