Sysvr4 0 Posted September 30, 2006 Share Posted September 30, 2006 When I signed up for FCP, I used a unique email address for it. I have never used the address before or since, not once. So why am I getting the following paypal phishing attempt sent to that same address?There are only two plausible explanations: a. FCP sold the address to someone (I actually find thing sort of unlikely given that it's a phisher and not a spammer) or...b. FCP has piss-poor security and the address was somehow stolen. This might also lend credence to the rash of Neteller attacks being related to FCP. Oh, before any of you say that it's probably due to poor security on my end and the phisher got it that way, I'll say two things. First, I have a degree in computer science and I've managed security on unix, windows, and mac servers for networks of tens of thousands of people. I am extremely well-versed in computer and network security. Second, if someone COULD hack my computer to get the address, why would they need to bother phishing for my information?So which is it FCP guys?Jeff Link to post Share on other sites
BigDMcGee 3,352 Posted September 30, 2006 Share Posted September 30, 2006 Oh, smart money is on sold the info. Link to post Share on other sites
Governator 54 Posted September 30, 2006 Share Posted September 30, 2006 Is this a free webmail account such as hotmail, yahoo? Link to post Share on other sites
Sysvr4 0 Posted September 30, 2006 Author Share Posted September 30, 2006 Is this a free webmail account such as hotmail, yahoo?Good point, I was just getting ready to update my post about this.The email account is on a server that I manage personally. There's not another human in the world with access to it. Essentially, I am my own email provider, and I'm pretty sure I didn't sell it.Jeff Link to post Share on other sites
chgocubs99 0 Posted September 30, 2006 Share Posted September 30, 2006 So maybe they sold it...who cares? Delete it and move on with more important things in life. Link to post Share on other sites
AcesOnFire 0 Posted September 30, 2006 Share Posted September 30, 2006 Ever typed it on a web page? Link to post Share on other sites
Governator 54 Posted September 30, 2006 Share Posted September 30, 2006 Good point, I was just getting ready to update my post about this.The email account is on a server that I manage personally. There's not another human in the world with access to it. Essentially, I am my own email provider, and I'm pretty sure I didn't sell it.JeffYour forum account is from March, 05 - when did you create your email account? Link to post Share on other sites
Zach6668 513 Posted September 30, 2006 Share Posted September 30, 2006 So maybe they sold it...who cares? Delete it and move on with more important things in life.Don't be a douchebag.******Sysvr,Where have you been lately?Get back to strat!- Zach Link to post Share on other sites
Sysvr4 0 Posted September 30, 2006 Author Share Posted September 30, 2006 Ever typed it on a web page?Only on FCP's site.Jeff Link to post Share on other sites
chgocubs99 0 Posted September 30, 2006 Share Posted September 30, 2006 Don't be a douchebag.******Sysvr,Where have you been lately?Get back to strat!- ZachPlease. Link to post Share on other sites
Sysvr4 0 Posted September 30, 2006 Author Share Posted September 30, 2006 So maybe they sold it...who cares? Delete it and move on with more important things in life.It's important because if they didn't sell it and it was stolen, it's likely that's the same way all these folks' neteller account details got out.Jeff Link to post Share on other sites
Zach6668 513 Posted September 30, 2006 Share Posted September 30, 2006 Please.Get a clue.Some people take their security seriously. Link to post Share on other sites
Sysvr4 0 Posted September 30, 2006 Author Share Posted September 30, 2006 Your forum account is from March, 05 - when did you create your email account?I created that address the same day. I do this for every site that requires email registration for exactly this purpose.Jeff Link to post Share on other sites
chgocubs99 0 Posted September 30, 2006 Share Posted September 30, 2006 Get a clue.Some people take their security seriously.Save the douchebag comments for people that are actually acting like one, not someone that expresses an opinion. Link to post Share on other sites
Sysvr4 0 Posted September 30, 2006 Author Share Posted September 30, 2006 Where have you been lately?Get back to strat!Hey Zach, been remodeling the house, so little time for poker. Nearly done now tho :)Jeff Link to post Share on other sites
