Ho John Lee's Weblog

These are my links for February 4th through February 11th:

• Schneier on Security: Interview with a Nigerian Internet Scammer – "We had something called the recovery approach. A few months after the original scam, we would approach the victim again, this time pretending to be from the FBI, or the Nigerian Authorities. The email would tell the victim that we had caught a scammer and had found all of the details of the original scam, and that the money could be recovered. Of course there would be fees involved as well. Victims would often pay up again to try and get their money back."
• xkcd – Frequency of Strip Versions of Various Games – n = Google hits for "strip <game name>" / Google hits for "<game name>"
• PeteSearch: How to split up the US – Visualization of social network clusters in the US. "information by location, with connections drawn between places that share friends. For example, a lot of people in LA have friends in San Francisco, so there's a line between them.

  Looking at the network of US cities, it's been remarkable to see how groups of them form clusters, with strong connections locally but few contacts outside the cluster. For example Columbus, OH and Charleston WV are nearby as the crow flies, but share few connections, with Columbus clearly part of the North, and Charleston tied to the South."

• Redis: Lightweight key/value Store That Goes the Extra Mile | Linux Magazine – Sort of like memcache. "Calling redis a key/value store doesn’t quite due it justice. It’s better thought of as a “data structures” server that supports several native data types and operations on them. That’s pretty much how creator Salvatore Sanfilippo (known as antirez) describes it in the documentation. Let’s dig in and see how it works."
• Op-Ed Contributor – Microsoft’s Creative Destruction – NYTimes.com – Unlike other companies, Microsoft never developed a true system for innovation. Some of my former colleagues argue that it actually developed a system to thwart innovation. Despite having one of the largest and best corporate laboratories in the world, and the luxury of not one but three chief technology officers, the company routinely manages to frustrate the efforts of its visionary thinkers.

Spring seems to have brought on a new variant of the Nigerian “419″ spam fraud campaign, substituting Benin for Nigeria. Going through the e-mail that came in during spring break, weeks I’m seeing a lot of e-mail with titles like

“FINAL NOTIFICATION OF RECEIVING YOUR HERITANCE FUND IN ATM MASTER CARD”

“CONTACT YOUR ATM MASETR CARD”

“CONTACT EMS IMMEDIATLY ON +234 8022856155″

“CONTACT FedEX EXPRESS COURIER COMPANY LIMITED FOR YOUR CONSIGNMENT IMMEDIATLY”

“CONTACT REV DR.KENNETH OKOM DIRECTOR OF ATM CARD BANK”

“CONTACT MR FRED IKEM FOR YOUR $950,000.00″

The general theme in this sort of spam is “We’re waiting for you to confirm your bank information and send a small processing fee so we can send you a lot of money.” This campaign mostly mentions a program from the Republic of Benin to give away money through funded ATM/Mastercard accounts for various reasons ranging from inheritance to payment for previous services. Some of these have an interesting wrinkle though:

THIS IS TO OFFICIALLY INFORM YOU THAT WE HAVE VERIFIED YOUR CONTRACT /INHERITANCE FILE AND FOUND OUT THAT WHY YOU HAVE NOT RECEIVED YOUR PAYMENT IS BECAUSE YOU HAVE NOT FULFILLED THE OBLIGATIONS GIVEN TO YOU IN RESPECT OF YOUR CONTRACT / INHERITANCE PAYMENT. SECONDLY WE HAVE BEEN INFORMED THAT YOU ARE STILL DEALING WITH THE NONE OFFICIALS IN THE BANK ALL YOUR ATTEMPT TO SECURE THE RELEASE OF THE FUND TO YOU. WE WISH TO ADVICE YOU THAT SUCH AN ILLEGAL ACT LIKE THIS HAVE TO STOP IF YOU WISHES TO RECEIVE YOUR PAYMENT SINCE WE HAVE DECIDED TO BRING A SOLUTION TO YOUR PROBLEM.

Maybe this would sound plausible to someone who had already responded to a previous scam email? “The reason you haven’t been paid yet is because you have been illegally dealing with the wrong officials, so please send us the money instead?” Perhaps this reflects a finely tuned understanding of the likely responders to this campaign…

Links: 419 Scan: Advance Fee Fraud and Fake Lotteries, Nigerian Fraud E-mail Gallery, Michigan CyberSecurity – Example of Email Fraud