View Full Version : If this is a phishing scam, it's a very sophisticated one, and for what?

Boyo Jim
07-31-2012, 03:30 PM
I received an email, purportedly from WI state Department of Health Services, where I've interviewed for several jobs recently. The subject line said "Operations Program Associate" which is a specific job title I've applied for.

The message was: You have received a secure message

Read your secure message by opening the attachment, securedoc.html. You will be prompted to open (view) the file or save (download) it to your computer. For best results, save the file first, then open it in a Web browser...

First time users - will need to register after opening the attachment. For more information, click the following Help link...

This led me to what an image of a postcard, with a legit WI state logo on it,
labeled "Cisco Registered Envelop Service". It asked me to create an account where I gave my first and last name, created a password, selected a security question from a list and answered the question. That's it -- nothing else was asked.

Then it told me I would need to follow more instructions when I received an "activation email". I haven't received one. Even after going back to the page and requesting it be sent again, I haven't received it. And of course I checked my spam box too.

That set off all kinds of alarms for me. I got hold of someone in their HR department who says that no one by the name on the original email is listed in their staff directory.

But, I went to the Cisco website and they DO in fact have a service called "Cisco Registered Envelop Service".

One other thing -- there is in fact a real person with the same name as the sender (not a common one) living locally, and only one other person by that name in all of America, according to the phone lookup service I used.

So WTF is going on? Who would know I'm applying for work there? And what job I've applied for? Why all these hoops for essentially useless information? If they just wanted to be sure I had an active email address -- shit -- I would have just replied directly to an email with the specifics they had.

And now I'm back to almost thinking it's real.

Boyo Jim
07-31-2012, 03:33 PM
FYI, I used the contact info on the Cisco site to give them details, and the specific links I was led to, and asked if I've been scammed. I'm guessing it's maybe 50/50 whether I'll get a response from them.

07-31-2012, 03:38 PM
Seems legit to me. The name is probably someone that no longer works there, but they haven't gone to the trouble of updating the info in the system.

07-31-2012, 03:41 PM
Way too much work for a typical lazy scammer!

07-31-2012, 03:47 PM
Seems legit to me. The name is probably someone that no longer works there, but they haven't gone to the trouble of updating the info in the system.
Probably a good guess.

However, here's how this could work if it were a phishing scheme: many people use the same password at many different sites. So, a phisher might send a link for you to create a "userid" and "password", hoping you use the same password as your email address. Bingo bango bongo.

Boyo Jim
07-31-2012, 04:07 PM
Turns out it's legit. Bizarre, and absolutely no reason for any of it to be encrypted, though. The "activation email" didn't show up for hours, though the notice pretty much said it would show up in my in box within seconds of creating my account.

Turns out it was details of time and location for an interview that has already taken place. And this person must be brand new, not someone who's already left, because it was sent today.

I have received hundreds of invitations to interview by state agencies through email, replied to and scheduled them and got confirmations back, and no one (myself included) thought it necessary to encrypt any of it. I thought that if it wasn't a scam, it was an offer, the details of which might have been candidates for an encrypted communication. Bummer.

Jeez, of all the big time wasters...

Best Topics: gertrude flynn great school org smelly toenail outcall meaning trimps github bug crushing stories shillings worth hbo adult shows on haunches 5th of vodka raymond reddington fedora grounding receptacles throw shoe americorps interview questions red dental tablets china doesn't exist urinal buddies dilbert tie vaccination gun cro2 cassette tapes captain carrot discworld vapors define silent majority etymology xfinity tv lagging chiny chin chin zut alors translation immune to nicotine concrete cannon gigatons to teratons baingan bharta nutrition walmart store colors gillette razors refill where is tetanus shot injected t mobile sim card reader why is turbotax making me pay 4 or 6 cylinder ti-84 wont turn on how does david blaine pierced hand how to clean 35mm slides moose brothers frozen pizza usps international reply coupon kate jackson the smart one brother and sister puppy names how to clean plastic shower surround what is considered business days bacon past use by date kitchenaid dishwasher top sprayer not working how long is applesauce good after opening proform treadmill ipod compatible what does tarzan wear how much does a nun make how long can i take sudafed how to remove a stuck cassette tape i'll be here all week are airports open on christmas day eso si que es in english microwave and fridge on same circuit how was american slavery different from other forms of slavery what does mob stand for old people with no teeth chests for end of bed soft cup during sex how to tie down a storage shed can pop rocks and soda kill you buy sudafed 24 hour pt cruiser front license plate holder good names to call people