Got Scammed with a Family Spotify Deal in Classifieds

I used to come across the Spotify/ Youtube Family Deals in the classified section and thought of giving one of them a try a week ago. Sent an advertiser a message. That Ozbargain member of 8 years sounded nice and asked for $36 over paypal as Family & Friends.

Sent him the payment without a second thought and I was added to a Spotify Family in hours. I was able to play some new songs from my EchoPlus that were not available in Prime Music. Very happy for few days.

Today, I received a mail from Spotify saying my membership was revoked because they could not verify my address. I sent a message to the ozbargainer asking what happened.

The reply was surprising. He said his ozbargain account was hacked and someone else was scamming people through his account. He claims he has contacted ozbargain about this but not received any response.

It was just $36 bucks and I was aware that I was trying to get my feet wet in a dark stream. Lesson learned.

Sharing this as a warning for others who can be extra careful when using the classified section. It is not all paradise here.

Screenshot if you like it.

Comments

  • +15

    scary. maybe ozb should do 2 points secure login things

  • If it came from your credit card through Paypal you may be able to ask your bank to do a chargeback?

    • My bad luck: I must have elected my bank account when pay-pal asked for a choice. Was very careless. I deserve it..

      • -1

        No harm contacting Paypal and asking them if they can do anything or at least flag that account as one being used to scam

        • I have already reported it.

  • LOL I saw the forum and people put it as scam yet you still did it? oof.. maybe you didn't see the messages , they likely never did it right or cancelled it and got a refund to keep your money.

    • Oh Really? There were so many of these ads and they get filled quickly. I never saw one claiming it scam. Yeah. Anyway, I am happy it was not $360. And, I am happy with my Youtube premium and Amazon Prime. No more dodgy stuff.

  • +1

    I'm surprised the account was even recovered, hackers usually change the password and access to recovery methods immediately.

    Ask the mods for help - send them that screenshot and they can look up the IP address of the logins corresponding to the message timestamps which should be different from the IP address of previous logins. Then you can make another post asking for bikies.

  • +2

    I'd be asking for proof his account got hacked - when did he last login, proof of email to OB, etc. Someone has to provide more details if this happens and there is an innocent party, not just an "oh woops". The language I read in your messages makes me suspicious that the OB account holder is pretending to be hacked but instigating the fraud. Suspicion in this regard is a good thing to protect other users. Is the OB account still active/ @scotty?

    • The account is indeed hacked, original account holder is aware of it.

      • The Culprit is based in Ukraine
      • Has compromised at least 2 accounts. They were able to do so because these two users had emails that had been pwned (logins had been leaked due to data breach on other sites. Ozbargain remains secure but if your password is not unique, they can login to your account)
      • The hacker did not change passswords, likely because they wanted to avoid alerting the original user of a password change. To initiate a password change you need to confirm it using email. (However, if the user's email passwords were not unique and have been compromised, they would be able to change it and your account would be irrecoverable Correction: email address changes require a confirmation, while Password changes do not)
      • The hacker used a VPN to mask his IP address in order to gain access to Classifieds. Normally overseas users do not have access to classifieds forum.

      For anyone who is affected by this scam, or has come into contact with the scammer please use the TWAM forum to pass information to us.

      Unfortunately, if you have already sent money using Paypal (especially as Friends or Family), I'm afraid we're not going to be of much help recovering those funds.

      • +1

        To initiate a password change you need to confirm it using email.

        Is there something I need to do in order to enable this extra verification? As a result of this thread, I've just changed my password, and was not prompted to verify the change (Nor did I get an email notification I had changed it)

    • We are made aware of the issue since a few days ago, where a few accounts appear to be "hacked" and were used to sell Netflix & Spotify family subscriptions. From the screenshot above, all affected accounts were asking other OzBargainers to send money to that @gmail.com PayPal account.

      Looks like the hacker got in via normal username/password authentication. Looks like the hacked accounts all have pattern of <username> and <username>@gmail.com as their registered email address. They might have accounts elsewhere where password database were leaked, and the hackers basically tried those <username> / <password> combinations to gain access to accounts on OzBargain, via an Australian VPN (as overseas IP won't let them do private messages).

