Techdirt. Stories filed under "scams"

DailyDirt: Cheaters Sometimes Prosper...

Michael Ho — Thu, 14 Feb 2013 17:00:00 PST

If you're going to commit a crime, there's a certain amount of logic to trying to pull off the biggest crime you can. Why risk going to jail over a relatively small amount of money? If you can get away with a multi-milion dollar heist, you only have to do it once (if you're not too greedy). And if you get caught, you might have the resources to escape the authorities. Here are just a few examples of some scams that might have demonstrated that crime can pay.

In 2012, Italian police arrested 8 people related to a scheme involving $6 trillion (yes, trillion) in fake US Treasury bonds. According to US authorities, these kinds of documents are part of a growing trend of "fictitious instrument fraud" where fake securities are used as collateral in a scam aimed at unwitting investors. [url]
How often do traders misplace a decimal point on purpose? David Miller would have made a killing buying 1.625 million shares of AAPL (instead of 1,625 shares!) if the stock beat its estimates, but Apple's shares actually fell... oops. [url]
The London interbank offered rate (aka Libor) is a global benchmark for financial instruments worth over $300 trillion -- and it's part of one of the largest and longest-running banking scams in history. Traders at several large banks colluded to manipulate Libor for years... because bankers were trusted to report honest numbers. hmm. [url]

If you'd like to read more awesome and interesting stuff, check out this unrelated (but not entirely random!) Techdirt post.

Permalink | Comments | Email This Story

DailyDirt: Mostly Harmless Scams...

Michael Ho — Thu, 7 Feb 2013 17:00:00 PST

There's cheating, and then there's cheating. There are obviously bad scams that hurt people or involve the loss of significant amounts of money or property, but some scams are hurtful on a much smaller scale. Here are just a few notable examples of some cheaters who were caught red-handed.

Now that computers are better than humans at playing chess, it shouldn't be too surprising that chess engines are being caught in use in human vs human tournaments. One teenager was found using the Fritz chess engine during competition, and it could mean future chess tournaments will be held without any kind of technology near the competitors. [url]
A mid-40s software developer was caught outsourcing his job to a team of programmers in China (for about a fifth of his annual salary). And he would have gotten away with it, too, if he'd just covered his tracks a bit better. [url]
Prof T. Mills Kelly taught a class at George Mason University that encouraged undergraduates to enter fake information into Wikipedia. Don't believe everything you read, kids... [url]

If you'd like to read more awesome and interesting stuff, check out this unrelated (but not entirely random!) Techdirt post.

Permalink | Comments | Email This Story

Feds Seize Legit 49ers Merchandise, But Apparently Unconcerned About Actual Fraud In Ticket Sales

Mike Masnick — Tue, 29 Jan 2013 20:00:00 PST

Sometime in the next few days -- perhaps Thursday or Friday -- expect that ICE and the DOJ will announce excitedly how they've seized another hundred or so websites that they'll claim were selling counterfeit NFL merchandise -- and maybe a couple sites that were planning to embed streams of the game. It's become a Super Bowl Weekend tradition because the feds have nothing better to do, apparently. Two local stories that came out this morning, however, suggest that the feds' priorities are out of whack. According to a CBS morning radio report in San Francisco, Homeland Security raided a guy selling 49ers merchandise on the street corner at a gas station. They told him that they knew he was selling counterfeit material and seized it... only to find out soon after that the merchandise was legit. Way to do your research, Homeland Security: Meanwhile, at the same time, there was actual fraud going on, as someone who spent $5,900 on Superbowl tickets on Craigslist was scammed and sent a note that just said "Goo Ravens!!! LOL" instead. Amazingly, the guy who sent that put a return address on the package and had spoken to the buyers a bunch on the phone. So you would think that, perhaps instead of swooping down on legitimate vendors selling legitimate goods, perhaps law enforcement could be out there arresting folks like this scammer instead. But, I guess that kind of stuff isn't as important to big companies like the NFL.

Permalink | Comments | Email This Story

Paul Ceglia's Case For 50% Of Facebook Falls Apart Soon After He's Arrested For Fraud

Mike Masnick — Fri, 2 Nov 2012 17:33:00 PDT

For a few years now, we've covered the situation with Paul Ceglia, a guy who once hired a young Mark Zuckerberg to do some programming work for him, claiming that Zuckerberg did a deal to provide half of Facebook to Ceglia. The details were a little weird, but Ceglia was able to bring on some high powered lawyers, the types who usually don't take on bogus cases. Of course, then that law firm eventually looked at the details and dropped him. In fact, it seemed like he had trouble keeping lawyers. Facebook grew progressively more aggressive in arguing outright fraud and presented ever increasing evidence that the whole thing was a complete sham.

While the case was clearly flopping, the last week has not been a good one for Ceglia. Late last week he was arrested by the feds for the supposed fraud in the case, and if that wasn't enough to deal with, his case against Facebook & Zuckerberg looks to be (unsurprisingly) closer to falling apart completely after the court has decided that the extremely damning evidence of fraud can be discussed in the case.

Permalink | Comments | Email This Story

Big Banks Finally Punishing Employees For Fraud... Like The Call Center Guy Who Used A Fake Dime 50 Years Ago

Mike Masnick — Wed, 5 Sep 2012 09:19:00 PDT

Wells Fargo, of course, was one of a bunch of the big banks heavily involved in questionable activities that brought the world to the precarious economic conditions we're still living in today. Just a few weeks ago, the company settled charges that it had misled cities and non-profits when selling them risky securities without disclosing the risks. The company gets a slap on the wrist -- without having to admit guilt -- and one executive (again without admitting guilt) gets a six month suspension. Have you heard about any top execs at any of the banks getting fired for financial malfeasance? No? Well, perhaps it's because they're focusing on the real trouble makers. Like Richard Eggers. 49 years ago, Eggers, as a teenager, tried to stick a cardboard cutout of a dime into a washing machine. He didn't get away with it at the time, and was arrested for fraud. He somehow put his life back together and, until recently, was a phone customer service agent for Wells Fargo.

