419-ers have come a long way from sending their proposals by snail mail or fax to using emails and the Web. Our investigation shows that some of the culprits-at least the kingpins-are well versed with technology, creating websites and tele-banking infrastructure.

419-ers have come a long way from sending their proposals by snail mail or fax to using emails and the Web. Our investigation shows that some of the culprits-at least the kingpins-are well versed with technology, creating websites and tele-banking infrastructure. Most of the gang's front organizations have actually been created only in the virtual world-the main objective being to create websites similar to that of real banks and convince victims that the company actually exists. There's another objective too. All victims are asked to register themselves online through the websites of one of these companies. As soon as one registers on the site, and personal details are updated in a database file, with "victims" being sent mails from the so-called bank informing them about their account as well as the pin number.

However, a closer look into some of these sites made us realize that most of the pages were static Web pages that get displayed at the click of the link. Also, the source code of the html file used for these sites did not have any encryption or security features. Most of the servers used by the scamsters were found to be PHP servers, and a users' account number and password was being used to redirected them to an html page that merely displayed the funds balance record from the same database. The scamsters have also set up 'tele-banking' by connecting their telephone lines to the computer, with CTI (computer-telephony interface) and IVR software. The computer is updated with the users' record on a regular basis. Again, victims in most of the recent cases have been asked to use this facility.

They were also found to be using e-fax facilities through service providers in the US and Europe. These numbers are being used as contact numbers for the companies floated by them to deal with the public at large. The electronic fax facility helps the perpetrators receive faxes and voicemail in their e-mail inbox, and also store them on their computers. A fax sent to any of these numbers is automatically processesed by the service provider and is sent to the subscriber as an as an image file via e-mail. Similarly, the scamsters also use it to 'e-mail' a fax to their victims.