Retrieved from the spam bin:
Bots are not known for their powers of concentration. (Nor is there any need for them to be, since the supply of bots is seemingly unending.)
Retrieved from the spam bin:
Bots are not known for their powers of concentration. (Nor is there any need for them to be, since the supply of bots is seemingly unending.)
Received last night as comment spam:
On the other hand, a bad credit history won’t customize the rates much until you have high valued collateral to aid your buy (in the case of Secured Auto Loans). Such things as prepayment penalties, interest amounts and any other fee included will directly impact on your repayment ability. Of course, one must pay for that benefits of obtaining instant cash easily available as interest.
Seven minutes later, attached to the same post:
On the other hand, a bad credit standing won’t modify the rates much if you don’t have high valued collateral to help your buy (in the case of Secured Auto Loans). All you have to do is to fill a fairly easy application with all the details. Of course, you have to pay to the benefits of obtaining instant cash easily available as interest.
This bot apparently owns a thesaurus, but not a very good thesaurus. You can block it at 18.104.22.168.
Received in email this past week:
Love what you’re doing on www.dustbury.com
I was checking out your site today and found this guest post you published. I’d love to be your next guest author.
I’ve been some topics that I think your readers would get a ton of value from:
• Best Winter Chore Clothes for Homesteaders
• 10 Winter Outfit Ideas for Women
Now what do you think are the chances that she actually saw the most recent guest post here, which was put up ten years ago and isn’t even part of the current WordPress database?
Yeah, that’s what I thought.
This is the first Netflix-related phishing scheme I’ve seen.
Subject: We need your help #Netflix-8124-7364-8674:
Since when does “information” get pluraled?
The link goes to some unspecified place shortened by bit.ly. The actual source seems to be jesusjobsy.com, which has existed for about two weeks.
Incidentally, whois.net, asked about that domain, offered to sell me jesuschristsaviour.com for $3,688.
And make sure you know what the doctor himself eats. This showed up in the spam bucket yesterday:
This is the pitch:
Did you know eating carrots and other vegetables can cause you to gain weight, and linked to severe obesity?
That’s according to a shocking medical report that’s just been released to the public.
In it, several top scientists say that we’ve been getting weight loss “all wrong” for the last 30+ years…
And that if you really want to burn fat, drop pounds, and be healthier…
There are three major changes to your diet you need to make right now.
These new dietary changes will surprise you.
Never eat these vegetables if you want to lose weight.
What? And give up my night vision?
I still have an AOL mailbox, at least partially because I’ve never had a good reason to delete it. Not much shows up in it. And this particular piece of spam, allegedly touting “bathroom remodeling trends by experts in yuor [sic] area,” had a fair number of hidden phrases to give it seeming validity.
Seeming, that is, until you actually read them:
animalism pickup cargo plaint with pompon or sledge thread luminous saliva taffeta with baby or captious 63e road
flitch dysentery shuffle repository with foul or materialism
congruity classical thymus
vane of germinate proceeding canter woodshed mortar ruby viosterol with qursh or interplay fiancee of enormity flamboyant glaze
Then again, maybe I’d like a bathroom with flamboyant glaze, enormity notwithstanding.
Everybody hates spam. For all I know, even spammers hate spam; telemarketers (spammers with dial equipment) are probably not happy when I call them out on Twitter. However, I seem to get less of it than most. From the WordPress dashboard here:
Akismet has protected your site from 40,195 spam comments already. There’s nothing in your spam queue at the moment.
Now this is a low-volume sort of site, with 250-350 visitors a day. I’d expect someone with twice the traffic to get at least twice the spam, maybe more. But this kind of floors me:
[T]he cleanup of spam … initially involves deleting the contents of the spam filter. You’ll understand how important that filter is when I tell you that I delete about 10,000 spam comments a day. Spam must be profitable in gaming the Google algorithm, or whatever the goals are, because it has proliferated in recent years to a point that would be completely overwhelming without the spam filter.
Then again, I have one more tool at my disposal: a plugin that bans spamming IPs, a whole bank at a time if need be. It’s not 100-percent reliable — there are always ways to sneak past a barrier — but I’ve denied entry to approximately 1.2 million would-be spammers.
Still, 1.2 million, for someone getting ten thousand a day, is barely four months’ worth.
Bonus points for starting with the verb “screw”:
Screw going to the doctor for your bedroom performance problems. You can fix them yourself WITHOUT worrying about expensive costs or side effects.
Don’t believe me?