And now he's really paying the piper: Wells Fargo has just fired him for the decades-old incident that, again, involved a dime. Even accounting for inflation, we're talking about a dime. However, thanks to supposedly "tough" new regulations concerning financial institutions, barring them from employing execs convicted of fraud, Wells Fargo is claiming that it had to fire Eggers.

“We don’t have discretion to grant exceptions in situations like this. Once we find out someone has a criminal history of dishonesty or breach of trust we can no longer employ them.”

Eggers has responded by filing a civil rights complaint against the company and federal regulators. He and his lawyers are hoping to turn it into a class action lawsuit, as apparently a number of other employees at banks have lost their jobs under these rules. Actual execs responsible for the financial crisis? Not so much.

This is yet another case where laws like this must "sound good at the time" to the policy makers putting them together without any sense of who it will really impact. And the end result is that we sure are making Mr. Eggers "pay" for that dime stunt in 1963, huh?

Permalink | Comments | Email This Story

Dear Sir, I Am A Nigerian Prince And If You Believe That There's A Bridge I'd Like To Sell You...

Mike Masnick — Tue, 4 Sep 2012 13:34:00 PDT

I'm no longer surprised that people fall for Nigerian advance fee "419" scams. It seems that every generation falls for something along those lines. In the past, I've talked about the bogus story of Drake's fortune, which was the "Nigerian scam" of nearly a century ago. But what certainly has surprised me is how little the story really seems to change. Given how closely so many people associate "Nigerian prince" with "scam," you'd think that it would make sense for scammers to move away from such things, and try to find a story that is slightly more realistic. However, On the Media points us to a fascinating research paper by Microsoft researcher Cormac Herley, and a Wall Street Journal article about the research, which reveal why it still makes sense for Nigerian scammers to say they're from Nigeria:

It weeds out all the non-suckers.

Think about it from the scammer's point of view. With advance fee scams, they need to string along someone for a while. A live sucker can be quite valuable, but also involves quite a bit of work. So, for it to be worthwhile, they actually need exceptionally gullible people and by flat out saying they're from Nigeria, given how closely associated that country is with such scams, they quickly weed out the people who are probably smart enough to realize they're getting conned. Since the cost to them of spamming everyone is close to nothing, you may be confused about why you keep getting "Nigerian prince" emails, but they don't care about you. In fact, in ignoring those emails, you're kind of doing them a favor by not bothering them with time-consuming efforts that won't pay off.

As the WSJ piece notes, this highlights a potentially better way to deal with such scammers: waste their time. Of course, we've written about such scambaiters before, with 419 Eater being the most well known community. But this research suggests that, not only are such efforts amusing, they can be genuinely effective in harming the economics of such advance-fee frauds.

Permalink | Comments | Email This Story

And... The Bureaucrats Begin Spreading FUD About Crowdfunding

Mike Masnick — Fri, 24 Aug 2012 15:19:02 PDT

We've been waiting patiently for quite some time now to see the SEC's "rules" for equity crowdfunding. As you hopefully recall, earlier this year, the JOBS Act became law, and one part of that was the legalization of certain forms of crowdfunding for equity (i.e., ownership of a company). You're probably already familiar with crowdfunding for things like pre-sales. And you may be familiar with things like crowdfunding loans, via services like Prosper and LendingClub. The JOBS Act is supposed to enable a different form of crowdfunding: for equity investments. Thus, in theory, a startup could not just let people pre-pay for a product they're developing, but could also actually purchase a tiny bit of stock in a company. Other countries already have this, but in the US it went against SEC regulations concerning the hoops you have to jump through to offer any of your equity to the public, rather than just a smaller group of accredited investors.

There's been a fair amount of talk about this effort, and a bunch of companies chomping at the bit to get into the market once crowdfunding for equity is officially in place. The main holdup? The SEC. As part of the law, the SEC is supposed to put forth rules for how such crowdfunding can work. But the SEC made it quite clear before the law passed that it didn't like this idea -- not one bit. So I've been quite curious to see what rules it would eventually put out... and so far all it's done is keep stalling. The rules were supposed to come out yesterday (which was already postponed from the original date), but instead, the SEC pushed things back another week.

While everyone waits for the SEC rules, various state securities regulators, in the form of the North American Securities Administrators Association (NASAA), are ramping up the FUD about such equity crowfunding. They released a report on the top investment scams... and crowdfunding in general is near the top of the list. They seem especially worried that the space is quickly going to be overcome by fraud:

"The number of entities out there already pitching themselves as crowdfunding entities online has risen in a significant fashion," said Matt Kitzi, NASAA Enforcement Section Chair and Missouri Securities Commissioner. "Just look at web domain names: it has gone from a couple hundred to well over 1,600 in the past year. They are staking up a position to enter crowdfunding market. There will be a lot more to come on this."

In early in August, the Massachusetts Securities Division charged a Lowell, Massachusetts man for a crowdfunding scam, bilking 20 investors who thought they were investing money in a gaming site of $153,396.

Secretary of the Commonwealth William Galvin, who brought the case, wrote to the SEC urging regulators not to let the JOBS Act changes become a tool for financial fraud and abuse. "Longstanding problems in the markets for small and speculative stocks show the pitfalls of relying on the wisdom of crowds."

