I got this astounding 419 Scam email today, purportedly from the F.B.I. But maybe it is legit, and the US Gov needs this money desperately…
First, the header:
DomainKey-Status: no signature X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on ip-97-74-126-203.ip.secureserver.net X-Spam-Level: ********** X-Spam-Status: Yes, score=10.9 required=7.0 tests=ADVANCE_FEE_2,ADVANCE_FEE_3, FORGED_MUA_OUTLOOK,FORGED_OUTLOOK_HTML,FORGED_OUTLOOK_TAGS,HTML_MESSAGE, MIME_HTML_ONLY,MISSING_HEADERS autolearn=no version=3.2.5 X-Spam-Report: * 1.6 MISSING_HEADERS Missing To: header * 0.0 HTML_MESSAGE BODY: HTML included in message * 1.7 MIME_HTML_ONLY BODY: Message only has text/html MIME parts * 0.0 FORGED_OUTLOOK_TAGS Outlook can't send HTML in this format * 2.0 ADVANCE_FEE_2 Appears to be advance fee fraud (Nigerian 419) * 0.0 FORGED_OUTLOOK_HTML Outlook can't send HTML message only * 1.4 ADVANCE_FEE_3 Appears to be advance fee fraud (Nigerian 419) * 4.2 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook Received: (qmail 26077 invoked from network); 8 Oct 2013 21:01:57 -0500 Received: from 106.237.business-adsl.cybersmart.co.za (HELO kranzle.co.za) (126.96.36.199) by ip-97-74-126-203.ip.secureserver.net with SMTP; 8 Oct 2013 21:01:54 -0500 Received: from User ([188.8.131.52]) by kranzle.co.za with Microsoft SMTPSVC(6.0.3790.4675); Tue, 8 Oct 2013 21:46:24 +0200 Reply-To: <firstname.lastname@example.org> From: "F.B.I-WASHINGTON D.C"<email@example.com> Subject: F.B.I-Your attention is needed immediately Date: Tue, 8 Oct 2013 12:57:40 -0700 MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_NextPart_000_00D9_01C2A9A6.356E0CA8" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Bcc: Return-Path: firstname.lastname@example.org Message-ID: <SBS1P0QzBxhJTANZwwP00000141@kranzle.co.za> X-OriginalArrivalTime: 08 Oct 2013 19:46:25.0421 (UTC) FILETIME=[12A73BD0:01CEC45F] This is a multi-part message in MIME format. ------=_NextPart_000_00D9_01C2A9A6.356E0CA8
And now, the text:
On Oct 8, 2013, at 2:57 PM, F.B.I-WASHINGTON D.C email@example.com wrote:
DO NOT PRINT /FORWARD THIS MAIL ITS AGAINST THE LAW This e-mail, including any attachments, is covered by the Electronic Communications Privacy Act, 10 U.S.C. 2510-2521
ANTI-TERRORIST AND MONETARY CRIMES DIVISION
FBI HEADQUARTERS WASHINGTON DC
FEDERAL BUREAU OF INVESTIGATIONS J.EDGAR HOOVER BUILDING
935 PENNSYLVANIA AVENUE, NW WASHINGTON, D.C. 20535-0001
(woo! a legit URL!)
Your attention is needed immediately
We have been informed through our global intelligence monitoring network that the sum of $10.500, 000.00, has been released from a bank in Africa bearing your name as the beneficiary without dist certificate to clear your name and fund from every terrorist or drug or money laundering activities
So, what number is that, really?
Ten dollars and fifty cents?
Woot! Next round of keystone on me!
We sincerely apologize for sending you this sensitive information via e-mail instead of a certified mail, phone call or a face-to-face conversation,We will also send you a certified email later it is due to the urgency and importance of the security information needed. To checkmate financial recklessness, illegal gambling, racketeering and considering the effect of the global financial crisis rocking the United States, our government with the help of the Federal Bureau of Investigation (F.B.I) Washington, DC and the internet crime complaint center (ic3),alongside the CIA signed an agreement with U.K police for an immediate release of all overdue funds presently logged in their treasury and to ensure it is disbursed to the rightful beneficiaries in all parts of the world. If you the beneficiary would adhere to our instruction it will help you receive your payment immediately
The bank knowing fully well that they do not have enough facilities to make this payment from any part of the world to your account directly, used what we know as a secret diplomatic transit payment (s.d.t.p) method to make the payment. direct transfers are difficult and secret diplomatic transit payment (s.d.t.p) are not usually made unless the funds are related to terrorist activities and we ask why must your payment be made in a secret transfer if your transaction is legitimate.