All it takes is concocting 3,000 year old drink recipe that consists of:
1. 6 herbs
2. 2 fruits
3. 1 amino acid
Whip it up. Put it in a cup. Drink it down. And watch your woman’s sexually frustrated frown turn upside down.
Best of all, this drink only costs 30 cents to make. But I guess you want to know the specifics, huh?
Well, no, not really.
Extra spam words with the package:
/Medvedev/ folgende /eid /earlier /profile /hike /thank /please /stations/ wave /morning, reset /format /Turner/ core /date /customer/ jullie /dirty /hist /Va /virtual /gloire /quits /soumises /musique /argot /659 station /sweater /sorten /regulation /priest /Schumacher /orde responsibility /aan /welle /outside /everyone /driven /3 /HILFE /idbzymo /unfiltered hitchhikes /zxyxhjg /315-1952 /pesa /unhopedly /xkawgiygzs /ductive /hastening trinken /attendance /300-3314 /Candido /restaurant /vuwdn /weighs /dll /spread /in FILETIME /Food /3D /completed /1BC31C80 /signing /Thanks /PLEASE /buys /bens cameronian /1em /01C2DDA1 /2 /version /subscription /buckmast /matamoros /that’s Visit /cfm /elevation /is /example Howells /JENNIFER /led /Thank /second /general /lyngbyeae /multiplies /disastrous PermSize /desto /al /OK /XX /3D3D128m /Iran /regular /beenBelleville /axhwjvf ozyys /scroll /parliamentarians /other /James /Courts /verdriet /separately /Moz collector /filth /P’North /ghzyrr /EMAIL
Followed by several hundred more. This might be explainable, but not by me.
This was received in French, ostensibly from an .ru domain:
I have a little question; Here I found the craft that I want in my price I credit institution set to be “good” in the purchases of debt the credit period etc …
We started to oralament agreement with the real estate agency Evian on tafif after consultation with the people selling
Now we will sign sale documents.
How’s it going?
On signing the sales agreement, I have to pay a security deposit is that credit union can lend me?
Should I take a notary or I can take buyer / seller the same?
What documents do I require at this signature?
Have you been full of my credit institution after signing the agreement to have the most interesting rate? Or do you keep your bank?
I have some work to do in; presented in compliance etc … and installation of a wood stove; how to make specifications to globalize my loan?
His is done before signing the sales documents or evaluating the work “the fishy”?
In short how did you expect to benefit for the pinel law , or estate tax exemption of the law duflot
In addition, I ask myself if I have the opportunity to have a new apartment. If that can back up my alley.
It’s true, I think, a new home is better because it meets all new heating safety standards etc ..
I read on the internet that there had laws of deficaliation, pigeon, I’m not taxable.
How it’s going?
In addition, I want to change regions, is one of my goal and my children to school.
full of questions …
In a spamlet received last night, “Carley” (not her real name) asks if I have any interest in a “sexy depraved pussycat.”
More deprived than depraved, I am, but that’s another matter. Anyway:
Hi stallion, this is your girl. I am Lakisha.
I want you to bonk me as a little bitch. I bleed juice with desire to feel such sex!
Don’t forget that I’m waiting with impatience for a depraved man on this site.
Again: more deprived than depraved, “Lakisha” (not your real name).
The only really amusing aspect of this item, really, was the domain name used, or feigned, by the sender: megabulkmessage207.com. Due to a most lamentable dearth of dubious sites — only one link offered, and it wasn’t even obscured — this thing failed to break 2.5 on Spam Score, where 5 is my normal threshold and 25-30 is entirely too common. To borrow a phrase, this thing doesn’t even leak juice, let alone bleed it.
I am slightly more resistant to the blandishments of these pitches, but only slightly:
If you’re like me, you keep getting spam emails with enticing come-ons like “Would you like to know the four subtle warning signs that you’re near death from [fill in the blank]?” Or, “Would you like to know how to look 30 years younger in 10 seconds?” or “…how to lose your belly fat?”
And why is it always four warning signs? Two or three wouldn’t impress us?
Have you ever fallen for it and clicked on the link? In moments of weakness, I have. The ensuing experience is always the same. Someone — a doctor, a spokesperson — appears in a video and tells you what he/she is going to tell you. “I’m going to tell you this heretofore secret information about how you can energize/smooth out/avoid…” and he or she goes on and on and on till you find yourself shrieking, “Don’t tell us what you’re going to tell us. Get on with telling us, already, you friggin’ torturer!!!”
