Spammer! RiZK and VideoSlots selling my personal data .

crikeym8

Multiple forum accounts - flaming and being a PITA
PABnoaccred
Joined
Apr 28, 2014
Location
Moorabbin
#########

This week ive been inundated with multiple spam emails , redirecting to casinos like, cherry casino, with the URL DeepGreenSky.com. Upon raising my concerns with videoslots online chat, I was given this cock and bull story " We don't sell personal data to third party's"

Well when I informed the bloke that I have a catch all email address, meaning, over the years, I in every instance, create a unique email address depending on what site I sign up on. This one being [email protected]. The reason I do this is simple, to catch out institutions and web sites that don't take data security and privacy seriously. Fact is, all spam ive been receiving this week has been directed to the [email protected] email.

So just to make sure I did a username recovery and a password reset to test if they still had it in their system, Sure enough, reset emails came through. As im Aussie, my account wasn't active. But when I started chewing his ear off , live chat rep that is , he informed me, it wasn't possible. That email wasn't in their system. Nor was my name... I guess the password reset and user name recovery to my [email protected] email was just my imagination. Identity theft starts with institutions like this, trying to make a quick buck. (See bottom pic)

So listen Videoslots, you have been caught out red handed selling data , and breaching god knows how many privacy laws. But what I don't understand, is why take such a risk considering the demographic your spamming (An Aussie) Cant join your affiliated sites anyway.
Good thing about catch all, I can and have blocked it, redirecting all their spam back to videoslots.

Annotation.png
 

NeverLucky

inactive
Joined
Sep 2, 2017
Location
Germany
I can't imagine Videoslots would sell your data, they are rated very highly here and are among the favorite Casinos for a lot of people here.
Have you contacted @Team.Videoslots on here? Maybe they can give you some more Information on this than the Support Chat could.
 

NeverLucky

inactive
Joined
Sep 2, 2017
Location
Germany
Also, forwarding your Mail to @Katy-Cherry is probably a good Idea if you are getting Spam for Cherry Casino (the one accredited here?) -- maybe they can have a look into it and contact the Affiliate in Question to regards of how he got your EMail Address.
 

nikantw

Banned User
Joined
Jan 28, 2011
Location
EU
Doesn't make any sense. I would bet 100k that VS has nothing to do with any spam that the OP may have received.
People should know that redirecting from unsafe links or using public wifi is only a few of the ways someone can get your username and password.
 

NeverLucky

inactive
Joined
Sep 2, 2017
Location
Germany
Doesn't make any sense. I would bet 100k that VS has nothing to do with any spam that the OP may have received.
People should know that redirecting from unsafe links or using public wifi is only a few of the ways someone can get your username and password.
It really doesnt. In cases like these i always think about a risk/reward scenario..
The risk? Losing all credibility if it should come back on you, possibly getting sued, losing licenses (not sure about this one but probably..) etc.
The rewards? A few bucks to sell someones data to a third party who does then spam then.

Honestly, it would absolutely not be worth it for them in any scenario.
 

colinsunderland

Experienced Member
webmeister
MM
Joined
Jan 28, 2016
Location
uk
If he's using a unique email address then its very likely to have come from videoslots.
There are numerous cases of dodgy casino staff and affiliate managers selling user information, I have been offered data on more than one occasion. I have seen my information from an affiliate who spammed me, that was a screenshot of a casino backend, a casino who was at the time accredited here, yet they insisted it hadn't came from them.
I very much doubt Videoslots have sold the info, but I would expect it to be likely it came from someone inside the company.

Regarding Rizk, my concerns with GIG have been discussed on here, but despite them saying otherwise I can prove they used to use a third company mailing list that was compromised, and GIG didn't bother telling any customers about. That is most likely how they got that email, unless they are still giving customer information out to other customers like they did to me!
 

crikeym8

Multiple forum accounts - flaming and being a PITA
PABnoaccred
Joined
Apr 28, 2014
Location
Moorabbin
UPDATE.... Receive further spam, this time from Rizk casino email from old Rizk account now being used to spam.

Lafiesta Casino

Luckland casino. These emails are all assosiated with casinos I no longer play at. Well if I get further spam from another casino I'm no longer attached to Then its More than coincidence.
 
