https://community.isc2.org/t5/Tech-Talk/Tracking-scammers/m-p/15328#M507 <P>Hi all;</P><P>&nbsp; I had a question.&nbsp; Everybody knows that scammers abound on the Internet, and that they rely on International borders for protection.&nbsp; Every scammer I have run into has used G-Mail, or some other "free" mail site to run their operation.&nbsp; Sure, we can report them to Google, but that just means that account gets shut down and they open another.<BR />&nbsp; I recently got a scam mail to help move 15 million out of Syria in return for 10%.&nbsp; &nbsp;The email included an image of his&nbsp; passport (so I know it's real).&nbsp; I was going to bait the guy, and was thinking of sending a fake ID in return (just to be fair) but realized that my fake ID might be used as a basis for another scam.<BR />&nbsp; This got me thinking.&nbsp; Sure, we can shut down an account,&nbsp; but identifying the components of a scam could flag an account before it accomplishes its intent.&nbsp; For example, if the image used for ID by the scammer was added to a watch list, any account sending that image would be known as a scammer.&nbsp; Google has image analysis capability,&nbsp; so it seems that even attempts to thwart the system by changing a couple pixels each time could be thwarted.<BR />&nbsp; Naturally, you cannot contact anybody at Google to suggest this.&nbsp; Another thing that might be nice is if Google (and other providers) provided a way to let security professionals send a "poison pill" image that could be tracked to identify where it went to identify networks used by scammers. (EG, I could generate a fake ID on Google with a watermarked image that Google could track).<BR />&nbsp;Anyway, would be interested in any tools or ideas other people have come up for scam baiting, which seems the only tool we have to fight scammers.&nbsp;</P> Mon, 09 Oct 2023 08:58:38 GMT stivostenberg 2023-10-09T08:58:38Z https://community.isc2.org/t5/Tech-Talk/Tracking-scammers/m-p/15328#M507 <P>Hi all;</P><P>&nbsp; I had a question.&nbsp; Everybody knows that scammers abound on the Internet, and that they rely on International borders for protection.&nbsp; Every scammer I have run into has used G-Mail, or some other "free" mail site to run their operation.&nbsp; Sure, we can report them to Google, but that just means that account gets shut down and they open another.<BR />&nbsp; I recently got a scam mail to help move 15 million out of Syria in return for 10%.&nbsp; &nbsp;The email included an image of his&nbsp; passport (so I know it's real).&nbsp; I was going to bait the guy, and was thinking of sending a fake ID in return (just to be fair) but realized that my fake ID might be used as a basis for another scam.<BR />&nbsp; This got me thinking.&nbsp; Sure, we can shut down an account,&nbsp; but identifying the components of a scam could flag an account before it accomplishes its intent.&nbsp; For example, if the image used for ID by the scammer was added to a watch list, any account sending that image would be known as a scammer.&nbsp; Google has image analysis capability,&nbsp; so it seems that even attempts to thwart the system by changing a couple pixels each time could be thwarted.<BR />&nbsp; Naturally, you cannot contact anybody at Google to suggest this.&nbsp; Another thing that might be nice is if Google (and other providers) provided a way to let security professionals send a "poison pill" image that could be tracked to identify where it went to identify networks used by scammers. (EG, I could generate a fake ID on Google with a watermarked image that Google could track).<BR />&nbsp;Anyway, would be interested in any tools or ideas other people have come up for scam baiting, which seems the only tool we have to fight scammers.&nbsp;</P> Mon, 09 Oct 2023 08:58:38 GMT https://community.isc2.org/t5/Tech-Talk/Tracking-scammers/m-p/15328#M507 stivostenberg 2023-10-09T08:58:38Z