Phishing email

If you have an email address that is publically exposed on Internet, you are likely to receive phishing emails.

Here are some samples of the phishing emails sent to Hans Sundgren's email address.

2017

Apple account has to be verified

Strange, the URL goes to a fishing park in Denmark: Himmerlands fiskepark that propably have got their server hacked.

2016

Apple gives me a new iPhone 7

Not exactly an phishing email because no logo is attached. The message is in Swedish.

This concludes the logging of phishihg emails received year 2016.

Enter card account is blocked

My EnterCard is blocked. But Hans do not have any EnterCard.

The email was received 2016-12-23 but appears to have been sent 2016-12-22.

Server message about deactivation

I may cancel the deactivation but the URL goes to smallgroupchurces.

The email was received 2016-12-07 but appears to have been sent 2016-12-01.

Thank you for your order

Someone has bought an iPad and stated my email address. "If you did not order this click here to cansel". But the link does not go to Apple.

An identical email is received 2 days later.

Apple ID has been disabled, again

The type as before but this is not an image and the URL is a shorter one.

The email was received 2016-10-19 but appears to have been sent one day earlier.

Apple ID has been disabled, again

Two identical emails, with link from image are received within 20 minutes.

SEB account

Email with image that links to a very long URL.

Danske Bank account locked

The account has to be reviewed. The email looks like text, but it is an image with hyperlink.

Swedbank account locked again

My account is locked and I have to "verify" the account.

Swedbank account locked again

My account is locked and I have to "verify" the account.

The email appear to have been sent 2016-10-01 but arrived 2016-10-02.

Swedbank account used by other

My account is locked and I have to "verify" the account.

Apple ID has been disabled, again

Someone in Hungary has used my Apple ID to buy a new iPhone 7

Volvo-kort is locked

My non-existing Volvo-card is locked.

Nordea bank account is locked

Hans has no account in Nordea.

Apple ID has been disabled, again

Someone has used my Apple ID to buy a new iPhone 7, just released.

The email appear to have been sent 2016-09-22 but arrived 2016-09-24.

Apple ID has been disabled, again

Someone has used my Apple ID to buy a new iPhone 7, just released.

The email appear to have been sent 2016-09-21 but arrived 2016-09-24.

OKQ8 spärrat kreditkort

The email appear to have been sent 2016-09-16 but arrived 2016-09-20.

Apple ID has been disabled

Someone has used my Apple ID to buy a new iPhone 7, just released.

The email appear to have been sent 2016-09-15 but arrived 2016-09-19.

OKQ8 blockerat kreditkort

When clicking on the link, a page asking for user name and password is shown.

Avvikande aktivitet OKQ8 kreditkort

I need to verify the account on a page with a very long URL.

Nordea account looked

Strange, I don't have a Nordea account. I need to confirm my identity on a page with a very long URL.

Spotify payment problem

I must update payment details.

Apple: Your payment is on hold

Nice touch with an image instead of text in email. The letter looks quite good but the address looks strange: emailappleshop.com.

Swedbank upgrade of database

I need to update the account by clicking on a super-long URL.

Viaplay payment problem

Invoice of Viaplay subscription not ordered. Money will be refunded if credit card details are supplied.

Another Spotify payment problem

Same phising email as some days ago, but with a different URL.

Spotify payment problem

I have to go to web page and fix the problem. The web link in the email is a very long URL, very different from spotify. And note that "https" is included in the address, but not as the protocol, but part of address: http://https-ujtafmueiqtts.jrconstructionincorporated.com

Donation SA Associates

A short notice with a long legal notice.

Telia mail to be verified

My Telia mail account has not been updated this year.

Your Apple ID has been suspended

Apple wants me to validate my account. The web link does not go to Apple.

Visa/Mastercard SecureCode needs to entered

Apparently I have not confirmed my password. If I don't do it, my card will be blocked.

Visa/Receipt from Telia Play+

Hans does not have a Telia Play+ account.

Mailbox too large

I need to "update" the email account.

Pay today, or contact us

Zip file with invoice.

Invoice with my name

Zip file with "invoice".

Danske bank has a message for me

Strange that a Danish bank has an Romanian URL address.

Microsoft prize

Microsoft in UK congratulate me.

Spotify payment problem

I have to go to web page and fix the problem.

Telia invoice paid twice

"Åtkomst till ditt konto är begränsat till följande nästa". What does that mean?

Microsoft prize

Microsoft in UK congratulate me.

Invoice paid twice to Telia

Telia says I have paid my invice twice. By clicking the link I will get money back.