Governator 54 Posted September 30, 2006 Share Posted September 30, 2006 It's important because if they didn't sell it and it was stolen, it's likely that's the same way all these folks' neteller account details got out.JeffIt's likely the player database is stored on OnGame's servers. If it's the same email address I'm seeing you've registered with the forum, I can assure we havn't sold this database to anyone, nor will we. That database is stored in house but I don't manage player accounts for the software, that's a question for Bob (fcp info). He's doing the AHL Draft tonight with Daniel so highly doubt he's available.Send him a private message with your concern and he'll get back to when he can. Link to post Share on other sites
GoCryWolfe 0 Posted September 30, 2006 Share Posted September 30, 2006 I don't mean to speak for Governator, Kdawg, or anyone... but...This could be related to the breach FCP had afew months ago. Link to post Share on other sites
DanielSon 0 Posted September 30, 2006 Share Posted September 30, 2006 I don't mean to speak for Governator, Kdawg, or anyone... but...This could be related to the breach FCP had afew months ago.I wish FCP had its own network and no association with ongame. I think the security issues are probably coming from ongame's end. Maybe daniel should have stuck with poker mountain...oh well.. Link to post Share on other sites
ChrisRichey 1 Posted September 30, 2006 Share Posted September 30, 2006 I actually received the same email about six times this week, though Gmail put it directly into my Spam folder. The weird thing was, they were all addressed to different people. Link to post Share on other sites
MyPlayIsRAB 0 Posted September 30, 2006 Share Posted September 30, 2006 I actually received the same email about six times this week, though Gmail put it directly into my Spam folder. The weird thing was, they were all addressed to different people.theyere sent to random email address. i get them at least 10 times a week at my 3 email addresses Link to post Share on other sites
TylerSalzman 0 Posted September 30, 2006 Share Posted September 30, 2006 Couldn't it be they just send them out to all sorts of random email addresses using a program that just thinks of every possible email addresses? Link to post Share on other sites
MyPlayIsRAB 0 Posted September 30, 2006 Share Posted September 30, 2006 Couldn't it be they just send them out to all sorts of random email addresses using a program that just thinks of every possible email addresses?even webmaster@clownpenis.fart? Link to post Share on other sites
GoingBusto 0 Posted September 30, 2006 Share Posted September 30, 2006 Couldn't it be they just send them out to all sorts of random email addresses using a program that just thinks of every possible email addresses?Edit: nm. Link to post Share on other sites
psujohn 0 Posted September 30, 2006 Share Posted September 30, 2006 Couldn't it be they just send them out to all sorts of random email addresses using a program that just thinks of every possible email addresses?This is common with @yahoo.com, @hotmail.com, @gmail.com kind of addresses. The spammers will basically send e-mail to every possible combination of letters and numbers. If the address is on a domain name that isn't used for much it's pretty unlikely.If you use names like:joeFCP@yourdomain.com for FCP andjoeYahoo@yourdomain.com for Yahoo andjoe2P2@yourdomain.com for 2+2 etc then that's a possible way for spammers to get at all your e-mail addresses from having one but again pretty unlikely. Link to post Share on other sites
FCP Bob 1,312 Posted October 1, 2006 Share Posted October 1, 2006 This is a response I posted to a message in the FCP Poker Forum about this issue. We can't rule out some player's e-mail addresses being found when the forum was hacked into a few months back as the hackers would have had access to e-mail addresses. The hackers did not have access to the forum passwords as we don't even have access to them and the forum and poker accounts are totally separate and not connected in any way. We haven't provided our e-mail database to any other companies other then the On Game Network. That being said there's no question that some spammers do have some FCP e-mail addresses.The most likely way that the spammer received your e-mail address is via a Network Sniffer that is installed somewhere on one of the servers located between our e-mail server and your e-mail server on the internet. If one were on a server while we were sending out a mass e-mail they would get a number of FCP addresses.Since 99% of e-mail traffic is not encrypted a malicous Network Sniffer could be designed to datamine the e-mail addresses of the traffic that is passing through that part of the internet and then used to spam those addresses. Once your e-mail address is in the hands of the spammers the genie is out of the bottle and you'll probably continue to receive an increasing amount of spam. Link to post Share on other sites
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now