Looking back at 2017

Looking back at 2017

2017 was a disastrous year for the consumer in the cyber fraud arena and we saw a lot happening. It’s all to easy looking at numbers such as our 2017 statistics, not realizing what they represent. This period was a virtual war where consumers lost their livelihoods after being defrauded, the numbers represent futures lost, the undermining of one of the marvels of the 21st century, the internet. Behind each increase in count, we find misery multiplied. These are directly…

Read More Read More

The Faker Maker

The Faker Maker

The role of the Faker Maker in 419 frauds is not generally known. Yet he is key to the long-term success of a scam. This term, although the origins of it have been lost, is used to describe somebody knowingly facilitating 419 frauds from a technical perspective for personal gain in exchange for the risk of doing so. He is a technical specialist services provider to parties involved in 419 fraud and knowingly and willingly facilitating. It’s not uncommon to…

Read More Read More

We don’t accept these email domain endings

We don’t accept these email domain endings

On the 1st of November 2017, Artists Against 419 blocked emails email addresses using the following top level domains to our mail services: .accountant .bid .cricket .date .download .faith .loan .men .party .racing .review .science .stream .trade .webcam .win This step was most regrettable, but we reserve the right to stop any serial abuse of our email services and resources. Suddenly today we saw a massive spam inflow from at least two of these TLDs. The patterns were all too…

Read More Read More

An open letter to Godaddy: Whois Service

An open letter to Godaddy: Whois Service

Quick links: Update 2017-09-27 Update 2017-11-04 Update 2017-11-23 Update 2017-11-24 Dear Godaddy Artists Against 419 has been champions for the consumer since 2003. In our efforts at fighting advance fee fraud, we use various data sources to enable threat identification and mitigation. Let us be extremely clear on this issue, Artists Against 419 has no commercial ambitions. All our efforts are done with trusted volunteer assistance and self funded. Here is the problem we are addressing: The consumer has no…

Read More Read More

Security broken. WHOIS it?

Security broken. WHOIS it?

As a consumer of WHOIS data in our attempt at fighting cyber fraud, we noticed WHOIS lookups failing the past day and a bit. This failure was noticed using various utilities across various platforms and locations. Further investigations shows the gTLD registry data format had changed for .net and .com domains, specifically the format line to the registrar’s WHOIS server. As per the ICANN specifications, and how it was, this should be the registry format (bold for the sake of…

Read More Read More

Malicious Domains: Heroes and Facilitators

Malicious Domains: Heroes and Facilitators

In a new pending report from the United States Better Business Bureau, they are looking at a new plague that’s hit the United States and the world. While we will not steal their thunder in this most excellent report and the revelations contained in it, it does illustrate certain underlying issues, malicious domains controlled from West Africa. Let’s get some facts straight: A domain registered by a malicious party for malicious purposes, is malicious. This is simple undeniable logic. Such…

Read More Read More

Alert: fastweedonline.com: What you might need to know

Alert: fastweedonline.com: What you might need to know

Domain fastweedonline.com  is currently registered with ICANN accredited registrar Namesilo: Domain Name: fastweedonline.com Registry Domain ID: 1944472965_DOMAIN_COM-VRSN Registrar WHOIS Server: whois.namesilo.com Registrar URL: https://www.namesilo.com/ Updated Date: 2017-05-10 Creation Date: 2015-07-04 Registrar Registration Expiration Date: 2020-07-04 Registrar: NameSilo, LLC Registrar IANA ID: 1479 Registrar Abuse Contact Email: abuse@namesilo.com Registrar Abuse Contact Phone: +1.4805240066 Status: clientTransferProhibited This domain is shielded via Namesilo’s associated PrivacyGuardian.org proxy service. Registrant Name: Domain Administrator Registrant Organization: See PrivacyGuardian.org Registrant Street: 1928 E. Highland Ave. Ste F104…

Read More Read More

Understanding the Cameroonian Pet Scam

Understanding the Cameroonian Pet Scam

In a previous article we mentioned that not much is known about the Cameroonian Pet Scam or this type of fraud emanating from West Africa. We mentioned the pet scam, the weed scam and stolen credit card details. This article quickly looks at one scammer found that will illustrate this type of cyber-crime.

A Tale of Two Fraud Facilitators: Ladette and Guy

A Tale of Two Fraud Facilitators: Ladette and Guy

The question has often been asked: How large are the scammers nests? In the previous post, From Benin: A Loan Scam Syndicate, we explored a syndicate operating from Benin, defrauding consumers mainly in Europe, the United Kingdom and Canada, having over 300 domains. To show this is not an isolated incident and that domain fraud abusing fake domain registration details is rife, we will now look at two identified facilitators in Nigeria working in concert. First a female was identified…

Read More Read More