Award from Microsoft Edinburgh

Microsoft in UK has awarded me something, described in the enclosed PDF file.

AOL mailbox limit exceeded

But I don't have an AOL mailbox. And what do the author mean with that the limit is 1 GB and I am already using 99.8 GB? Confusing.

Won a prize for using Google

The CEO of Google congratulates me!

Limited PayPal account

If you don't update your information within 3 day, Your account will be Iimited.

Telegraföverföring MEDDELANDE

Not a phishing spam but interesting letter. I thought telegraph messages was a thing of the past.

Uplift International lottery winner

Not a phishing mail, since the email address to replay to is real. The strange thing is that Hans has not participated in this lottery.

DBS Bank needs my confirmation and receipt.

Not a phishing mail, since there is no fake email-adress.

2015

How to bankrupt the U.S. Lotto System

The secret is hidden behind a web page that you have to copy/paste.

One of our lucky winner this week!

I just have to send an email to collect the money.

My account has a debt

The encolsed zip file have all details, just open it.

Apple account suddenly expires

The link does not go to apple.com but to supporten-apple.com. Nice try!

Danske bank has information for me

Strange that a Danish bank has an Australian URL address.

Unpaid invoice attached as ZIP file

Ebony Holden Courier Service want me to pay an invoice. The ZIP file included contains a Javscript file, not an invoice.

Spotify subscription

Spotify could not debit me and wants me to add my invoice data in order to continue listening to music.

Spotify subscription

Spotify could not debit me and wants me to add my invoice data in order to continue listening to music.

Danske Bank message

The bank has sent an internal message for me. All I have to do is to click the link.

Spotify subscription

Spotify could not debit me and wants me to add my invoice data in order to continue listening to music.

Invoice paid twice to Telia

Telia says I have paid my invice twice. By clicking the link I will get money back.

Get a lot of money just by sending a reply.

The indicated email-address goes to a web page with a very long URL.

Award from Microsoft Edinburgh

I need to contact the "Payment Consultant" immediately according to an enclosed PDF file.

Apple iTunes account will be closed

Please enter your payment information in orde to keep the iTunes account open.

Invoice paid twice to Telia

Telia says I have paid my invice twice.

Chans att få 1,5 MEUR

Egentligen inte phishing men ändå intressant.

I will receive 2.5 USD

This is not technically phishing but still interesting.

Invoice paid twice to Telia

Telia says I have paid my invice twice.

Spotify subscription

Spotify wants me to add my credit card data in order to continue listening to music.

Invoice paid twice to Telia

Telia says I have paid my invice twice.

Spotify subscription

Spotify wants me to add my credit card data in order to continue listening to music.

Green card lottery invitation

Mail from the Official American Green Card Lottery

Won a prize from Google

I am a lucky winner!

Won a prize from Google

I am a lucky winner!

Spotify subscription

Spotify wants me to add my credit card data in order to continue listening to music.

Receipt from iTunes

The link does not go to appple.com. The email was sent 2015-09-18 but was received 3 days later.

Nordea: Vi installera nya internetbanken programvara.

Den nya programvaran sägs erbjuda: Lätt konto tillsynsenhet och Höjd Särkethets nivå. Det låter tryggt.

Google Award Notification Letter

I am a lucky winner.

Message from Danske Bank, spelled "..bannk.se"

URL does not go to Danske Bank.

Message from solicitor about inheritance

Does not appear to be a company email address.

Message from Danske Bank, spelled "..danskbank.se"

URL does not go to Danske Bank.

Inheritance fund transfer

7.500.000 punds are waiting for me.

Message from Danske Bank"

URL does not go to Danske Bank.

Unpaid invoice

The invoice is a MS Word document..

Poll from Blocket AB

I will receive 900 SEK if I answer some questions. The link does not go to Blocket but a net-address.

Tax refund

The URL does not go to Skatteverket.

Message from Swedbank

Click to read the message...

Message from SEB

Click to read the message...

Help needed to transfer money between banks

Mark Jozef need assistance in money transfer. I will receiver 4 million GBP if I help him. Is it so difficult to transfer money between banks?

Unpaid invoice from Luxinnovation

This email is sent to Hans via his, publically exposed, email-address at FTI where he is one of the auditors.

Faked bill from Apple iTunes

"If you did not initiate this download, we recommend that you go to iTunes Payment Cancellation Form to change your password."

2014
2013
2012
2011

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

2010

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx

Xxxxxxxxxxxxx