Hello, welcome to the Thursday, June 18th, 2020 edition of the Sansonet Storms and Stormcast.

My name is Johannes Ulrich.

And I am recording from Jacksonville, Florida.

Yesterday, I received an interesting email where when I looked at it first, I thought, hey, this has to be a scam.

It was sort of one of those very clumsy

done scams. It claimed that apparently I shot someone at a recent protest and that I should

go to a website to learn more about the charges. Now, what was sort of odd about this is that while all of this looked like your

standard scam or fishing attempt, it actually directed to a legitimate website. The website

in question here was the Atlanta Police Foundation, which is a not-for-profit working with the Atlanta Police.

And of course, if you watched the news at all the last week or so,

the Atlanta Police has a huge spotlight shining on them recently.

So the question I had, and said I don't really have a full answer for it,

is why would someone be doing this if there is sort of no obvious profit from this particular scam? And the best explanation that I could come up with is something that I have seen being referred to as a Joe shop, which is often used in spam. We're using a fake from address.

And the goal here is essentially to defame the fake sender of the message. So to claim that

whoever sent the message is sending spam and then to hope that spam filters and such will block any legitimate messages from that source.

Similar things could be happening here, but as far as I can tell, have not been successful.

For example, if people are reporting this email, that may actually lead to the Atlanta Police Foundation's website

being shut down or blocked by anti-malware filters.

So sometimes it's not really a technical exploit, but what I usually call a layer 8 problem,

which means it's really sort of a people social engineering style

exploit rather than some kind of matter.

And I think it was a couple of months ago that Zoom announced its intent to develop an

...