The problem is that, for the most part, there's no way to retaliate.
So I was thinking of doing an easy reverse fishing attack.
Basically you reply with:
"Sure, here's my banking info https://chasebankint.com/1xv94"
this URL SEEMS like a fake banking site but when you load it download a shock image, audio, locally, and then display these to the user.
A shock image is an image that's VERY disgusting and can basically borderline cause brain damage. Not literally of course but you can NOT unsee these things. They're VERY VERY NSFL....
The audio could be various things like audio from pornography or a message scolding them, etc.
There are also various ways to lock up the browser to KEEP them on the site.
The upside here is that this could be used against scammers.
But it would also be weaponizing an attack and commoditizing it so that it can be used against regular/innocent people.
I was thinking that one way to avoid this would be to require the user to make a payment, validate their information against a card, and they can later receive a refund if they like (maybe keeping a portion for charity or to fight online scammers).
Thoughts?
I'm not convinced that locking a browser to keep it on a site is feasible, so maybe my skepticism will be of some use if it motivates you to prove me wrong. I'm confused by your last paragraph, but email services to which senders pay a refundable deposit are not a new idea.
If you want to accomplish something, try to decrease their profitability. For example, write a bot that responds to scam emails, tries to get them off script, and spend a lot of their time.
If 90% of their time is spent on your bots, that's profits down by 90%. If they have a profit margin of 50%, then they will be making a loss with your actions.
The word document contained various photos of shit in the toilet with the occasional goatse thrown in.
The scammer would get so angry and always send me a response.
It always made me laugh.