Here's the thing: there are always scammers out there. And that's going to be a big part of the challenge for any of the platforms that are jumping into the equity crowdfunding space to deal with. They're going to have to distinguish themselves by how they enable trust between buyers and sellers and how they prevent fraud. But, some fraud is going to happen -- just as some fraud is always going to happen in just about any market. That doesn't mean we don't let the market itself develop.

In the end, I'm guessing that the SEC rules will be fairly strict, and may limit this kind of market. Also, contrary to some expectations, I doubt that many will see this as a true replacement for angel or VC financing. It seems like the sort of thing that will likely be more useful for small businesses (such as local businesses) rather than traditional high growth enterprises which are the kinds of "startups" that usually attract angel and venture money. Surely, some people will set up scams and get tricked. But there have been scams in the startup world for ages, and there are likely already some scams that have made it through existing crowdfunding platforms. But that's the nature of risk. Sometimes you lose.

While most people focus on how this will compete with angels and VCs, I'd think that it's much more a form of competition for the crowdlending platforms, since those are more about investment as well, just with debt financing, rather than equity financing. And while there certainly have been cases of fraud that came about because of those platforms, for the most part it hasn't sunk the top players in that space, because they've been able to try to minimize the likelihood of fraud while educating the market on investing wisely. There's nothing to suggest that the top players who emerge in the equity crowdfunding realm won't be able to do the same.

Permalink | Comments | Email This Story

DailyDirt: Cheaters Never Prosper?

Michael Ho — Tue, 21 Aug 2012 17:00:00 PDT

It's hard to really know how many cheaters are actually caught taking shortcuts. Generally, people assume that the ones who get caught are representative of all cheaters -- but maybe the smart cheaters are never caught... and really do prosper. Here are just a few known cheaters... and not all of them have faced up to any consequences.

South African Olympian Cameron van der Burgh set a world record in the men's 100-meter breaststroke (and won a gold medal), but later he admitted to using more dolphin kicks than are officially allowed. He's not the only one doing it, but that doesn't make it right (just like peeing in the pool). [url]
In the UK, Charles Ingram cheated "Who Wants To Be A Millionaire?" with a simple system of having his wife cough at the correct answers. Ingram and his accomplices were found guilty of cheating by a jury, but maybe if they'd used a slightly less obvious audible system... [url]
The 2012 National Scrabble Championship was marred by a boy caught palming blank tiles. Cheating at Scrabble is considered such a rare event that a fake wunderkind caught red handed made national news. [url]
Surprise: students enrolled in online classes with Coursera have been found cheating with dozens of cases of alleged plagiarism. Students don't (currently) earn any real credits from these classes, but that will likely change someday. So when more online classes actually have value, there will be far more than a few dozen cheaters. [url]

If you'd like to read more awesome and interesting stuff, check out this unrelated (but not entirely random!) Techdirt post.

Permalink | Comments | Email This Story

Digital Distribution: Exchanging Control For Convenience

Tim Cushing — Fri, 30 Mar 2012 03:37:18 PDT

Digital distribution can be a good thing, eliminating shipping, packaging, printing, storage, etc. and allowing instantaneous order fulfillment. Unfortunately, it has its downside, especially when digital products are tied to "walled gardens." The possibility always exists that the product you purchased, for all intents and purposes, never really belongs to you. We've seen it previously with Amazon's decision to suddenly remove purchased e-books from customers' e-readers.

Stuart Campbell at Wings over Sealand has another example of this unfortunate byproduct of digital distribution: the fact that you don't own what you've purchased. This means that at any time, for nearly any reason, the product you paid for can be rendered completely worthless.

In the case of iTunes, customers are not entitled to refunds on purchases, with the product in question being treated much in the same fashion as opened software, DVDs, etc. in brick-and-mortar stores. Once you've opened (installed) the product, it's yours forever, no matter how terrible it is.

"According to the iTunes Store Terms of Sale, all purchases made on the iTunes Store are ineligible for refund. This policy matches Apple's refund policies and provides protection for copyrighted materials."

In Campbell's case, the product in question isn't actually a bad piece of software, unlike the many clones and scamware inhabiting app markets. By his own account, he purchased and enjoyed the game (Touch Racing Nitro). After he purchased it, the developer (Bravo) went through a series of price adjustments, trying to find a sweet spot, ranging from £1.19 - £4.99. When this failed to make the impact on sales, Bravo offered a few free trial periods before marking it all the way down to 69p, which moved it back into the top 10 for a short time.

It's at this point that things get ugly.

Last October the game went free again, and stayed that way for four months. Then the sting came along. About a week ago (at time of writing), the game received an "update", which came with just four words of description - "Now Touch Racing Free!" As the game was already free, users could have been forgiven for thinking this wasn't much of a change. But in fact, the app thousands of them had paid up to £5 for had effectively just been stolen.

Two of the game's three racing modes were now locked away behind IAP paywalls, and the entire game was disfigured with ruinous in-game advertising, which required yet another payment to remove.

Campbell's paid-for software suddenly became indistinguishable from the free version, despite his having anted up for the game months ago. He fired off an email to Bravo, asking the developers to explain their reasoning for removing previously paid for content and asking these same paying customers to pay up again in order to return the game to its previous state.

He received a reply a day later from Ana Hidalgo, Bravo's "Social Media Manager":

"Hi!

Thanks for contacting us.

I'm really sorry about that. I knew that this could happen. The team had no option but to do that.