The pitch is never over until they find some way to tap your wallet. I would sooner believe fleeing Nigerian officials than these Doctors of Skulduggery.
This one is almost self-explanatory:
The actual link goes to a subdirectory at web-work.de. And the rotters had the effrontery to mark this as High Priority, which of course earns my wrath on general principle; what’s more, their subject line was “Your account has been limited,” which is almost always a dead giveaway.
Still, “link bellow” is sort of amusing.
I received three copies of this presumptuous little grubitation, allegedly from the “WebMail HelpDesk”:
Your E-mail has exceeded 2GB which is created by our Webmaster. You are currently running at 2.30GB and you will not be able to send or receive new messages in the next 24hours until you re-validate your mailbox.
Please complete the information below to re-validate your account
(4) Confirm Password:
For: System administrator
Who knew there was a “System administrator” living inside the router?
Weirdly, there were no links to be found anywhere in the message, so if this is phishing, there’s no line to reel in the suckers, and how many people are dumb enough to fill out the form and hit Reply?
Oh, yeah. You’re right, of course.
Something (mis)identified as “PPL Safety Check” dropped this little deuce into the punchbowl of my mail client:
As a practical matter, so far as potential identity theft goes, there’s little difference between Pakistan and Punxsutawney.
The bogus link goes to something called supportticketmanage.com, whose primary business, we may safely assume, is something other than managing support tickets. They’re also not so hot at spelling: “access” has two C’s.
Fished out of the spam trap for some inexplicable reason:
However, there is another standpoint that only one single image gains market recognition is not enough because its figure is too stuffless. My favorite feature about the Weather Bug app is the temperature display in the notification bar which gives you the current conditions and can also notify you of severe weather.
All these would make excellent add ons to any Angry Birds themed favor box.
I focused on those two words “favor box,” and after a few seconds remembered Gil Favor, the trail boss on the old Rawhide series, played by Eric Fleming. (Rowdy Yates, the, um, rowdy fellow played by Clint Eastwood, didn’t become trail boss until the eighth and final season.) I’m pretty sure neither Gil nor Rowdy had much truck with angry birds.
Nothing, I suspect, makes a bogus email more persuasive than the inclusion of something actually (sort of) true. This particular scam, by that reckoning, is utterly convincing in its presentation:
A new malware scam is posing as a speeding ticket email with a fake link that is said to load malicious code onto users’ computers. The emails, sent to at least few local residents in Tredyffrin, Pennsylvania, purport to come from the local police department. Malware emails that masquerade as something official are not rare, but these messages are fairly unique: they are said to contain accurate speeding data, including street names, speed limits, and actual driving speeds, according to the Tredyffrin Police Department, located close to Philadelphia.
It’s suspected that the data is coming from an app with permission to track phone GPS data. That could either be a legitimate app that has been compromised, or a purpose-built malicious app that was uploaded online. As anyone who has used a GPS navigator knows, location data can be used to roughly calculate your travel speed. The emails ask for payment of the speeding ticket, but no apparatus is set up to receive such fines. Instead, a link that claims to lead to a photo of the user’s license plate instead loads malware onto the user’s device.
“Citations,” says the PD, “are never emailed or sent in the form of an email attachment.” Still, people believe that banks and such will send you email to ask you your email address — which they obviously already have.
“Tredyffrin,” incidentally, is Welsh; it only looks like a J. K. Rowling place name.
I’ve perhaps too lightly tossed around the term “word salad,” but I’m pretty sure this piece of comment spam (picked up elsewhere) at the very least deserves a sneeze guard:
Walking quite Walking might not be actually wow play profound, But then I develop into darned when it n’t most of usually unquestionably this particular saddest movie I before set up. Subsequent you shelter, A new consistent gentleman trying to outlive one particular zombie apocalypse during the time safe guarding a little daughter child who were trapped by compact rrn a very treehouse. While doing the mission, You earn advanced one another watching kids shut off, And in addition waste really does reach an blower in certainly lovely unbearable stylish.
I figure I have plenty of examples of “certainly lovely unbearable stylish” in the picture archives around here (5300 images on site, about 75,000 on my home box). Then again, I strive to be a consistent gentleman.
Incoming comment spam, in the WordPress system, always has an email address attached, and almost always carries the URL of some alleged site. WordPress, if it’s not otherwise occupied, will actually attempt to display that alleged site in a frame if you hover over it. Often as not, the “site” comes up 404, and most of the time that it doesn’t, it’s not worth looking at.
Last night, though, was a first: a site that scolded me for having an ad blocker turned on.
