‘Dating service’ myZamana will infiltrate your Gmail and spam your friends

myZamana

Update: myZamana President and CEO Ashish Kundra has responded to this article. It has been updated with his comments and clarifications.

Here at Digital Trends, we aim to make sure none of you are getting ripped off, scammed, spammed, or taken advantage of by the vast number of cyber-punks who are out there to screw with your life. So when we heard from one reader about a social networking email scam that’s making its way through the Gmail ecosystem, we had to take a look.

A reader writes:

Hello,

I’m a marketing professional who recently naively accepted an email from myZamana that I thought was a legitimate invitation from a work colleague but turned out to be a scam similar to the one you reported on with SchoolFeed. I’ve been doing some homework on myZamana and have found out who the primary investor is etc. Interestingly, even though I never got a peep of a response from myZamana’s ‘customer service’ contact when they started spamming everyone in my gmail contacts, once I contacted this founder, I immediately heard back from them. I wanted to see if any of your other readers have complained about myZamana because what they are doing is fraudulent and I’m hoping to put a stop to them!

Thanks,

Heidi

You’re not alone, Heidi. A number of Gmail users have reported the same problem with myZamana over the past few months. Let’s take a closer look.

The culprit

MyZamana bills itself is described as “an online Indian dating service with modern ideas and methodologies” by Crunchbase. Founded in 2008, the company is based in Boston, MA, and is run by its president and CEO Ashish Kundra, according to its business profile on Bloomberg Businessweek. A search on WhoIs turns up little — the site has a private registration through 1&1, a Web hosting company. As of this writing, the site claims to have 6,556,957 users.

A quick perusal through the site, however, suggests that very few (read: any) people have ever used the social network on purpose, let alone for “dating.” Once you create a profile, you are greeted by a lame “Hot or Not” rip-off functionality, which immediately screams “SPAM!”

If you go to click on a “user’s” photos, the site automatically prompts you to upload photos of yourself, or — even better! — connect with the site via Facebook, and your pictures will simply be imported into myZamana. Please, don’t ever do this.

if you get an email from myzamana trash it pay

Now, if you try to actually connect with any of the people in those pictures, a pop-up window then informs you that, actually, you have to cough up between $10 and $35 for access to the website. All it needs is your credit card information and BAM, sweet lovin’ will be comin’ in your way. (Not.)

If you’re still not convinced about the risks involved with myZamana, I suggest you check out its privacy policy, which is full of little gems like this:

“Under certain circumstances, third parties may unlawfully intercept or access transmissions or private communications, or members may abuse or misuse your information that they collect from our Websites. Accordingly, although we use industry standard practices to protect your privacy, we do not promise, and you should not expect, that your personally identifiable information or private communications will always remain private.”

Yikes… Update: In an email, myZamana President and CEO Ashish Kundra expressed to me that highlighting this single section of the privacy policy is “a bit unfair.” And I agree — the very top of the myZamana privacy policy states that, “With regard to your information, you own all of it and we will not share or sell it to any third-party.”

“Let me be clear — we do not sell or rent any information,” wrote Kundra. “We keep our users’ private information private, bottom line.” This is good policy, and I was wrong to leave it out. See more of Kundra’s response below.

The problem

The problem with myZamana is not the site itself as much as it is the company’s email-hijacking practices, mentioned by Heidi. Here’s what happens: You receive an email that appears to be from someone you know — that’s the name listed as the sender. Inside, a message reads, “[Your friend] has sent you a message.” Below that is a green, hyperlinked button that says “Read Message.” You are told to fill out a user profile first, then you’ll be able to see the message.

This is a classic phishing scam tactic, and one of which many users these days are aware. However, because the myZamana email appears to have been from someone you know, it at least seems legit. It’s not.

What happens next is the worst part of the whole thing, and is the reason Heidi emailed us. By clicking the link and signing up for the site, you have effectively given myZamana access to your Gmail contacts list. From there, the company apparently spams your entire contact list with emails that appear to have come from you. And if anyone you’ve emailed with does the same, the problem starts all over again, for eternity.

gmail-authorization

The solution

If this happens to you, this is what you need to do: Change your Gmail password. (See instructions for doing so here.) We haven’t seen any evidence that myZamana accesses your Gmail login credentials. But given then sketchy nature of the site, prudence is highly recommended.

The most likely problem here is that by signing up for myZamana, you added the site to your list of approved sites in Gmail, which would give it access to your contact list. To revoke its access, sign in to Gmail, then click your profile picture in the top-right corner of the window. Click Account, then Security (left column), then Edit button “Authorized Applications and Sites.” Find myZamana, click “revoke access,” and you should be rid of this pesky site for good.

We have contacted myZamana about this story, but have not yet heard back. We will update this space with their response if we do.