We're not trying to make money from people who have already bought the game like you did. It is not an excuse, but only 4% of the 2MM downloads have been paid ones. Unfortunately, Apple doesn't provide with any methods to know when an user has paid or not for an app. We just want to monetize the game from that 96% who are enjoying the game for free. Our goal is to monetize them via advertisement. We understand that this is annoying for the players that have paid for it.

Yes, maybe we could have released a LITE version, but if we release a new free version, we couldn't monetize near 2 MM free downloads we already have. And why we have 96% free downloads? A very bad old decision.. We've begun a new phase at Bravo Games and we definitely need some revenues from those downloads.

At the moment all our efforts are focused in new projects. When we finish those projects, we'll evaluate the possibility of adding new content to previous games like Touch Racing Nitro.

I regret to hear that you never buy another of our apps."

For all the supposed "entitlement" game fans have attributed to them constantly, nothing quite matches the entitlement "radiating from Sra. Hildalgo." For starters, if a developer feels that making an app free was a "mistake," it only compounds its errors when it starts taking it out on paying customers, especially when those customers number in the thousands.

If 96% of those were free downloads, that means that a whopping 80,000 people who paid money for Touch Racing have just been screwed. If we assume an arbitrary but reasonable average price of £1.19 (the second-lowest App Store price tier at the time most of the sales were made, though the app has cost at least twice that much for most of its life), that's just short of £100,000 that Bravo have extracted from consumers for what is in effect a "Lite" demo version of the game.

Imagine if the rest of the world worked this way. Imagine you went to Tesco and bought three boxes of Corn Flakes on a "three-for-two" offer, only for a Tesco employee to turn up at your house one day a month later and confiscate not only the "free" box but also the second one that you'd actually paid for. There'd be riots, or at the very least a long court backlog of assault cases and battered workers. Yet apparently, for videogames it's the dynamic economic model of the future.

Campbell is, unfortunately, right. Digital distribution puts control of purchased products completely in the hands of the developers and the distribution service. There are some game developers who would love nothing more than to go to 100% straight digital distribution, not only for the previously mentioned savings, but to allow them to retain complete control of their products. A fully digital distribution disguises DRM as a facet of the service (constant online connection, some or most content inaccessible offline) and helps eliminate the used game market which seems to rank very slightly below straight-up piracy in their minds.

Whatever pluses there are for the consumer are greatly negated by these factors. Any dispute between the distributor and the developers puts purchased products in the firing line. Should a developer suddenly pull out of the walled garden, customers may find themselves without support or updates for their purchased products, or worse yet, find themselves without functioning products.

Campbell has adjusted his tactics accordingly:

WoSland is a pretty wily consumer, and currently has eight apps sitting in its iPhone's "update" queue which are never going to get those updates, because the "update" in question is in fact a downgrade, removing functionality and/or adding ads. We've deleted many others altogether for the same reason.

Of course, this is far from convenient. Once you run into this situation, you're left with the choice of allowing all updates (even those that downgrade your software) or tediously updating all of your apps one at a time after verifying that said update won't remove functionality. Hardly ideal.

As he points out, console owners aren't so lucky. Most updates are forced, giving you the "choice" of updating or not playing your purchased game. And it's not just games and apps. As referenced above, e-books readers have been victims of distributor meddling in the past. Users of "services" like Ultraviolet and the "drive your DVD to the retailer to rip it to the cloud" may find their copies bricked if these services are shut down or (more likely) get caught in the middle of a contractual dispute.

If it's all about "control" with gatekeepers and walled gardens, digital distribution is playing right into their hands, turning what should be an advantageous situation for everyone involved into little more than a mixed curse.

Permalink | Comments | Email This Story

Scammers Mimic Copyright Troll Shakedowns In Targeting Megaupload Users

Mike Masnick — Thu, 22 Mar 2012 00:14:58 PDT

We've noted in the past the similarities between mass IP infringement trolling lawsuits and shakedown scams -- and have even seen some out-and-out scammers mimic the techniques of copyright trolls. Torrentfreak now reports that some scammers are specifically targeting Megaupload users, pretending to be lawyers demanding payment for infringements on Megaupload. While these are pure scams, given the MPAA's own statements about possibly suing Megaupload users, combined with the success rate that copyright trolls often have in getting some people to just pay up, it seems likely that a fair number of recipients of such a scam letter are actually falling for it.

Permalink | Comments | Email This Story

No Honor Among Thieves: Woman Scams Nigerian Scammers Out Of $33k

Mike Masnick — Fri, 24 Feb 2012 04:16:05 PST

With so much focus on Nigerian-based scams, many Nigerian scammers now seek to use middlemen to help with things like bank accounts to keep suspicion levels lower. There are plenty of stories of people in the US, Europe and elsewhere who take "jobs" that involve having a local bank account through which scam money flows to Nigeria -- where they're allowed to keep a percentage of the cash. Often, they are not otherwise involved or knowledgeable about the scam.

That appears to be the case with one woman in Australia, who has now gotten in trouble... because she scammed the scammers out of $33k while managing the pass through bank account (found via Slashdot). She apparently had no idea of the scam that was going on (involving bogus online used car sales), but decided to keep some extra amounts of money. Of course, when some of those scammed in the car deal sought to track down the scammers... the focus shifted to her, where her own thievery from the thieves was discovered.

The story notes that the woman has now pled guilty to "aggravated fraud," though it's unclear if the fraud was for the original fraud from her "bosses" in the Nigerian scam ring... or for scamming the scammers themselves. Somehow I doubt they would press charges.

