The dots do matter: how to scam a Gmail user

Recently James Fisher received an email from Netflix asking him to update his credit card information.

“Odd,” I thought, “but OK, I’ll check.” The email is genuinely from netflix.com, so I clicked the link. It logged me in and took me to an “Update your credit or debit card” page, which is genuinely hosted on netflix.com. No phishing here. But hang on, the “Update” page showed my declined card as **** 2745. A card number I don’t recognize. Checking my records, I’ve never seen this card number. What’s going on?

I finally realized that this email is to james.hfisher@gmail.com. I normally use jameshfisher@gmail.com, with no dots. You might think this email should have bounced, but instead it reached my inbox, because “dots don’t matter in Gmail addresses”

Whenever you’re implementing email addresses in your code, also beware for plussing when handling them. Additionally James also offers a nice idea, in which Gmail could prevent lots of these scams.

The dots do matter: how to scam a Gmail user →

Calling all digital nomads: Switch your mail (and other stuff) to Google Apps … yesterday!

As I’m quite a digital nomad myself I need to have access to my inbox and mail archive from any place (and with that, any system – be it my macbook, my pc, my gf’s pc, an internetcafé, etc.) at any time. Next to that issue I want to have lots of space (my mail archive already is a whopping 1.2 GiBi … after having cleaned it out!), good spam filters, one interface/app to rule them all (viz. one interface/app to manage my mail on ALL my mail addresses) and – most importantly – support for labels (aka tags).

Continue reading “Calling all digital nomads: Switch your mail (and other stuff) to Google Apps … yesterday!”