An email with a .dot attachment has arrived in my blueyonder account. The sender claims to have extensive personal information about me, and that the file contains details.
I smell a rat. I'm not going to open the file. The .dot format is one clue. I'm thinking of just deleting the message, but also wondering if Virgin have a server-side facility to check the attachment and deal with it on a more comprehensive basis.
Should I forward the message to an address like abuse@...? Is there scope for VM to check messages that have been sent to me?
I've had a very similar email to my virgin.net account. Claims that details of my account have been incorrectly emailed to them and as a law abiding citizen they are sending into me. The body of the email quotes my address and there is a .dot file attached which the sender claims contains more details. They even send a password to open the file. I was also wondering if there is an address I can forward it onto for checking? Seems like it is dodgy as too similar not to be, but would be useful to know. Will delete if not.
Sounds identical to the one I got from firstname.lastname@example.org (which is probably a faked address, even though the domain name is legit).
At present my copy is sitting in the spam folder.
Given that we've both got the same email, I reckon Virgin is in a position to see how many other accounts got sent that message, and are also in a position to analyse the contents to see if there's any further cause for concern.
Just to add to the list - same contents from a email@example.com received March 28, 14:17 GMT + 1:00
I am bothering you for a very critical matter. Though you don't know me, but I have large ammount of individual info on you. The fact is that, most likely by mistake, the info of your account has been sent to me. For example, your address is:
<Correct address included but removed for this post>
I am a law-obedient citizen, so I decided to warn may have been hacked. I attached the file - Severs.dot that that was emailed to me, that you could explore what information has become available for fraudsters. Document password is - 5476
Let me take issue with that bit about whether it's worth posting on here. Three of us have had a concern about this attachment, and sharing the info here has made it a lot easier to understand. To my mind, it's definitely been worth posting about. Shows this forum can be an effective resource.