Permalink | Comments | Email This Story

Brazen Scams By Engineers Uncovered

Mike Masnick — Wed, 14 Dec 2011 19:44:11 PST

Two separate stories of two different fairly amazing scams by engineers have come out recently. The first one is the more incredible one, and it involves a guy named William Grayson Hunter, who apparently secretly had two separate full time jobs at two different companies, but barely spent much time at either, instead "spending his days at bars, amusement parks and movie theaters," but sent in time cards, including some that billed for more than 24-hours a day. One of his two full-time employers, Aerospace Corp., just agreed to pay the government $2.5 million after it was investigating Hunter's work that was billed to the government at a premium. Of course, there's no punishment for Hunter, who died in 2010.

The other story is a bit more conventional. A network engineer at Verizon Wireless repeatedly used the company's warranty contracts with Cisco to order replacements parts that weren't needed, and then sold them off and kept the money -- which apparently added up to $4.5 million. Like Hunter above, Michael Baxter had interests outside of work:

[Baxter] spent the proceeds on jewelry, cars, international travel and multiple cosmetic surgeries for his girlfriend, prosecutors said.

Apparently, controls and audits on such things have gone out of style.

Permalink | Comments | Email This Story

UMG Finds Perfect Biz Model: Cheat Artists, Then, If Caught, Demand Insurance Company Pay Instead

Mike Masnick — Mon, 14 Nov 2011 12:29:55 PST

The sheer chutzpah of Universal Music is really quite stunning. As you may recall, in 2009, it came out that the major record labels had been screwing over musicians in Canada with a bit of sleight of hand called "exploit now, pay later if at all." The way it worked was that labels would put old works on compilations without getting artists' permission, then put the artists' names on a "pending" list, which was supposed to mean that payment to those artists was "pending." Except the pending lists were never touched and the royalties were never paid. Labels not paying artists royalties is a pretty common issue, but here they weren't even getting any credit at all. Pretty sneaky. Realizing they had been caught red handed, the labels "settled" by agreeing to pay the $45 million in royalties owed.

However, it turns out that Universal Music Group actually seems to think that its insurance company should be paying the $14.4 million it owes (UMG's share of the $45 million). It's now suing its insurance company for refusing to pay. If you think about it for a second, you realize just how insane this claim is. Basically, Universal Music is claiming that it can simply not pay any royalties at all, then wait to get sued... and if it loses and has to pay, it believes its insurance company has to foot the bill. Now there's a business model!

Permalink | Comments | Email This Story

No Surprise: Scammers Focus On Tricking The French With False Three Strikes Infringement Notices

Mike Masnick — Tue, 18 Oct 2011 22:26:47 PDT

We've seen similar scams for a few years now, but with the French three strikes administrators, Hadopi, sending out 650,000 first strike notices, it should come as no surprise that the scammers have jumped in to try to take advantage of people. They're sending notices to people pretending to be infringement notices from Hadopi. They ask people to click through to access their report. Following the link brings you to a cleverly faked Hadopi website, which asks for a registration code and provides the following instructions:

“To get the access code by SMS: Send CODE to 81083. For the confirmation code by SMS: send CODE to 81015. To get the access code by phone: call the following number: 0899 230 141. Confirmation code by phone: call the following number: 0899 230 148.”

And that's where the scam part comes in. The numbers are apparently premium access numbers, meaning that sending those text messages will end up costing quite a bit. Pretty sneaky. Yet another example of the kind of collateral damage created when you set up systems that treat people as guilty without any hearing or trial. It leaves itself wide open for abuse from scammers.

Permalink | Comments | Email This Story

Wall Street Journal Europe Doles Out Cash And Favors To Inflate Circulation Numbers

Mike Masnick — Fri, 14 Oct 2011 14:11:00 PDT

I can't find it now, but just a few months ago I got into a discussion in our comments with someone who insisted that newspapers or paywalls were always going to be a better place for advertisers because they actually knew who their readers were and could verify and audit that information. I noted that the newspaper industry has a long history of boosting circulation numbers through fraud. In response, I was told that doesn't happen any more. That seemed laughable. Indeed, reports have now come out that the Wall Street Journal Europe was involved in a complicated scam to massively boost its circulation numbers by giving companies cash to buy copies of the paper at greatly discounted rates. Even worse, it appears that some of the deals involved signed contracts with the WSJ, where they promised positive coverage of one of the organizations that would participate in this scheme:

The Guardian found evidence that the Journal had been channeling money through European companies in order to secretly buy thousands of copies of its own paper at a knock-down rate, misleading readers and advertisers about the Journal's true circulation.

The bizarre scheme included a formal, written contract in which the Journal persuaded one company to co-operate by agreeing to publish articles that promoted its activities, a move which led some staff to accuse the paper's management of violating journalistic ethics and jeopardising its treasured reputation for editorial quality.

Coming on the heels of the voicemail hacking scandal, this is another black eye for Murdoch's News Corp, but it looks significantly worse, given the generally positive reputation around the Wall Street Journal, when it comes to reporting and editorial ethics.

Permalink | Comments | Email This Story

Conde Nast Sent $8 Million To A Scammer After A Single Email

Mike Masnick — Mon, 4 Apr 2011 19:01:00 PDT

Apparently it's not that hard to scam a big company out of millions of dollars these days. You can just send a single email, pretending to be from a vendor of that company. That's apparently what a guy named Andy Surface discovered when he set up a bank account for an operation he called "Quad Graph," likely designed to be similar to Quad/Graphics, the giant printing company that prints many big name magazines. He then sent a single email to magazine giant Conde Nast, leading the magazine company to send that new account $8 million:

In early November, Conde Nast received an "Electronic Payment Authorization” form by email at its offices in ... New York. The form appeared to have been sent by Quad/Graphics. The form requested that Conde Nast direct payments for Quad Graphics to the Quad Graph Account, and provided account information. Conde Nast filled out the form and returned it by facsimile from its offices in ... New York to the facsimile number provided in the form. Following Conde Nast's receipt of the "Electronic Payment Authorization" form, Conde Nast started making payments for Quad/Graphics bills by ACH transfer from a Conde Nast account with JPMorgan Chase Bank in New York to the Quad Graph Account.

