Look at this email phishing scam purportedly coming from Vonage. You know Vonage has hit the big time when scammers starts targeting them. Unfortunately, the scammers, like many scammers, have poor English skills making their poorly written emails a dead giveaway.Let me give the scammers some tips for the future:
- Spell October correctly. It's not Octomber
- This is not grammatically correct (wrong tense) - "You did not accessed your account for more than a month."
- Sorry, but 'confront' is a poor word choice - 'compare' is what you meant. I think your English thesaurus or translator got you. "We will check your IP address, time zone, and confront it with our database logs."
Maybe the web interface does display credit card info, social security, or some other info that a credit card or identity thief can use? Any Vonage customers out there care to pipe in?
Here's the scam email.
Warning: The links go to www.angeltrans.kr not vonage.com. I didn't click through. You never know what untrustworthy sites have viruses, buffer overflow exploits, etc. I suggest you not click through either.
From: Vonage Marketing [mailto:service@vonage.com]
Sent: Sunday, October 12, 2008 7:59 AM
Subject: Message from Vonage, Customer Service
Importance: High
Dear Vonage Member,
Your Vonage Account will expire in: Octomber, 10
This might have happened due to the following reasons:
- You did not accessed your account for more than a month.
- You have dynamic IP address and due to that our system might have interpretated it as a hacking attempt.
- You entered a wrong password 3 times when you tried to connect to your Vonage Account.
To avoid an account suspension, please click here or the link below:
https://secure.vonage.com/vonage-web/public/login.htm
*We will check your IP address, time zone, and confront it with our database logs.
We are very sorry if this affects you in any way but our client's security is a top priority for Vonage Inc.
Regards,
Vonage Security Team.
© 2001-2008 Vonage Marketing, Inc., All Rights Reserved
Technorati
Del.icio.us
Slashdot
Digg
twitter
Do you mind not giving them any more help?
These jerks have cleaned up their act, with none of the apparent errors appearing the recent mail I received - If I wasn't paranoid about such things I would have taken it for legit. Instead, I logged in to vonage directly on the site and sent them an inquiry email about this communication, then googled "vonage phishing" just to see if there was a rash of these or just me.
This kind of crap is getting out of hand, but at least when they remain uneducated about the mistakes, it makes them easier to spot.
Next time let them do their own proofreading...
Just received one today 7/12/09
Dear Vonage Member,
We have reason to belive that your Vonage Account has been fraudulently accessed by a third party using other ISP(Internet Service Provider).
This might have happened due to the following reasons:
- You accessed your account from a different computer or you have changed your Operating System.
- You have dynamic IP address and due to that our system might have interpretated it as a hacking attempt.
- You entered a wrong password 3 times when you tried to connect to your Vonage Account.
Please understand that your account is safe but is currently suspended.
This suspension can be easily removed by logging in, by clicking here or the link below:
https://secure.vonage.com/log/suspension/service.php
*We will check your IP address, time zone, and if all matches, your account was never fraudulently accessed.
We are very sorry if this affects you in any way but our clients'security is a top priority for Vonage.
Regards,
Vonage Security Team.
******************************************
The only reason I know its a hoax is my Vonage account is working just fine. I"ll be forwarding this onto vonage right after this post.