IT guys...did I screw up?

[pwd72s]

Earlier today, got an email from somebody claiming to be my cousin. The address used was hers, but I was skeptical, so responded with a question I knew she could answer...
Anyway, copies below, email addresses redacted. Scroll bottom up for the sequence.

My question: Since I responded, is my email address now being used for the same scam?

For what it's worth, I printed this all out, sent it to my cousin snail mail to give her a heads up.

Re: Could You Help Me with a Small Favor?
To Paul & Cindy Donkin
Hi Paul,

Thank you for your message and for being cautious. I completely understand your concern given how things are these days. It's me, Kathy, and I really appreciate you reaching out to check.

As for your suggestion, I’ll definitely keep it in mind if this doesn’t work out. I was just hoping to get something sorted today because it’s for a special occasion. If you’re able to help, it would mean so much to me. If not, I completely understand, and I truly appreciate you taking the time to write.

Kathy

----- Original Message -----
From: "Paul & Cindy Donkin"
To: "DICK & K
Sent: Saturday, January 4, 2025 10:29:46 AM
Subject: Re: Could You Help Me with a Small Favor?

Kathy,

I have doubts that this is really you. When young, you lived on a street with a name beginning in E. Please tell me the street name and the house number..

Sorry I'm so skeptical, but these days we have to be. Another suggestion? Send a gift the old way? Snail mail a card with cash inside, then email the kid, telling him the gift will be late?

Hugs,

Paul

On 01/04/2025 7:53 AM PST DICK & KATHY KAUFFMAN wrote:


Good Morning,

I hope you’re doing well! I am sorry to bother you this early, but I’ve had a pretty rough day and could really use your help.

This morning, I am feeling frustrated after my card got blocked following three failed attempts to purchase a gift card online for my friend’s grandson because today is his birthday. In my frustration, I accidentally dropped my phone and the screen cracked badly, leaving it completely unusable. To make things more complicated, my bank is issuing me a new card, which means I won’t have access to my account for a week or two.

I know this is a lot to ask, but could you help me by picking up the gift card for me in store or through online order (email delivery)? I’ll send you all the details, and I promise to pay you back as soon as my new card arrives. I wouldn’t ask if it wasn’t important, and I really appreciate your understanding.

Please reply to this email and let me know if you’re able to help. Since my phone isn’t working, email is the only way to reach me right now.
Thank you so much for considering this, it means so much to me.

Warm regards,

Kathy

[rockfan4]

I think you're safe.
They could send mail as you, but since they don't have your password, they wouldn't be able to read any replies to email that they sent.

The last time my wife misplaced her card, her bank was able to create a new card right at the bank, no waiting. I'm not sure every bank has that technology, but I would think most of them do.

[pwd72s]

Thanks. I didn't think it was really my cousin, but was confused because it was from her email. So, this means my cousin's password was hacked? Yes, I'm an old fart...mostly computer ignorant.

[Scott Douglas]

Did she ever answer the address/street question you asked?

[Hendog]

Call her. If it's really someone else then you should be able to call her; her phone has not been damaged. If you don't have her number, have someone else you both know in common reach out to her.
Your question was not answered I gather, so it's a scam. Good on you to ask that question.

[dad911]

Had this happen from a teacher's email, someone I helped mentor a robotics team. Her email was hacked, and they used her contact list. It waas a few years since I heard romk her, raising an immediate red flag.

Your cousin's email was hacked. She should probably warn her contacts. Now they have you email as a valid email, and probably trying to get your password too. In any event, could be sending scam emails from a different server posing as you now.

Your cousin needs to secure her email, change passwords, etc.

You should also.

[pwd72s]

Quote:

Originally Posted by Scott Douglas

Did she ever answer the address/street question you asked?

No...and what cognizant boomer can't remember their high school address? Just off the phone with her sister, who got the same email...(edit) I lost the number of the scam victim cousin, but did have the number of her sister.)

What's the procedure for securing email? Damn! We have a retired IT guy neighbor, but he's out of town now...would hate having to change address.

[john70t]

These scams are on the rise.
Usually it's extended family in a foreign jail needing bail money, in the form of wire-transfer or gift cards.

These days (with the rise of deepfakes and aggregate data out there) even a phone call or facetime can't be trusted without secret passwords kept off the internet. Good of you to ask the challenge question. I went through a few months of scammers while trying to find mom's lost dog. They were good.

There outta be a law. I tol u bois.

[GH85Carrera]

Rule of thumb, if they ask anything at all about a gift card, it is a scam. And as John said above bail money from a grandson, it is a scam.

It is unlikely she would want you to go buy a gift card, when she can go to numerous places to get and send it herself.

[KFC911]

Paul I'm sorta glad they contacted you and not my mom...

Still sharp... and awesome awareness for an ol' coot ... or even a young coot

Yay!

[ErrorMargin]

Quote:

Originally Posted by pwd72s

What's the procedure for securing email?