Last edited by a moderator:

Reelsoffun

When it comes to gambling, timing is everything.
Joined
Feb 24, 2018
Location
UK

crikeym8

Multiple forum accounts - flaming and being a PITA
PABnoaccred
Joined
Apr 28, 2014
Location
Moorabbin
Guts casino .now sending spam from rosebank casino. Random you reckon? I doubt that. If. It was random I'd be getting spam from the 50 none casino related emails I have.
 

colinsunderland

Experienced Member
webmeister
MM
Joined
Jan 28, 2016
Location
uk
Agreed.

Its more likely a computer just churning out emails to random addresses based on yours rather than videoslots selling your email for 1p....

[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]


you get the drift....

I don't think its that, they are usually specific, I regularly get the same spam to [email protected], [email protected] and [email protected]
The email addresses have been harvested from somewhere, in my case the compromised email list provider, if it was to random addresses you would get them to addresses such as [email protected] [email protected] [email protected] [email protected] etc etc as they would use dictionary generators or name lists to spam the domain with
 

NeverLucky

inactive
Joined
Sep 2, 2017
Location
Germany
Guts casino .now sending spam from rosebank casino. Random you reckon? I doubt that. If. It was random I'd be getting spam from the 50 none casino related emails I have.
Any chance you clicked a link or loaded graphics from one of the mails? Might be why they are hitting you with the full program now..
 

crikeym8

Multiple forum accounts - flaming and being a PITA
PABnoaccred
Joined
Apr 28, 2014
Location
Moorabbin
I don't think its that, they are usually specific, I regularly get the same spam to [email protected], [email protected] and [email protected]
The email addresses have been harvested from somewhere, in my case the compromised email list provider, if it was to random addresses you would get them to addresses such as [email protected] [email protected] [email protected] [email protected] etc etc as they would use dictionary generators or name lists to spam the domain with

Agreed. I'm not receiving spam from the many simple emails I have. [email protected] [email protected] [email protected]
 

jasonuk

Experienced Member
Joined
May 10, 2014
Location
UK
Guts casino .now sending spam from rosebank casino. Random you reckon? I doubt that. If. It was random I'd be getting spam from the 50 none casino related emails I have.

I'm still waiting for GUTS to inform me that they've leaked my email address (twice!) - I logged my first guts-only alias as compromised in April 2015, and a second one as compromised in May 2018. In the six years I've been using this method, I've identified a dozen incidents of email addresses being leaked - so for GUTS to be two of those is pretty poor.

I don't think its that, they are usually specific, I regularly get the same spam to <snipped>
The email addresses have been harvested from somewhere, in my case the compromised email list provider, if it was to random addresses you would get them to addresses such as [email protected] [email protected] [email protected] [email protected] etc etc as they would use dictionary generators or name lists to spam the domain with

I do the same, but add random characters to the email address to reduce the likelihood of a dictionary attack. If I got an email from [email protected] then you could argue dictionary attack (although as you say, you'd expect to get lots of emails with random prefixes), if I get one from [email protected] then that argument falls flat and the onus is on the operator to demonstrate otherwise if there are no indications of compromise on my end.

The mail processor is often the weak link in the chain - either with the addresses being scraped and sold on, or a malicious actor doing an "extra run" with unrelated spam.
 

colinsunderland

Experienced Member
webmeister
MM
Joined
Jan 28, 2016
Location
uk
I'm still waiting for GUTS to inform me that they've leaked my email address (twice!) - I logged my first guts-only alias as compromised in April 2015, and a second one as compromised in May 2018. In the six years I've been using this method, I've identified a dozen incidents of email addresses being leaked - so for GUTS to be two of those is pretty poor.

You should post about it in their thread, see what they say like I did. Do you know which breach leaked the one in May, I suspected there was another around that time but couldn't prove it so didn't mention it, concentrating on the earlier one that they flatly denied until I showed them evidence ;)
They will never get a penny from me (anyone from GIG) after lying about customer details being leaked, giving me another customers full details, then threatening me as to what would happen if I published those details (nothing is the correct answer)
 

Mr Wild

Senior Member
Joined
Mar 10, 2015
Location
Malta
Its very easy to find out mail-addresses you can just run a script on a site's registration form and test all combinations. You usual get, "that email already exist" or similar message that confirms that its a correct email. More and more site however gets protections for this, a protection would be that if you for example hit 3 mail addresses that already exist, you get blocked from the registration page. Its very easy to test if a site has this protection or not by simply input your email address in registration form a couple of times and see what will happen.

This is how most spam lists are built all over the internet.
 
Top