We do not want you to get into trouble as soon as these funds reflect in your personal account, so it is our duty as an international agency to correct these little problems before this fund reflects into your personal account.
we advise you to contact us immediately, as your funds have been stopped and are being held in our custody, until you are able to provide us with the dist certificate within 3 days from the country that authorized the transfer to certify that the funds that you are about to receive are terrorist/drug free or we shall have cause to impound the payment and subsequently prosecute you for cross border terrorist financial activites.
based on our findings, our investigative department wish to warn you against some miscreants, hoodlums and touts who go about scamming innocent people by claiming to be who they are not and thereby tarnishing the image of this wonderful country. By sending out fraudulent emails without our official logo and emblem we shall release your funds immediately we receive this legal document and we will ensure that you receive your payment without any further delay.
We decided to contact you directly by email to acquire the proper verifications and proof from you to show that you are the rightful person to receive this fund, because of the huge amount involved. Be informed that the funds are now with a top bank in the united state in your name and under the monitoring/custody of the FBI. At the moment, we have asked the bank not to release the fund to anybody that comes to them, unless we instruct them to do so, and only if we receive the dist certificate this is to enable us carry out a comprehensive investigation first before releasing the fund to you.
hence, you are to forward your dist certificate to us immediately
One has to wonder what a “dist certificate” might be…
if you have it in your possession, if you do not have it, then let us know so that we will direct you to the appropriate authority to obtain the certificate then you are to send it to our office. And thereafter, we will instruct the bank holding the funds, to go ahead and credit your account immediately. If you fail to provide the documents to this office, we will prosecute you and take appropriate action against you for not proving the legality of the funds.
Finally if you truly want to receive this funds without F.B.I troubles then reconfirm the following below
But I am already having FBI troubles…
Country of origin of funds………………………………….
Because this is a Theocracy!
SPECIAL AGENT (admin division)
Colleen M. Conyngham
(BADGE NUMBER JTT047101111)
FOR FBI DIRECTOR
MR. JAMES COMEY
cc: general intelligence department (GID)
cc federal bureau of investigation (fFBIi)
cc .internet crime complaint center (ic3)
cc: Asia pacific group on money laundering (APG)
cc: international monetary fund (IMF)
cc: international organization of securities commissions (IOSCO)
cc: international banking security association (IBSA)
cc: world customs organization (WCO)
cc: inter-American development bank (IADB)
cc: national white collar crime center (NW3C)
cc: bureau of justice assistance (BJA)
cc: supreme court of South Africa(SCA)
Such an impressive list of cc recipients.
Unless expressly stated otherwise, this message is confidential and may be privileged. It is intended for the addressee(s) only. Access to this e-mail by anyone else is unauthorized. If you are not an addressee, any disclosure or copying of the contents or any action taken (or not taken) in reliance on it is unauthorized and may be unlawful. If you are not an addressee, please inform the sender immediately.
Yeah, this is such a binding notice…
Salvo que se indique lo contrario, este mensaje es confidencial y puede ser privilegiada. Se pretende a su destinatario (s)solamente. El acceso a este e-mail por cualquier otra persona no estб autorizado. Si usted no es un destinatario, cualquier divulgaciуn o copia de lacontenidos ni de cualquier acciуn realizada (o no) en la dependencia en que no estб autorizado y puede ser ilegal. Si no son unadestinatario, por favor notifique al remitente de inmediato
DO NOT PRINT /FORWARD THIS MAIL ITS AGAINST THE LAW
This e-mail, including any attachments, is covered by the Electronic Communications Privacy Act, 10 U.S.C. 2510-2521
So, let’s see, the Electronic Commication Privacy Act is actually Title 18 of the US Code, not Title 10. What is Title 10? Armed Forces…
So, dutifully, I must not print or forward this, so I’m putting it on my blog instead.