Both you and your cousin and cousin's sister should consider the following steps:

Email
1. Sign out all devices logged into your email. For example, if you use gmail, this page shows you how to see what devices and 3rd party services are logged into your gmail and enables you to log them out. Log all devices and 3rd party apps and services out of your email, even if they are things you regularly use like Facebook or something, and be sure to log out of the device you are currently using to do this as a last step: https://support.google.com/accounts/answer/3067630?hl=en

2. Log back in immediately and change your password to something new that you've never used anywhere before.

3. Enable two factor authentication

Cell Phone
Check with your cell provider and enable whatever security options are available. For example T-Mobile has options for SIM protection to block unauthorized SIM changes and port out protection, both of which should be enabled, as well as two factor authentication for your T-Mobile account.

I posted some quick thoughts on computer security here: https://forums.pelicanparts.com/off-topic-discussions/1171467-what-do-we-think-about-computer-antivirus-protection-2.html#post12379087

I posted some thoughts on helping your parents with security and securing financial accounts here: https://forums.pelicanparts.com/off-topic-discussions/1172117-my-father-almost-scammed-out-80k.html#post12383151

[masraum]

I think the email of the cousin was hacked and this was an attempt to steal from you. I think it's unlikely that your email was compromised.

BUT what ErrorMargin suggests above is the way to go. Definitely have someone reach out to the person who's email got hacked. But, not a bad idea for the folks that received the pitty party email to perform the password change and 2FA update.

[A930Rocket]

Did the account have to be hacked? Can’t they spoof email address?

[pwd72s]

Quote:

Originally Posted by A930Rocket

Did the account have to be hacked? Can’t they spoof email address?

That's it...I don't have a clue, being as computer ignorant as I am. I also don't have a clue what a 2FA update is...waiting for my IT guy neighbor to return...I've called a few people I frequently email with, asked them to call if they get a similar mail from me. So far, nothing...

[ErrorMargin]

Quote:

Originally Posted by A930Rocket

Did the account have to be hacked? Can’t they spoof email address?

The probability that they spoofed the account is low, a hack of the account is more likely. These days legitimately spoofing a commercial email service like Gmail is very hard, hacking an account is usually easier.

pwd72s, if you want help to get a better assessment of the email, feel free to post a screen shot of the email here. Also l, if you tell us what email service you are using, such as Gmail, Hotmail, etc, we can tell you more about how to secure you account and post the email header here so we can tell more about what happens.

[pwd72s]

I'm on Xfinity..also have trend micro security. sorry, dunno how to do a screenshot, nor do I know what you mean by email header. Yes, I'm computer ignorant...to the point of no smart phone, just a flip phone. Desktop computer only.

[masraum]

Quote:

Originally Posted by A930Rocket

Did the account have to be hacked? Can’t they spoof email address?

Just like with telephone numbers it is possible to make an email look like it came from someplace that it didn't come from.

If you spoof an email, then you're not going to have bidirectional communications with that email. That might be useful with SPAM that includes a link to a website. ie an email looks like it comes from a contact of yours, and the badie doesn't care about a response, but wants you to go to the link in the email, because that's where the bad stuff happens.

If you want bidirectional communications, then you need to have access to the sending account. In this case, the badie had access to the account because they were able to respond. That means that the account was hacked. They probably either figured out the password of the account and were able to send and receive, or they gained control of the original users device and was able to send and receive from there. The former is the most likely in my mind.

[masraum]

Quote:

Originally Posted by pwd72s

That's it...I don't have a clue, being as computer ignorant as I am. I also don't have a clue what a 2FA update is...waiting for my IT guy neighbor to return...I've called a few people I frequently email with, asked them to call if they get a similar mail from me. So far, nothing...

2FA = two factor authentication.

For instance, you have a username and password for a website, email account, etc..., but in addition to providing the password, you also have to get a code via a phone call or text or email that you then have to provide to successfully login. (two factors, password and code).

Most security conscious companies require it for things that require extra security. In my company, a person may have a little device that has a random 6 digit number that changes every 60 seconds, or in my case, an app on my phone that does the same thing. I have to give my username and password. THen I have to put a "pin" into the app that then spits out a random 6 digit number that is then provided like an extra password.

[3rd_gear_Ted]

We have a home in Mexico...
We have had a family password since the kids were young.
Its a two factor password, one means all okay, the other is send the calvary.

[pwd72s]

Quote:

Originally Posted by masraum

2FA = two factor authentication.

For instance, you have a username and password for a website, email account, etc..., but in addition to providing the password, you also have to get a code via a phone call or text or email that you then have to provide to successfully login. (two factors, password and code).

Most security conscious companies require it for things that require extra security. In my company, a person may have a little device that has a random 6 digit number that changes every 60 seconds, or in my case, an app on my phone that does the same thing. I have to give my username and password. THen I have to put a "pin" into the app that then spits out a random 6 digit number that is then provided like an extra password.

Thanks...now I know.