The whole thing was discovered when the actual printer noticed that it was no longer getting paid and asked Conde Nast what was up. Conde Nast went to the feds, who arrested the guy and amazingly discovered that all $8 million was still sitting in the bank account.

Permalink | Comments | Email This Story

What Does It Take For Mobile Operators To Care About SMS Cramming Scams?

Mike Masnick — Mon, 28 Mar 2011 15:52:46 PDT

The various mobile operators have been making tons of revenue off of premium "short code" SMS programs. These are ways to add charges for various things directly to your phone bill. For example, they've become popular with various charities, so you can support them simply by texting a message to a particular short code. Of course, in many cases, the mobile operators charge you or take a cut for allowing this. And, of course, as with anything like this, it's been left open to scammers... and those scammers have moved in. Just as we saw with phone service cramming, where charges would be added to your landline phone bill, there's been a growing set of operations cramming premium SMS offerings.

Broadband Reports highlights the saga of JAWA, a Scottsdale, Arizona-based company that's at the center of allegations of cramming. The company and a bunch of shells allegedly send text messages to people that say:

"Text back STOP if you don't want to subscribe."

Most people, of course, don't text back because they think it's a scam. What they don't realize is that even if it's a scam, it's the not replying that lets the telcos start adding fees to your bill. The big question here: why does any mobile operator allow charges to be put on your phone bill for inaction?

The blog AZDisruptors (normally about Arizona startups) has been calling attention to the company, including putting together this video explaining how the cramming works, how JAWA's CEO Jason Hope is apparently building the largest house in the US (complete with a 3-story night club), and how AT&T pretends (falsely) that it can't do anything about it: Oh yeah, Broadband Reports also notes that Hope's former blog, which was all about the Lamborghinis and other luxury cars he was acquiring, has suddenly changed to point to a page about his philanthropic work.

The thing is, JAWA has been doing its thing for quite some time. After Texas regulators began investigating, Verizon Wireless finally realized it needed to do something and sued. Amusingly, JAWA's defense to the lawsuit appears to be that it employs lots of people and is good for Scottsdale. However, it also points out that it's made Verizon Wireless tons of money, and even complains that Verizon Wireless seems to be withholding money owed.

While it's nice that Verizon Wireless has filed suit, it appears this only happened after Texas regulators began investigating, and after they made money from JAWA for a period of nearly four years. AT&T now claims that it's investigating too, but only after AZDisruptors demonstrated company representatives blatantly lying to him about whether or not they make any money from this and whether or not they can stop it.

The big question in all of this really should be why the mobile operators allowed this to happen at all. Why would they ever allow charges to be added to an account as a result of inaction, rather than through direct acceptance?

Permalink | Comments | Email This Story

Copyright Pre-Settlement Virus A Lucrative Scam

Mike Masnick — Mon, 7 Mar 2011 21:56:00 PST

With all of the highly questionable pre-settlement lawsuits out there demanding cash from people to avoid a lawsuit for copyright infringement, we've heard of a few different scams designed to use the same tactics: accuse someone of copyright infringement and demand cash to avoid a lawsuit... even if the operation demanding cash has nothing to do with the copyright holder. One recent example of this was a bit of malware that, once installed on a computer, would generate fake infringement warnings from the RIAA/MPAA, demanding cash settlements. TorrentFreak points us to a report from Brian Krebs who got his hands on some documents from ChronoPay, the operation that was used to handle the payments in this scam, showing just how lucrative the scam has been. The documents only cover the past two months, but in that time, 580 people paid up, handing over $283,000 to scammers. Of course, this is only marginally less legit than the standard shakedown from various lawyers who are working with the copyright holders. But, the success of these scammers' operations is almost certainly driven in part by the success and press coverage of those lawyers who are sending out those mass pre-settlement letters. People are hearing about this and thinking any such threat is legitimate, even when it's a pure scam. Of course, this means you should only expect to start receiving plenty more such scam requests, demanding you pay up to avoid a lawsuit. Kinda makes you wonder if it will make the "actual" letters sent by copyright holders less effective as people just assume they're scam letters.

Permalink | Comments | Email This Story

Homeland Security Strapping GPS Devices To Indian Students Victimized By Scam

Mike Masnick — Thu, 3 Feb 2011 08:07:05 PST

Homeland Security and its Immigration and Customs Enforcement (ICE) group sure know how to create "international incidents" left and right. The latest (as pointed out by Slashdot) is that as part of the process of reviewing the cases of a bunch of Indian students who were allegedly duped by an operation called "Tri-Valley University" in California, ICE agents have put GPS tagging ankle-bracelets on the students to track their movements. According to the reports, Tri-Valley was a "sham" that helped foreign nationals gain immigration status in the US. That certainly sounds like it's broken the law, but to then go and tag the students with GPS monitoring bracelets while ICE sorts this all out seems rather aggressive -- and officials back in India are protesting the way the students are being treated:

But New Delhi is not happy with students being treated like criminals. Expressing "serious concern," a government spokesman said India has conveyed to the US authorities that the students, "most of who are victims themselves, must be treated fairly and reasonably, and that the use of monitors on a group of students, who were detained and later released with monitors in accordance with US laws, is unwarranted and should be removed."