Understand this. A spammer scolded me for blocking his ads. On the Gall Spectrum, this places right around Purely Unmitigated.
Rather than drop an email into the proffered address, which is probably bogus anyway, I have decided simply to block the miscreant’s IP address. And no, I’m not giving him a link either.
(Oh, you wanted to know the offending IP? Well, it is subject to change. However, I’m pretty sure you’ll never, ever get anything useful from 22.214.171.124.)
The ostensible selling point of Snapchat is its vanishing data: everything goes away on a schedule worthy of mayflies. And apparently, “everything” means everything:
Snapchat is famous for its disappearing messages, but unfortunately not everything in this world is ephemeral when you need it to be. The LA-based company disclosed today that a number of its current and former employees had their identities compromised by a cyber attack this month.
“Last Friday, Snapchat’s payroll department was targeted by an isolated email phishing scam in which a scammer impersonated our Chief Executive Officer and asked for employee payroll information,” Snapchat explained in a blog post. “Unfortunately, the phishing email wasn’t recognized for what it was — a scam — and payroll information about some current and former employees was disclosed externally.”
It gets worse. Said @SwiftOnSecurity:
There’s a chance the direct deposit bank info for employees was compromised as well. Good idea to DD into a dedicated account you empty.
We worry about brute-force attacks on our security, and then we just go handing information over to people. And we wonder why this sort of thing happens so often.
Anyone who owns a domain has likely received a “bill” from a third party offering to renew that domain at some ridiculous multiple of the actual registration price. Enough people have caught on to this scheme that now the scamsters are having to pretend they’re offering a service:
Obviously the most important thing here is “SECURE ONLINE PAYMENT.” Amount of said payment: $63.00.
In the fine print down below:
You have received this message because you elected to receive special notification proposal. If you no longer wish to receive our notifications, please unsubscribe here or mail us a written request to US Main Office: SEO Domain Registration Company, Los Angeles, CA 90036, Email: email@example.com or Asia Main Office: SEO Domain Registration Company, Shenzhen Futian, Email: firstname.lastname@example.org. If you have multiple accounts with us, you must opt out for each one individually in order to stop receiving notifications notices. We are a search engine optimization company. We do not directly register or renew domain names. We are selling traffic generator software tools. This message is CAN-SPAM compliant. THIS IS NOT A BILL. THIS IS A NOTIFICATION PROPOSAL. YOU ARE UNDER NO OBLIGATION TO PAY THE AMOUNT STATED UNLESS YOU ACCEPT THIS NOTIFICATION PROPOSAL. This message, which contains promotional material strictly along the guidelines of the CAN-SPAM act of 2003. We have clearly mentioned the source mail-id of this email, also clearly mentioned our subject lines and they are in no way misleading. Please do not reply to this email, as we are not able to respond to messages sent to this address.
I want to see how a “written request” gets to the SEO Domain Registration Company without a street address in Los Angeles, CA 90036 (near Hancock Park and the Miracle Mile) or however the Chinese sort these things out in Futian district, Shenzhen.
Recently arrived in the spam trap:
Have you ever thought about adding a little bit more than just your articles? I mean, what you say is valuable and everything. However think of if you added some great visuals or video clips to give your posts more, “pop”! Your content is excellent but with pics and videos, this website could undeniably be one of the very best in its field. Very good blog!
This might have carried a little more weight had the sender been identified as something other than “Free porn XXX Slut MILF.”
This arrived in the mail yesterday, and as Fake Priority Mail envelopes go, this is one of the fakest:
The fine print off to the right is hilarious:
Package intended for NextDay Delivery shipments only. Contents should be packed securely to ensure safe and prompt delivery. Contents are tracked nationwide. No liquids allowed.
And then, in even finer print, an alleged form number: ND912-0623. I include this for the sake of Googlers and such who might have gotten this piece of utter crap and thought for a moment that it was legit. It is, of course, nothing of the sort: it’s a pitch from one of the shadier auto dealers in town, complete with a plastic disk about poker-chip size, to make you think someone might have actually sent you a coin.
Incidentally, no one ever loses at these fake games — you win the absolutely lowest possible prize — and there’s also a bogus “Instant Savings Voucher” from the crapweasels, designed to look like a check for $3,534.92.
“Tracked nationwide,” indeed. Hey, pal, track this.
