Reply to: Very convincing phishing Companies House scam email doing the rounds

And you behaved yourself unlike when people use one of my many email addresses to sign themselves up for things.

Though I have enjoyed adding on extra days to people's hotel booking for example...

No

So you were storing passwords in plain text?

The payload would have been behind the link in the email, and they are after a quick return because these things get shut down fast. They will try and get as much out of you in one go as they can before the website is blocked and the spam filters catch up.

More than likely the link would have gone to a site that is/was a convincing facsimile of the CH website and been loaded with drive by malware installers. It would collect user ID and password info for CH and almost certainly go on to ask for card/bank details to pay for the "filing". Even if that rings alarm bells, it's already too late.

The hit rate on these things is generally less than 1% but if you send enough of them you only need one or two to be successful to make money on it.

My default is never to click on an email link but to enter the website separately (although there was indeed a link).

I do need to look closely at my spam filter though...

It asks for details of contractual Direction and Control, Right of Substitution and Mutuality of Obligation, and it's required for legislative compliance for company registration in the new PSC category. Not sure who is behind the scam but it's signed 'Hector'.

Years ago, when I had a computer shop, I got frauded with an online order. I managed to identify and find the culprit because he had created an online account for my shop. He also used the same password for my shop as he did for everything else.

Hacking/Phishing is not a game of action/reaction. It's a long game of collecting information you shouldn't be able to get hold of. Had Cojak logged in via a link in the phishing email, she'd have given away her email address and a potentially usable password and the fact that she actually has a company registered with companies house. So, could potentially be used for a mobile phone contract as her DOB and home address would then have been easily findable. If she'd been daft enough, she may even have gone on Fudbook and filled in one of these stupid 'What is your porn star name. It's made up of the name of your first pet and your mother's maiden name'. Now, that info couldn't be used for anything, could it ??

Hackers generally aren't after a quicky, even if that's how you happen to think.

They wanted her to vote Labour. (I'll go hide in General now.)

Okay so how were they trying to exploit you ? Was there a link to pay the tax or somthing?

I got that one as well, spotted it straight away (it was in my spam folder though)

Thanks for letting us know Cojak

Yeah sadly some of these are very good. Especially for things "from" Companies House, as they can readily get so much accurate data as it's publicly available, so with a bit of effort they can make it very plausible.