It's almost as if ICE's goal is to make the US government an even bigger laughingstock for being the stereotypical over aggressive law enforcement cowboys often portrayed in the movies.

Permalink | Comments | Email This Story

Scammers Move In: Facebook Getting Sketchy

Mike Masnick — Mon, 24 Jan 2011 04:50:33 PST

While it was definitely interesting to look at the reasons why Facebook was able to crush MySpace in the social networking world, it's also true that there are more and more questions about the sustainability of Facebook. We recently wrote about the claims of a potential toolbar scammer being one of Facebook's top advertisers, and while Facebook denies the company has ever advertised with them, others claim they're still seeing those very ads. Either way, a new research report suggests that scammers are increasingly targeting Facebook -- with some level of success. It appears this may quickly become Facebook's next big challenge. Historically, Facebook was more immune from scams and spam due to its private nature. However, as the company has continually pulled back on privacy and pushed people to open up more, it's also allowed in all sorts of openings for spam and scams.

Permalink | Comments | Email This Story

Is Figuring Out A Slot Machine Software Glitch & Making Money From It A Crime?

Mike Masnick — Fri, 7 Jan 2011 06:13:04 PST

Over the last few years, casinos around the globe have been using increasingly high tech slot machines, but with high tech slot machines come the usual bugs. And that raises some interesting legal questions. In the past, we've noted numerous examples of casinos blaming software glitches for slot machine awards, and refusing to pay them out. And, usually, they're being allowed to do this. That seems a little troubling, but it can get a bit more complex, as in one case a few years ago, where a guy used a slot machine that had faulty software -- and was arrested for doing so. Each time he put in $1, it was credited as $10. Now, once he realizes this is happening, perhaps you can consider that fraud, but it does seem a bit dangerous to blame the guy for what was really a software glitch by the casino or slot machine vendor.

The latest such case, found via Slashdot, might not be quite as troubling. In this case, a guy more or less figured out a software glitch in a variety of slot machines that would enable a series of button presses that would lead to larger awards, and then he used that to win a lot of money. Now, I can definitely see the case for fraud here (and the guy has now been arrested). He didn't just spot a machine with a glitch, but he then actively exploited that glitch, knowing it was a glitch, and took steps to enable that glitch on various machines (to make it work, he apparently had to have casino staff change some settings on the machines, which they would do since he was a "high roller.")

Given that he was knowingly abusing this glitch, the fraud claims seem much more reasonable. However, there is still something worrying about charging someone for a crime for doing what a computer system allows them to do. He didn't technically hack the system -- he just figured out a bug in the software and used that to his advantage. There is at least some gray area, concerning whether or not some of the liability should fall back on the maker of the slot machine for leaving such a glitch in their software.

Permalink | Comments | Email This Story

Company That Makes Wristbands With Holograms Forced To Admit That Their Scientific Claims Are Bunk

Mike Masnick — Wed, 5 Jan 2011 05:15:29 PST

If you've seen those hologram-adorned wristbands advertised that are supposed to give you "balance" or some other such nonsense, you probably were smart enough to know that they were the modern equivalent of snake oil. However, for the gullible folks who believed in the claims of the manufacturer, Australian officials have forced the company to admit publicly that there's no scientific basis for their claims about the properties of the wristbands, and that the company "engaged in misleading conduct." What amazes me is that anyone believes the claims in the first place. The idea that a bracelet with a hologram improves your balance, enhances muscle response and increases stamina and flexibility just seems so obviously ridiculous. Even if you believed it might work via a sort of placebo effect, you'd have been better off believing in the magic powers of a basic rubberband and wearing that on your wrist. Nice to see regulators (in Australia, at least) forcing the company to admit that its product claims were based on nothing but a desire to sell cheap bracelets at a tremendous markup.

Permalink | Comments | Email This Story

Shouldn't We Fix The Check Clearing Loophole That So Many Scammers Abuse?

Mike Masnick — Tue, 28 Dec 2010 04:25:57 PST

Slashdot points us to a recent story about a guy who lost his lawsuit against a bank, over a variation on a classic Nigerian email scam. The scam is one we've discussed many times in the past: somehow the victim gets a big check, which they're expected to deposit in a bank. After the check "clears," the victim/recipient is supposed to transfer a large chunk of that money to the scammer, on the belief that they get to keep whatever is left over. What really happens is a few days after the check "clears," the bank finds out it's fraudulent, and tries to void the transaction. But, by then, the victim has already transferred out a big chunk of money (and the scammer has already taken all that cash out of the bank and disappeared) -- leaving the victim footing the bill, with the bank expecting them to come up with the missing cash. In this case, the scam took on all the familiar facets of this scam:

In March 2009, Brian Peters received an email from someone purporting to be a citizen of Malaysia. The e-mail informed Peters that certain third parties in the United States and Canada owed the purported Malaysian money, but that "they can not transfer the funds to any bank account outside America continent due to their new company policy [sic]." He asked Peters to "assist me in receiving the funds and forward to me." He offered to pay Peters 12 percent of the money. Peters agreed after apparently negotiating an increase of his fee to 15 percent.

Peters deposited the $808,988.90 in checks received from the purported Malaysian at Chino Commercial Bank. After the bank notified Peters that the checks had cleared, Peters wire transferred $468,000 to Hong Kong. Shortly thereafter, the checks were dishonored after the bank detected that they had been altered. Since Peters was personally liable for any overdrafts on the account, which had only a few thousand dollars, the bank sought to attach property owned by Peters to collect on the overdraft. The trial court granted the bank’s motion to attach against Peters in the amount of $458,782.60.

