These ones are getting ridiculous...8 in the last 10 days.
Have MB sold our addresses or have they been hacked by someone and then sold?
Although I dont know for sure either way, the chances of this are incredibly slim simply because the ús they would get for selling them is so low compared to the ús Moneybookers make and the potential bad PR if caught/found out. On any rational cost/benefit analysis, it is just not plausible they were sold by the Company. A rogue employee however... who knows!
Originally Posted by ganth1
Have a plan and stick to it
I wonder what other data such a rogue employee would be able to access about our accounts.
Slightly unnerving. Quite a serious breach. Weren't people getting MB phishing emails recently? If this were not MB, I'd be thinking that hackers had breached their systems as some point and obtained a list of emails and god knows what else..
The emails actually address me by my name too...
Has anyone contacted MB and let them know?
Last edited by ganth1; 08/02/2012 at 01:57.
If you have only registered the email address at Moneybookers and never used it anywhere else, the only scenario I can think of with Moneybookers not being the source of the leak/spam is if you used that email address to deposit at a gaming site/merchant via Moneybookers?
Originally Posted by lotte
If that was the case then the email address (+ maybe full name?) would (probably?) be on the gaming site's Moneybookers statement - so if they really wanted to get your MB email address they could just download the MB statement and take it from there if that makes sense?
It is quite far fetched though because for someone to have that degree of access they would probably be quite high up in the chain of 'trust' as it were at the gaming site so probably wouldn't be that desperate. Who knows though.
Also I am not a merchant so I have no idea what a merchant would be able to see on a statement, but would think it would include details like email address and full name?
Again just to be sure, you definitely only used this email address that has been spammed at Moneybookers? And you definitely didn't use it to sign up anywhere else and never used it to send emails? If so then it's probably worth telling Moneybookers about it - again though as above, I think it might be possible for any merchant you deposited into to get your name and email address from their Moneybookers statement.
Originally Posted by ganth1
BUT... if all of the following were true:
Well... that is looking very dodgy for Moneybookers, I can't think of any way that it couldn't be Moneybookers that was the source of the leaked email address.
- added the email address to my profile at MB
- never used the email address at all anywhere else
- never used the email address to do transactions at MB
- got spam to that email address
This is exactly my scenario but I find it difficult to believe a rogue employee sold this information.
Originally Posted by munk
I would find one of the following scenarios more likely:
I haven't contacted Skrill regarding these spam messages but the next time I get one, I think I shall.
- My laptop is compromised -> I doubt this as I'm very careful about what I do online and have the necessary security software in place
- The e-mail domain issuer is comprised -> This is possible, but again I doubt it
- Skrill's servers or backups were compromised. I know a lot of IT companies keep backups of their data on tapes either on site or more likely off-site (in case of a fire) so it is possible some of those were stolen/lost/misplaced/not destroyed correctly, but again I doubt it
- Skrill upgraded their servers/hardware and did not destroy their Hard Drives properly. They may have just been thrown in a bin and instead of being disposed of securely they could have fallen into the wrong hands. This again I would find doubtful.
- Skrill employed some a company to perform some work e.g. Windows 7 upgrade rollout for them and one of that company's employees were not as careful as they should have been with data.
- However, what I think the most likely is that the MB employee's PC/laptop was either stolen/lost or had some form of virus or phishing software installed on it. I am a VIP and perhaps my VIP manager, Ivan has been doing some dodgy surfing and somebody got hold of his Outlook/Lotus Notes address book.
Remember, Remember the 04th of November 2010 ľ the day Interwetten died
Remember, Remember the 24th of March 2012, the day TGT won the Scoop6!
Post Thanks / Like
thanked for this post
I might be wrong here but us it true that until you become a VIP that you can only have 5 emAil addresses on your account. I remember being strapped for space and having to make my bookie email address match my MBers email address at one point
The 5 address limit is still 5 for VIP members. You can't remove email addresses easily either so you need to be careful about adding email addresses at Moneybookers. The last time I tried to remove an email address it took a good dozen emails to get it done, they only did it after a lot of pestering. I wish they had made it clearer that you could only add 5 email address and not remove any, when I started at MB I added lots of addresses quite quickly and regretted it later.
Originally Posted by r2d2
I think this is naive.
Originally Posted by Andy
For 5 years I have had spam to addresses at MB, all the ones I set up just for that, just to link to it. They all get spammed. And I know many others who have the same experience. Same in 2006 as 2012. I am 99.99999999999999999% sure MB not only flog them, but do it automatically as soon as you add them.
It's quite sweet that you would come up with 6 incredibly obscure explanations rather than the much more obvious one
MB are hardly known for guarding your info with their lives. They will tell a dodgy 2 bit casino anything about your account without questioning it, why do you not think they would flog your email??
Originally Posted by horsekeeper
Post Thanks / Like
Tags for this Thread