Update: myZamana responds

Soon after publication of this article, myZamana President and CEO Ashish Kundra emailed me with a few points that he believes were initially misrepresented here. “First,” he wrote, “myZamana is not a dating service, it’s a social network (the Crunchbase description was not written by us).” He adds that myZamana “initially launched as a traditional dating site,” but the company has “since evolved the site a great deal.” Given myZamana’s look, features, and functionality, I fail to see how it is anything other than a dating site. But if Kundra wants to describe it as a “social network,” so be it.

Further, Kundra says that myZamana has “a lot of active users that really enjoy using the site,” but that this “may not be immediately evident to users outside of Asia,” where, he says, the majority of active myZamana users reside.

Finally, he says that myZamana uses a “freemium” model, and that it is possible to use the site without paying to do so. He says that I “could have messaged those users for free without paying! ([I] didn’t hit the daily limit for free accounts).” In fact, I wasn’t able to message a single person, though I admit that it’s possible I overlooked some functionality.

As for the issue of myZamana accessing users’ Gmail contact lists, and sending out emails using those users’ names — which, as I explained above, is the only real problem with myZamana — Kundra had no response. I have asked him for clarification on this, and will update with any response I receive.

Social Media

Facebook, Instagram, and WhatsApp went down worldwide for 2 hours this morning

Chaos erupted on the internet this morning, as Facebook, Instagram, and Whatsapp all went down from 6:30 a.m. to approximately 9 a.m. Thousands of users were unable to access the sites or send or receive Whatsapp messages.
Cars

GPS units aren't dead! Our favorite models still do things your phone can't

Love hitting the open road but hate having to rely solely on your phone for getting around? Thankfully, the best in-car GPS systems will allow you to navigate and capitalize on a range of features sans your cellular network. Here are our…
Mobile

Common Samsung Galaxy S10, S10 Plus, and S10e problems and how to fix them

Samsung's new Galaxy S10 range is gorgeous and extremely powerful. But they're not perfect, and you may discover some issues with your new phone. Here are some of the most common Galaxy S10 problems and how to fix them.
Home Theater

FiOS problems: The potholes in Verizon's fiber internet and how to fix them

Verizon FiOS offers no just fiber internet, but TV and home phone service as well. See what kind of problems, issues, and trouble other Verizon FiOS users have reported before you decide to sign up for the service.
Home Theater

Banish the buffer screen with these tips for silky smooth streaming video

If you’ve been having troubles with streaming Internet videos from Netflix and other services in HD, the problem may be your network. Here’s how to make sure your streaming video experience goes smoothly.
Social Media

How to download Instagram Stories on iOS, Android, and desktop

Curious about how to save someone's Instagram Story to your phone? Lucky for you, it can be done -- but it does take a few extra steps. Here's what you need to know to save Instagram Stories on both iOS and Android.
Mobile

Skype screen sharing for mobile will let you share your swipes on dating apps

Skype is prepping the launch of screen sharing for mobile so you can share your swipes on dating apps, shop with buddies, or, perhaps, show a PowerPoint presentation to coworkers. It's in beta just now, but anyone can try it.
Social Media

Facebook toys with mixing Stories and News Feed into one swipeable carousel

Facebook's News Feed could look a lot like Stories if a prototype the social media giant is working on rolls out to users. The design change mixes Stories and News Feed posts into a full-screen slideshow that users swipe left to navigate.
Social Media

No more moon showers as Facebook Messenger’s dark mode gets official rollout

Facebook Messenger launched a dark mode last month, but to activate it you had to message the crescent moon to someone. Now it's been rolled out officially, and it can be accessed in a far more sensible way — via settings.
News

Twitter has revealed a launch date for its handy hide replies features

Twitter has revealed a launch date for a feature that lets users hide replies to their tweets. The hope is that it will help the original poster filter out offensive or irrelevant content from conversation threads.
Smart Home

Oh, Zuck, no! Facebook rumored to be creating a voice assistant to rival Alexa

Facebook hasn't been a big player in the smart speaker market, but that may be changing: The social media giant is reportedly working on a digital assistant to compete against Alexa and others.
Social Media

Facebook says it unintentionally uploaded email contacts of 1.5 million users

Facebook says that over the last two years it unintentionally uploaded the email contacts of 1.5 million users as they signed up to the social networking service. The process has ended and the email addresses are being deleted.
Digital Trends Live

Digital Trends Live: Facebook data security, Ubisoft helps Notre Dame, and more

Join DT Live as we discuss Facebook security issues, Ubisoft's plan to help rebuild Notre Dame, and more. We are also joined by Emily Teteut of Snap the Gap, Jennifer Sendrow of New York Public Radio, and DJ and producer Zeke Thomas.
Photography

After controversial video, China bans ‘Leica’ on social media

A video that referenced Tiananmen Square got the name of the camera company Leica banned from the social media platform Weibo. Leica says the video wasn't an officially sanctioned promotion.