      2FA would probably resolve this. However, 2FA will only be optional, and accounts that got hacked were probably using the same password for other sites — they probably aren't the most security conscious either, and getting all those people on 2FA would be a challenge. Anyway, moocher has been working on 2FA and it should be available in first half of this year.

      Yeah. Never use the same password on multiple websites.

      • +8

        Thanks scotty and scrimshaw for the info

      • What if you use google or facebook to sign in? Can you still be hacked that way?

        • In that case we do not actually keep a password for your account. However we do record your email address. So if the email address associated with your Google / Facebook account is compromised, the hacker could request resetting your OzBargain password and then subsequently compromise your OzBargain account.

          • @scotty: Ah, so I just need to keep my email account secured….cool! It has 2FA so no one's gonna try and if they did I would know…. ☺ And of course promptly change the password again….plus they would need to also hack into my phone to get that code to authenticate themselves too, unfortunately for them that is not possible on a windows phone because all the apps can only be downloaded through the microsoft store - and I don't think you can jailbreak it like you can do with an android or iphone(or can you?), unless an app I have already downloaded and installed was already compromised….to be able to login to and then login to my ozbargain account and mess around.

      • maybe force it use for posters of classifieds ?

  • Wow $36 in Ukraine is a lot of money.

  • +12

    He pretended to be ONE OF US ?
    That's a Low blow

    • +10

      For someone to know about the classifieds and how they work, he probably is one of us. I don't think random people in Ukraine would know about OzBargain.

      • +2

        OMG..noooooo

      • +3

        It was an inside job!

      • +3

        JV? Comes across as a double agent

  • +1

    As with all these things these scammers ruin it for everyone. Hence why I don't participate. Sign up for the free spotify subscription. You may eventually get a 3 month trial for 99c or free 3mths trial. Then just re apply for premium when they offer the 99c deals. Using new gmail address and card. I cancel premium service prior to the full payment service. OZBargaining at its finest.

  • +12

    This post is a reminder that people should be sure to periodically check Have I been Pwned. Simply enter your email address and it'll search known leaked databases to see if you're included in a breach.

    • interesting. thanks

      • Agreed.
        Currently on a dash lane trial, which offers dark web monitoring for email/account breaches.

  • +2

    This is the response from Paypal. They are not going to limit that account ([email protected]) unless a number of people report on that account.

    Thank you for contacting PayPal.

    I'm also affected to know that you were scammed by the merchant. Do not worry, PayPal periodically reviews seller account. If PayPal sees a significant number of disputes or complaints on the account that is the time that we take >necessary actions to limit the account.

    I see here from the transaction id that you sent a Personal payment for $36.00 AUD to Geoffrey Katu on Dec 25, 2018. Kindly contact your bank to check on options f getting your funds back. If there are other transactions with the >same seller where eBay coupons or Gift card are used, you may contact Bay to check on options on how to get your credits back. To make sure that this will not happen again, please make sure to send the payment as payment for >goods and service for you to be covered by our Purchase Protection Program.

    At the same time, you can still file a report online through www.scamwatch.gov.au. ScamWatch was established to serve as a means to receive Internet related criminal complaints and is managed by the Australian Competition and >Consumer Commission.

    ScamWatch accepts online Internet crime complaints from either the actual victim or from a third party to the complainant. They will process your complaint if they receive accurate and complete information from you. When filing a >complaint, provide the following information:

    Your name
    Your mailing address
    Your telephone number
    The name, address, telephone number, and Web address, if available, of the individual or organization you believe defrauded you.
    Specific details on how, why, and when you believe you were defrauded.
    Any other relevant information you believe is necessary to support your complaint.
    To learn more about PayPal's Buyer Protection Policy, go to www.paypal.com and click Security at the bottom of the page.

    We value you as part of the PayPal family and it is very important for me to address your concern. PayPal is doing our best effort to make sure all concerns are handled properly to your satisfaction. Thank you for choosing PayPal.

    • That was the email as well, I've reported the transaction and email to PayPal. Let me know how to get on with the chargeback, I'll be getting straight on go nab and see if they will charge back for me.

      • Did you receive your money back?

        • I did yes nab recovered the funds somehow

    • damn, I just realised I've been scammed by the person with that same email account. My spotify family spot stopped working after about 4 months…Is there anything I can do?

