Phishing

Phishers Bank on Tax Season

Published: February 8, 2012 Reading time: 2 min

Sunbelt: With the U.S. currently in tax season, online criminals have, once again, sought to take advantage of this. Robert Stetson, one of Sunbelt’s malware researchers, spotted a phishing email posing as Intuit Inc., a company that “develops financial and tax preparation software”. They developed Quicken and TurboTax. Below is a screenshot of the said email: Email details are as follows: Subject: Please verify your tax information ASAP. Message body: Good afternoon, ...

Continue Reading

Facebook Spam: Police officer does good deed before he dies moments later

Published: February 1, 2012 Reading time: 1 min

Have you seen this in your or your friends wall? or maybe in a page you “Like”? That’s another spam link spreading over Facebook, as I already showed you many more in older posts. Usually these links end up either in a phishing attack that theft your private information or infecting your computer. If your friend or even a stranger is posting these, don’t click on that and also report the post, here is how to do: ...

Continue Reading

Megaupload, up again? no

Published: January 24, 2012 Reading time: 2 min

GFI: You’re probably aware that Megaupload has wandered into what can only be described as a bit of a pickle, assuming said pickle is roughly the size of a Vogon Constructor Fleet. Given that lots of people probably want to take a peek at the FBI Anti-Warning currently pasted across the front of Megaupload.com (or maybe even just see if the site is back online), it’s a fair bet that Ye Olde Typo Fairy will be called into action and some of them will end up going to Megaupload(dot)cm. ...

Continue Reading

Hotmail phishing: Don't send us the wrong password or we'll suspend your account!

Published: January 14, 2012 Reading time: 2 min

SophosLabs: Have you been told to verify your Hotmail account? Did you receive a message saying that Hotmail’s email servers were congested, and so they were removing all unused accounts? If so, I hope you responded to the email with a roll of the eyes and a quick stab of the delete button. Because if you didn’t, you might have been at risk of having your login credentials stolen. ...

Continue Reading

Facebook Scam: Girl killed herself on Halloween

Published: November 3, 2011 Reading time: 2 min

SophosLabs: Scammers have put a new spin on an old Facebook scam, claiming that a girl killed herself on Halloween after her father posted a message on her wall. Facebook users are sharing messages with their friends, claiming to link to the salacious content. Girl-Killed-Herself-on-Halloween-After-Dad-Posted-This-on-Her-Wall [LINK] This is unbelievable.. shocking.. The messages are currently spreading very quickly on Facebook, as – at the moment at least – Facebook’s built-in security systems are not blocking them. ...

Continue Reading

Facebook Scam: In memory of Steve, a company is giving out 50 ipads tonight

Published: October 6, 2011 Reading time: 1 min

“In memory of Steve, a company is giving out 50 ipads tonight…” is another Facebook scam you want to avoid. More similar scam links is expected, so take care what you click on, These kind of free offers will end up in phishing or malware attacks. Don’t forget you should join the Omid’s Blog Facebook page, where I not only debunk hoaxes and chain letters or scams, but I also keep you up-to-date on the latest rogue applications, scams and malware attacks threatening Facebook users. Credit to Norman Security.

Continue Reading

iPhone 5 giveaways on Facebook – a scam or what?

Published: September 1, 2011 Reading time: 2 min

SophosLabs: Even if it hasn’t been officially announced yet, and certainly isn’t available to the general public (unless an Apple employee loses a test model in a bar), there are plenty of scammers out there trying to trick you into believing you can get a free iPhone 5. Here’s just a sample of the pages on Facebook claiming to be an iPhone 5 giveaway. Typically they are trying to trick you into clicking on links, driving traffic to online surveys which earns them revenue. ...

Continue Reading

German Federal Office for Information Security warns of hacked online shops

Published: August 16, 2011 Reading time: 2 min

H-Online: The German Federal Office for Information Security (BSI) is warning of online shops which infect users with malicious software by exploiting security vulnerabilities in the user’s browser, operating system or applications. The affected shops have themselves been hacked by attackers exploiting security vulnerabilities in outdated versions of open source online shop software osCommerce. As reported by The H two weeks ago, osCommerce shops are currently being hacked en masse. The vulnerabilities used for the hack were fixed in November last year with the release of osCommerce 2.3, but many companies running online shops have yet to update to a secure version. ...

Continue Reading

Twitter finally released a "Stalkers" app? No, it's a phishing scam

Published: August 14, 2011 Reading time: 2 min

Sophos Labs: Twitter users are being hit today by messages claiming to link to a new app from Twitter which will track your stalkers. However, the messages are really designed to steal your Twitter usernames and passwords. Here’s a typical message that users are seeing: Twitter finally released an app that tracks your “Stalkers” get it here [LINK] If you click on the link you are taken to what appears to be a legitimate Twitter page, asking you to confirm your username and password before the “Stalkers” app can access your account. ...

Continue Reading

BBC News/Dad walks in on daughter Facebook scams

Published: April 12, 2011 Reading time: 2 min

SophosLabs: Criminals and scammers on Facebook aren’t resting on their laurels… in fact, they are branching out and using multiple techniques all rolled into one scam. Tonight’s blockbuster spam is taking on several guises. One version is a likejacking attack that spams your wall with the message “Dad walks in on daughter… EMBARRASING!!!” and “This really has to be an awkward moment.” They seem to be quickly rotating through a long list of Google (goo.gl) short URLs to evade detection. ...

Continue Reading