Feeds

419-lite fraudsters target Camelot

You have to be in it to win it

SANS - Survey on application security programs

Advance fee fraudsters are turning their attention to the UK's National Lottery with scam emails that pose as winning notifications.

Recipients are told they've won sums beyond the dreams of avarice simply by having the right email account. A Camelot representative confirmed that you have to purchase a ticket to win anything in the UK's National Lottery.

Cheekily the bogus emails (sample below) link to Camelot's web site and invite users to phone a UK mobile, which is currently disconnected. Presumably the fraudsters (who might be based anywhere) are looking to harvest contact information submitted by likely marks by email.

Over recent months the traditional advance fee fraud has spawned 419-lite scams which suggest recipients have won a bundle in fictitious Euro lotteries. Basing such scams on real lotteries (such as Camelot) was the subject of two scam emails seen by El Reg this week, so we know it's the current subject of scam emails even though its harder to say if it's the first use of the technique. Message headers suggest the scam email were sent via Hotmail with responses invited via a Yahoo! address.®

To: xxxx

From: "UK NATIONAL LOTTERY" <uklottery@national-team-winners.com> </pt>

Subject: NATIONAL LOTTERY NOTIFICATION

Date: Thu, 01 Sep 2005 16:09:30 +0000

The National Lottery PO Box 1010 Liverpool L70 1NL

FROM: THE DESK OF THE MANAGING DIRECTOR

INTERNATIONAL PROMOTIONS/PRICE AWARD DEPARTMENT.

REF Nº: EGS/2251256003/03

BATCH Nº:14/0017/1PD

RE: AWARD NOTIFICATION/ FINAL NOTICE

National U.K Lottorey wishes to inform you the results of the E-mail address ballot lottery international program by Great Britain held on 3rd Aug, 2005. Your email account have been picked as a winner of TWO MILLION POUNDS ONLY.

This results is now released to you on 1st Sept, 2005 and your email address attached in the A Category bonus balland bonus ball to check your results online click on this link http://www.nationallottery.co.uk/player/p/results/results.do participants were selected through a computer ballot system drawn from Microsoft users from company and individual email addresses users.

Be advice to keep your winning information confidential until your claims has been processed and your money remitted to you. This is part of our security protocol to avoid double claiming and unwarranted abuse of this program,For the release of your winning, kindly contact your claims agent in British Lottery Head Quarters Mr. Alan Cross on tel +447031914170 and Fax: +447092870147 you are to quote your lucky number for confirmation on your winning.

All winning must be claimed not later than 30th Oct, 2005. After this date all unclaimed funds will be retured to European Union Treasury as unclaimed. Please note in order to avoid unnecessary delays and complications please remember to quote your reference number in all correspondence.

Note that this winning is not for any UK citizen.

You are therefore advised to give the following informations to your claim's agent via email which is click here to send your email

1. Full name and address.

2. Country.

3. Tel and fax number.

4.Occupation.

5. Age.

Congratulations from the staff and thank you for being part of email account users program.

Yours Sincerely, Mrs. Julie Van Hans, Executive.(Euro Lottery Intern.)

Dr. P. Swier, Mr. Gerald Goodman (Manager Foreign Operations), Mr. Franklyn Van Der Weijden (Manager Domestic Banking Operations), Dr. James Williams (Director International Credit Department), Mrs. Sandra Murphy (Executive), Mr. Michael Cole (Executive), Mr. Stephen Boer (Chairman). Copyright © 2005 British Lottery International

MRS JULIE VAN HANS,

VICE PRESIDENT

Combat fraud and increase customer satisfaction

More from The Register

next story
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.