Fake CIA email, originating with freepers

I didn't get this--it was posted on another of my newsgroups. Anyone else hear anything about it?

X-Apparently-To: via 66.218.79.46; Mon, 21 Nov 2005 13:57:16 -0800
X-YahooFilteredBulk: 71.56.13.2
X-Originating-IP: <71.56.13.2>
Return-Path: <[email protected]>
Authentication-Results: mta818.mail.scd.yahoo.com
from=cia.gov; domainkeys=neutral (no sig)
Received: from 207.115.57.66 (EHLO ylpvm35.prodigy.net) (207.115.57.66) "This Website: http://www.freerepublic.com/focus/user-posts?id=135483 , is a Rightwingnut Website."
by mta818.mail.scd.yahoo.com with SMTP; Mon, 21 Nov 2005 13:57:12 -0800
X-Originating-IP: <71.56.13.2>
Received: from sboovqsob.gov (c-71-56-13-2.hsd1.ga.comcast.net <71.56.13.2>)
by ylpvm35.prodigy.net (8.12.10 083104/8.12.10) with SMTP id jALLueOD013479;
Mon, 21 Nov 2005 16:56:43 -0500
From: [email protected]
To: [email protected]
Date: Mon, 21 Nov 2005 21:55:50 GMT
Subject: Your IP was logged
Importance: Normal
X-Priority: 3 (Normal)
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===08053a18.26b9768a7554"
Content-Transfer-Encoding: 7bit

----- Original Message -----
From: <[email protected]>
To: <[email protected]>
Sent: Monday, November 21, 2005 1:55 PM
Subject: Your IP was logged


Dear Sir/Madam,

we have logged your IP-address on more than 30 illegal Websites.

Important:
Please answer our questions!
The list of questions are attached.


Yours faithfully,
Steven Allison

++++ Central Intelligence Agency -CIA-
++++ Office of Public Affairs
++++ Washington, D.C. 20505

++++ phone: (703) 482-0623
++++ 7:00 a.m. to 5:00 p.m., US Eastern time

This is serious stuff.
Who ever having fun with this is stupid.

the FBI posted a warning that it was fake. This is the first that I heard it came from the freeps though... hmmm don't they know posing as a federal officer is a crime?

along with my freeper bosses. There was a zip file attached, ostensibly a form to fill out. my Freeper boss opened it and infected his computer. He cannot use his computer now, LOLOL

Hi everyone,
I got the fake FBI e-mail too! It was so obvious! Just delete it!

:D

Welcome to DU, Denile_River.

Thanks for the warm welcome! I hope you all ad a good Turkey Day!

Welcome to DU!! :toast:

Thanks all! Its good to be here! :hi:

Don't open the file. Looking for exact information, but I've been getting these at work from various email addresses.

http://securityresponse.symantec.com/avcenter/venc/data/w32.sober.x@mm.html

edited to add link

nowhere near freerepublic.

The only thing weird is the comment "This website is a rightwing website".

But I doubt it originated at FR.

One problem with email is it's easy to spoof email coming from anyone, and if you don't know some of the gritty details, on the surface it looks legit.

Hell, I have multiple (published/associated) email accounts, and it's amusing (well, not really) to see one of my accounts "email" or spam one of my other accounts. Obviously they're not coming from me, but someone has harvested the email addresses and are sending it from one to another (and probably many others under my address). Likewise I get spam from people I know but it's obvious they had nothing to do with it, their address is just being used for cover.

It's like writing a letter - you can put anyone's name and address in the return address section.

That doesn't mean they wrote it or sent it, though.

I found 47 emails in bulk like that, erased them, came back an hour later and there were 12 more.

I do have cable through Comcast.

I would really like to know where this is coming from.

I didn't open them. Also I've been getting "Mail not Delivered" virus email's the past few days. I don't open anything unless I know who it's from.

As for the Freeper connection that was what I was thinking it was all coming from.

is technically legit, but the original mail is not.

What happens is a spammer send out email under your name.

The receiving server gets it, and doesn't accept it, and tells you that your mail was not delivered.

Result: You get all these legitimate notifications that your email was not delivered, but the thing is that you weren't the one sending it out to begin with.

To stay with the "return address" metaphor, someone sends out a bunch of email with your return address, and then everyone writes you to complain or tell you they ignored you.

There's really not much you can do about it, imho. I must get 1000 emails a day at this point, on my different accounts, and it just has grown. Years ago I used to personally trace back each piece of spam, and complain to the ISP; now I just physically wouldn't have enough hours in the day to do it. At some point you just have to tell it to go away. It's like freeway noise - a few noisy trucks in the old days, and you could complain to specific companies if you were so inclined. Get a freeway with constant traffic, and what can you do? You can appeal to a different authority, but you're past the point of addressing each vehicle individually.

protection that they are infected.

someone sends out a bunch of email with your return address

Actually, the worms will infiltrate an address book and spoof the email addresses. It's part of the 'virus' and not something that someone manually does with 'harvested' email addresses. The virus has built-in programing that randomly selects email addresses out of the infected machine's address book. One of the people that was sent the infected email from 'your' address book will open the attachment and their machine will become infected. The virus code will execute in their address book and the cycle goes on.

It's one way to assure the infected file stays in circulation.

It's always, always best to never ever open attachments from people you don't know and even from people you do know if it's not something you're specifically expecting.

Just added for clarity. Don't mean to step on any toes.

Then wanted me to answer a questionnaire.

it was the second one I got. I haven't opened any of them.

It said "this IP has visited over 30 prohibited websites". But it did have that zip file attached. DO NOT open it, just delete the E-mail.

My spam has almost trippled in the past few weeks.

Clam AV on my mail server called it Sober.U.
Norton AV calls it W32.Sober.X.

We're getting hit at work as well.

to also mutate to FEMA, DHA and NSA, as well as other federal state or local agencies. The accompanying attachments a zip file and has the word "list" in it, either alone or with a combination of numbers and letters.

Can I PLEASE have 5 minutes alone in a room with virii and malware/spyware/adware creators? Also hoax emailers? I will settle for 1.5 minutes. I will be unarmed, and I promise not to kill them. I also promise they will cease and desist.

Atleast 25 emails were addressed from the fbi or cia.

:silly:

Here's info on the FBI variant:
http://www.snopes.com/computer/virus/fbi.asp

even for the freepers.

I can't remember what the headers said in mine, but it was from inside the US, unlike other dumb spam and forgeries I get.

No liberal would have ever chosen this particular thread to include in a virus he created. All the messages on it have a tag "Threat Matrix - Daily Terror Threat" but none of the messages are terror threats. It almost looks like a DU Lounge thread...some stuff about a woman's breast biopsy, a message from the Zapatistas none of them can figure out, just really strange stuff to claim as proof that FR is a "rightwingnut" website. Trust me on this: there are lots of "kill all the liberals" threads over there that a liberal could point to in proof that FR's a wingnut site.

If anyone of a particular political leaning created the virus, it's a conservative.

However, I think someone fifteen years old who thinks causing a couple billion in damage and getting his name in all the papers is kewl created the damn thing.

virus emails are fake because of the spelling, grammar, and style errors.

It seems like if you were going to take the time to create a computer virus, you would actually put some effort into the email that's supposed to trick people into getting infected (not that I know why anyone would get some sort of sick thrill out of causing numerous problems for a lot of other people that they don't even know by creating such a virus in the first place :mad:).