Are You A Phisherman? Take My $10 Paypal Challenge!

Shortly after posting something for sale on my local Craigslist site, I was bombarded with 5 responses within minutes. Cool I thought, one of these nice folks was sure to get rid of this nagging item from my garage, but I was wrong. I was the victim of a piranha like PHISHING ATTACK. Are you a phisherman? I will paypal you 10 dollars if I select your series of answers to my questions, read on.

Randy George, Director, IT Operations, Boston Red Sox

August 5, 2009

2 Min Read
InformationWeek logo in a gray background | InformationWeek

Shortly after posting something for sale on my local Craigslist site, I was bombarded with 5 responses within minutes. Cool I thought, one of these nice folks was sure to get rid of this nagging item from my garage, but I was wrong. I was the victim of a piranha like PHISHING ATTACK. Are you a phisherman? I will paypal you 10 dollars if I select your series of answers to my questions, read on.Dear Phisherman, when I post something for sale on craigslist, don't respond with the following.

"Hello... I really appreciate your response to my mail.I want you to consider it sold, pls do withdraw the advert from craigslist to avoid disturbance.I want you to know that i will be paying via bank cashier check .I will need you to provide me with the following.information to facilitate the mailing of the check. 1.....Full name to write on the check 2.....Full Physical address to post the check 3.....Home & Cell Phone to contact you **I will like you to know that you will not be responsible for shipping i will have my mover come over as soon as you have cashed the check** Thanks"

OK, so please be honest, I'm looking for someone out there that works for the underground digital mafia as an actual professional phisherman of unsuspecting people's personal data to answer some legitimate questions. Respond to this thread with your thoughtful answers and if I select your series of answers I will paypal you $10.

The first question is rhetorical and is a practice question.

1) Do you think I am an idiot?

2) What is the compensation structure you receive for compromising and collecting the personal information of unsuspecting people? Are you paid per record compromised? Per 10 records? Per successful usage of the personal data?

3) How much are you paid per stolen record?

4) Do you work independently or are you working for an organized outfit?

5) Do you make money with malware authoring tools? Give us some detail.

6) What is your success rate? Do 1 and 100 people actually responds to a note similar to the one I was sent? 1 in 1000?

I'm not kidding, I want serious answers from real hackers on these questions, I will check back here and respond to the thread when I've closed my contest and picked the winner. Thanks for educating us on this dark art!

About the Author

Randy George

Director, IT Operations, Boston Red Sox

Randy George has covered a wide range of network infrastructure and information security topics in his 4 years as a regular InformationWeek and Network Computing contributor. He has 13 years of experience in enterprise IT, and has spent the last 8 years working as a senior-level systems analyst and network engineer in the professional sports industry. Randy holds various professional certifications from Microsoft, Cisco and Check Point, a BS in computer engineering from Wentworth Institute of Technology and an MBA from the University of Massachusetts Isenberg School of Management.

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

You May Also Like


More Insights