Archive for the ‘Phishing scams’ Category

Same-old same-old scam phishing for your PayPal account info, but with new graphics. As always, hover your mouse over the link to see the REAL destination URL. (Hard to believe that people don’t even do this most basic level of checking before clicking and losing their money.)

I just noticed this scam this morning, although I suspect it’s not exactly a new one.

It’s a basic phishing scam that seeks to steal your Twitter ID and related information.

As usual, the superficial giveaways are…

• Poor English — really simple mistakes in grammar, syntax and spelling.
• Easily-checked fake links — just hover your mouse over the fake Twitter link to see the REAL destination URL.
• Meaningless links — not your real Twitter user name.

Please pass this on to your friends, colleagues, family, etc who use Twitter. Share it online using the button below.

This is a variation of the usual PayPal account phishing scam. A couple of glaring spelling errors helps, along with the fact that there’s NO email address for the recipient in the headers.

Can you see a pattern emerging in all these scams? Think they might be from the same gang of online criminals?

The errors in English used are more subtle in this one, but they’re there. (We don’t point them out: there’s no benefit in teaching better English to criminals trying to steal your money, your identity or your computer.)

Here’s a phishing email I haven’t seen before. Definitely a scam (I bank with Westpac and this isn’t from them.)

As always with scams, there are basic errors in the spelling, grammar, punctuation or syntax.

Here’s a variation on the “Please view my resume” and “Amazon shipping label” scam I just received (again): it’s a message, claiming to be from my webmail provider (absolute proof that it’s a scam in my case, because I’m the webmail provider!) requiring me to re-validate my — unspecified — account by opening the attachment.

Yeah… right.

In this case, it’s a straight phishing scam aimed at stealing your identity and your webmail account, wherever you have that webmail account (your workplace, Hotmail, Yahoo, etc).

The usual stuff still applies: poor English, literal spelling and really obvious grammatical mistakes, etc.

Here’s an example of the spam message:

Read the rest of this entry »

Bot nets are the Holy Grail of spammers, phishing gangs and other malicious individuals and criminal organizations. These are global networks of “slave” computers — whose owners have no idea that their machines are being used to send millions of spam, phishing, adware, spyware and malware messages every day. They may wonder why their computers run slowly, and that available processing resources seem to be strangely low.

How on earth do people’s computers end up being hooked into these worldwide bot networks?

Easy.

They open spam messages with attachments with no idea what they contain.

They download free games, music, videos, screensavers, etc, etc, etc with adware, spyware and other malware (including keyloggers, trojans, viruses and worms) attached or embedded. (Keyloggers record your keystrokes when entering usernames and passwords for everything from your Facebook account to your bank account, then send them to the vermin who sent them to you.)

A current crop is the “Please view my resume (or CV)” scam. Take a look at these messages we’ve received over recent weeks. They all claim to be from different people, but the messages are all the same (including misspelling “quite interested”), they contain attachments all around the same size and you open them at your peril.

Read the rest of this entry »