El correo que reproducimos a continuación se utiliza para realizar extorsiones a los dueños de  dominios.

(Please forward to your President if you are not the person who is in charge of this below, because this is very urgent. Thank you)

Dear President, We are one of the leading internet solutions organizations in China, have something to confirm with you. We formally received an application on May 12, one company which self-styled ” xxxxx ” were applying to register ” xxxxxx ” as internet brand and following Asia/ China domain names:

    • xxxxxx.asia
    • xxxxxx.cn
    • xxxxxx.com.cn
    • xxxxxx.com.hk
    • xxxxxx.com.tw
    • xxxxxx.hk
    • xxxxxx.in
    • xxxxxx.net.cn
    • xxxxxx.org.cn
    • xxxxxx.tw

After our initial checking, we found the internet brand and these domain names were similar to your company’s, so we need to check with you whether your company has authorized that company to register these names. If you authorized this, we will automatically finish the registration for them and link to their website. If you did not authorize, please let us know within 7 workdays, so that we will handle this issue better. Out of the time limit we will unconditionally finish the registration for xxxxxxxx. Best Regards, Terry Zhao Auditing Department Shanghai FW Internet Solutions Tel: +86-21-37529318 Fax: +86-21-37529316 2009-05-14

Después de leer el correo y presos del pánico contestaríamos, craso error, si contestamos entramos en el juego de los timadores.

Haciendo un estudio exhaustivo de logs y contrastando otros datos que hemos recogido de Internet deducimos que se trata de una extorsión.

Recomendaciones:

  • No responder al mensaje
  • Estudiar los logs con detalle