This certainly isn't the first such lawsuit. We wrote about a similar case two years ago, which involved some scammers tricking a law firm (who really should have known better). The reason this scam works over and over and over again is pretty simple: most people have no idea that when a check "clears," it's not actually been validated. This is apparently due to various laws that require banks to make money from checks available within a very short period of time. So the way banks deal with this is to just make the money available, and if they later find out that the check was fraudulent, they pull back the money. But, of course, most people don't know this and assume (somewhat reasonably) that if a check "clears" and the money is listed as "available," the bank has made sure the check is legitimate. This is a somewhat unintended consequence of laws to make paying by check work better, but it leads to a huge opening for these types of scams.

So if they need to do that, shouldn't it make sense for banks to at least put forth pretty clear warnings on money that has not really been validated yet? Or to at least proactively warn anyone seeking to withdraw money that hasn't really been validated that if the check fails to validate, they may be liable? It seems like there must be better ways to deal with this kind of scam than to just let the scammers keep taking advantage of this knowledge gap.

Permalink | Comments | Email This Story

Journalists Don't Do Math: How Does Buying 6,000 Songs With Stolen Credit Cards Get You £500,000 In Royalties?

Mike Masnick — Thu, 23 Dec 2010 09:23:00 PST

Shocklee points us to a story claiming that a group of teenagers in the UK uploaded some of their own songs to iTunes, then used a bunch of stolen credit cards to download the songs thousands of times, and then collected approximately $773,000 in royalties. The article notes that this would be "an easy enough crime to commit," but something in the reporting on this story doesn't make much sense at all.

First off, something appears to be way off in the numbers. The reports claim that the teens downloaded their own songs approximately 6,000 times over the course of a year and a half. Yet, they claim they made $773,000 (£500,000) in royalties? I know that Apple now allows slightly higher prices on some songs, but they're not that high. The math doesn't add up at all. iTunes songs in the UK cost £0.79 per song, so 6,000 songs would mean £4,740 spent in total. Take Apple's (approximated) 30% cut, and you're left with £3,318 -- a far cry from £500,000. Even if you assume these songs got the "premium" pricing of £0.99, we're still orders of magnitude off (hat tips to Dave W & Stephen for UK iTunes pricing info). I've gone through the news reports -- and a whole variety of press reports and blogs all report the story exactly the same way: 6,000 total downloads (2,000 by this one guy, Lamar Johnson, who pled guilty to the crime) but not one report that I've found which seems to question the math.

I guess it's entirely possible that buying a bunch of songs yourself would boost the songs onto some lists, that would drive additional "real" sales, but if that were the case, that would be a much more interesting story -- and you would think that the press would point that out. We've certainly heard claims of "real" music releases where labels have dumped money into getting people to "buy" thousands of copies of songs to try to push a song into a hit list but none of the news on this story suggests that's the case.

Separately, despite the claim of the original article that this is a crime, I fail to see how that's the case at all. It's clearly an attempt to launder money via iTunes, but there seem to be multiple serious problems with it. First, as soon as the stolen cards are discovered and the false charges are made clear, it has to be incredibly easy to track down the likely suspect: whoever uploaded the music. On top of that, given iTunes' 30% or so cut, it seems like a somewhat costly way to launder money... in a way that is incredibly traceable, so the money isn't even that well laundered.

Permalink | Comments | Email This Story

Computer Techs Turn Normal Virus Removal Into Multi-Million Dollar Scam

Mike Masnick — Wed, 10 Nov 2010 12:12:00 PST

Lots of people suspect that the various companies out there who promise to clean viruses off your computer are a bit of a scam -- and, apparently, in at least one case, it turned out to be a huge scam. Apparently a guy working for one of those companies, Vickram Bedi, realized that Roger Davidson, who brought in his laptop to have it cleaned of a virus, was a wealthy composer (and heir to a fortune). So, rather than clean up the virus, Bedi and his girlfriend, Helga Invarsdottir, worked out a scam that bilked Davidson of somewhere between $6 and $20 million.

When asked to remove the virus from the laptop, Mr. Bedi allegedly told Mr. Davidson that his computer had in fact been attacked with a virus so virulent that it also damaged Datalink's computers, according to prosecutors.

Mr. Bedi told Mr. Davidson that he had tracked the source of the virus to a remote village in Honduras and that Mr. Bedi's uncle, purportedly an officer in the Indian military, had traveled there in a military aircraft and retrieved the suspicious hard drive, prosecutors said.

In addition, Mr. Bedi told the victim that his uncle had uncovered an assassination plot against Mr. Davidson by Polish priests tied to Opus Dei, according to prosecutors....

In addition to the thousands of dollars charged to secure Mr. Davidson's computer, Mr. Bedi and Ms. Invarsdottir allegedly charged thousands more to provide 24-hour covert protection for Mr. Davidson and his family.

Harrison Police Chief Anthony Marraccini said the couple charged Mr. Davidson about $160,000 every month for bogus security and other services. At the time of their arrest, Ms. Invarsdottir had $1.6 million in a bank account and Mr. Bedi had $6 million in a separate account, Mr. Marraccini said. Those accounts have been frozen and computers and business documents were seized by police, Mr. Marraccini said.

According to the article, this scam only came to light after law enforcement was investigating Bedi and Invarsdottir for another scam, suggesting that this may have been an even bigger scam, with more targets.

Permalink | Comments | Email This Story