Another interesting story from Sophos, this time from Paul Baccas: UK Government Agency wants your email scams – but is it doing it the right way?
He’s referring to a message at Action Fraud (essentially, the reporting point of the National Fraud Authority) inviting people to forward scam mails they receive: a welcome initiative, but one that doesn’t seem terribly well targeted or implemented. As he points out, simply forwarding a message usually strips out all the useful header information that a real investigation would need access to.
There’s actually some potentially useful information there on possible indicators of a fraudulent email, but as Paul also suggests, there needs to be more detail if the likeliest victims (those who aren’t aware of the technicalities of email, for instance) are to make use of the information.
According to a story run by the BBC, the intention is that e-mails received by Action Fraud will be forwarded to the City of London Police National Fraud Intelligence Bureau for collation and analysis. However, unless Action Fraud makes it clearer what it needs from its supporters and how they can provide those data, that aim is likely to be thwarted.
David Harley CITP FBCS CISSP
Small Blue-Green World
ESET Senior Research Fellow