Untitled attachment

Notices where this attachment appears

1. Embed this notice
   David Revoy (davidrevoy@framapiaf.org)'s status on Friday, 08-Mar-2024 00:13:28 JST David Revoy

   in reply to

   For the curious, here is a follow-up on the scammer who pretended to be from the Kdenlive team. (Email posted yesterday, I'm replying to it ↑).

   Confirmed: it's a scam and their goal is to get the target to install malware.

   Here's the whole discussion as screenshot, and it wasn't easy because I had to use an old inactive Gmail account 🤢. That's because Protonmail is banned from this impersonator's email address, kdenlivevideo.site (handled by emx.mail.ru).

   I won't dig any further.

   #kdenlive

2. Embed this notice
   David Revoy (davidrevoy@framapiaf.org)'s status on Wednesday, 06-Mar-2024 03:18:37 JST David Revoy

   in reply to

   @me_the_fl00f Hey, thanks for the investigation. I replied ( https://www.peppercarrot.com/extras/temp/2024-03-05_screenshot_172610_net.jpg ) because I'm too curious to see where this thing is going and also I'm curious to see the type of malware they have if they repackage the app, to bisect this and see if a protection can be found (or report it to a database of malware).
   Unfortunately, emx.mail.ru return a fail because Protonmail is banned on it. So I used another old email address to test if I can reach them. I'll keep informed.

3. Embed this notice
   Only a :verify_anime: fl👀f. (me_the_fl00f@cybre.club)'s status on Wednesday, 06-Mar-2024 03:17:48 JST Only a :verify_anime: fl👀f.

   in reply to

   @davidrevoy@framapiaf.org You should not answer or only if you are really knowing what you do. The domain is hosted by
   kdenlivevideo.site mail is handled by 10 emx.mail.ru.
   and a traceroute fails. Would be interesting whether it is flaged at senderscore.