  • +2

    I don't understand why people keep sending money using Family and Friends to save like 2%.

    • +3

      It is normally requested that way when the seller is skeptical of buyer, that the buyer could pullback from the deal. It is seller's demand, not about saving 2 dollars. I would not have done this in Gumtree. It is the trust in fellow ozbargainers.

      • -7

        don't trust ozbargainers, they're all either scammers or bots

  • +1

    A small doubt though: If the Paypal account is in Ukrain, I should have been charged an extra for Foreign payment right? And I don't assume Ozbargain classified section is this famous in Ukaraine. So, the account could be registered in Australia to an Immigrant from Ukraine who has his techie friends back in his motherland helping him out.

    • The hacker is still active. We have received a report of another hacked account asking for Paypal payments to that gmail account.

      I am repeating myself, but for anyone who is private messaging with the Spotify / Netflix scammer please send a TWAM with all the information so we can take timely action.

      • Can't you track him down and serve justice on his ass?

      • I guess not since you didn't reply back…

  • +3

    this is really shit because i know meant of us transact with eachother on here with a certain level of comfort (even if we still take our own cautionary steps)

    The hackers initial messages just seem like a standard PM offer. The writing style is very much like a typical message someone on here would send. :(

    • It sure is shit.

      I prefer to use PP F&F so I don't need to hand out bank details or join yet another payment system.

      Have even suggested using this when selling to and buying off others here.
      Some transactions have been in the low hundreds, not a lot in the larger scheme of things but certainly wouldn't want to lose it.

      Sure hope person who did this gets caught and properly incentivised to never try again.

  • Use lastpass or similar apps to create unique passwords per site.

  • +5

    Yes, Classifieds section is not 100% safe.

    I was scammed over $1k last year when buying gift cards (first purchase was all good, second purchase was when I got bitten), another member here was also scammed from buying AFL tickets.

    Scotty helped as much as he could, local police said it was civil case and could not help, banks couldn’t do anything.

    We somehow found the person’s real name, I contacted acorn and filed a case. A few weeks later, police from VIC called saying this person has scammed over 40 people online and after months of waiting and a lot of court adjournments, and over 1 year after, the court finally happened and the outcomes were: the scammer received a 18 month community corrections order, had to complete 200 hours unpaid community, undergo and complete treat re gambling and to pay victim restitution.

    As to when and if the money will be returned, no one knows.

    Ps the member had a 4-5 year old, definitely not hacked & seemed to be very knowledgable. So stay safe guys.

    Ps i dealt with a lot of other members and have always had great experiences.

  • My wife just told me her Spotify premium has stopped working - we bought a spot from 'nangz'. :(

    • Looks like I bought from a hacked account. The address provided was up for sale and advertised on realestate.com.au, as was the address you were provided, 12 Starling St Lillyfield.

      I'm sure they're not Ukranian - Ukraine cannot receive Paypal payments. Also, the narrative is rather Australian - the 'yep' and 'no worries' is pretty unique.

  • +1

    Hi all, sorry to hear about this. I purchased a spot on Netflix from garylo59 on here. The account has stopped working as per this thread. $50… Not sure if there's anything we can do but I'm happy to whatever we can to stop these lowlives.

    • Sorry to hear mate. I was also the same boat with Nangz. Bought from him, worked for 1.5 months and than no premium anymore. Been contacting him to no reply.

    • -1

      They buy the accounts from redditbay for peanuts. The sellers on redditbay use stolen credit card details. Once detected, the accounts get cancelled by Netflix.

      Have a look on redditbay, you can get 1 year family Netflix account for $30 and spotify for the same or cheaper

  • OMG … that is not nice at all. I thought about getting a Spotify Family sub here on Ozbargain … but not sure now.

  • Came here to save money on family account, left here vowing to never use classifieds!

  • +3

    Hi guys, just an update. I managed to get the nab to process a charge back and lo and behold, the $50 has been refunded to me. If you aren't getting anywhere with PayPal, I suggest being very pushy with your bank if that's possible until eventually they give in.

    • Oh damn, just realised that I've been scammed as well. How did you process a charge back? What did you need to provide?

      • Told them what happened basically and linked this thread.

  • I think I am a new victim….

Login or Join to leave a comment