This landed in the mailbox, and provided small amusement for a short period of time. Assume [sic] throughout:
I want you, Handsome! I want to come to you and surrender to you all without the end)) I will be like a fire. It’ll light your torch of passion and we’ll delve into the world of illusions and fabulous pleasure. This pleasure will be so nice for us. We’ll be in the bed with you, and we will do some crazy things)) I’ll slide along your body. My hair and nipples will tickle your body pleasantly. My tongue will lick you. I’ll kiss your lips)) You will get a very strong pleasure and will get excited from it. That I’ll begin to stroke your cock very in a passionate rhythm. You’ll plunge into the tremendous passion. I want to plange with you. Call me.
Obviously this is no one who knows me.
Then there was this bit of weirdness at the bottom:
This Week In Webclips
Ando’s always welcome here, Mikey Wright rages, taking care of PNG, and more
Sneak Peek: In This Issue
At First Sight
Firsthand accounts of some of the greatest modern surf discoveries.
Journey to the Center
Finding the point of intersection between the old world and the new in Gabon.
The Long Way to Lagundr
Curiously, no links were provided for any of these, not that I was going to look at them or anything.
This oddball item didn’t pass the first-level spam filter, but I fished it out just to see what it was all about:
There is, as indicated, a .doc file attached, the sort of thing one clicks on only if one has a death wish, or if one’s picture accompanies the definition of gullible in the dictionary.
Oh, from the footnotes:
Please do not reply to this message. This email message was sent from a notification-only address that cannot accept incoming email.
Another email from Reince Priebus, chairman of the Republican National Committee:
You never activated your 2015 Official Republican Membership — and we’re one year out from the presidential election.
But I’m committed to bringing you on board, so here’s what I’ll do: If you register for 2016 Membership by TOMORROW AT 11:59 PM, you’ll get a $39.50 discount on the RNC Diamond Membership.
If ever there were a year to become a member of our Party — it’s 2016 — and you can do it right now.
I dunno, Reince. I mean, geez, I’ve been a registered Democrat for forty-odd years, and every time I think maybe I might be better off in the GOP — well, hell, you can read the news as well as I can. Yeah, I might have said something nice about Carly Fiorina. Hardly makes me a Republican, you know?
I will concede that your Democratic counterpart, Debbie Wasserman Schultz, is slightly less clever than a bag of yak hair. But I’ll bet the DNC database kids didn’t generate any letters like this to my friends and neighbors in the GOP.
Received in the mailbox yesterday:
Your invoice appears below. Please remit payment at your earliest convenience.
Thank you for your business – we appreciate it very much.
Edith Dejesus Courier Service
By “below,” they mean “inside this ZIP file,” and when I looked inside that ZIP file I saw a lone .js file.
As seemingly always these days, it’s a “simple trick.” Specifically, it’s this, with punctuation as in the original:
Here – is The-Simple Trick Donald–Trump- Uses- For Mental Focus
I always figured he fired the unfortunate underling who let him get off message.
About half the spam I’m getting these days has this weird random Emily Dickinson-on-Quaaludes style and a claimed domain in the .top series, recently activated in China.
This bit of whimsy landed at a site I run on the side:
Also, they offer you their services at the time when you have a tenant moving out and need to have the locks changed before the new one cann [sic] arrive. One well equipped peen — which certainly needs a pocket protector before I carry it around — can function as a grenade. In this case, make some research early on even before the actual unfortunate incident can happen.
Mostly, this is a test to see if “well equipped peen” shows up in the search logs. And come to think of it, how would you determine if some random peen was, in fact, “well equipped”? Most descriptions of such objects are, um, sort of one-dimensional. (Two, if the word “girth” appears anywhere in the same paragraph.)
Disclosure: Yes, I own a ball-peen hammer.
Since I installed WordPress in the fall of 2008, the Akismet plugin has thwarted just under 40,000 spams. To me, this seems like a lot; but to WordPress oldtimers, this is a rounding error. Then again, I have a second line of defense: a handy little device called WP-Ban, which does a pretty fair job of keeping out known offending IP ranges. Even after a recent update, though, it was taking a couple of minutes to add a single IP to the ban list, and after watching things unfold in realtime, I decided to reset its counter.
As of yesterday, WP-Ban had turned away 923,242 intrusions, some IPs with only one or two tries, some with several thousand. So maybe, instead of forty thousand spams, I’d have had close to a million by now. It’s a discouraging thought, to say the least; then again, picking them out by hand is no fun for anyone, unless they’re inadvertently amusing.
Actual spams received here:
The only reason to do things like this, of course, is to evade filters, but who has filters for stuff like that?