Phishing & Online Scams
Bootleg Version of Card Recon Used by Cybercriminals
Bootleg versions of a powerful tool called "Card Recon" from Ground Labs, which searches for payment card data stored in the nooks and crannies of networks, have been appropriated by cybercriminals.
Beware of Tax Scams
Both consumers and business owners are targeted by hackers during tax season. Robert Siciliano, identifies the following as common tax scams and offers tips on how to avoid them:
How to Avoid the Loyphish Phishing Scam
Loyphish; Phish; Phishing; new computer viruses; malware; Prevent Loyphish
Top Online Email and Internet Scams
The Internet makes it easier to accomplish many things - banking, research, travel, and shopping are all at our virtual fingertips. And just as the Internet makes it easier for legitmate pursuits, it also makes it easier for scammers, con artists, and other online miscreants to carry out their virtual crimes - impacting our real life finances,...
The best defense against phishing scams is your own ability to spot them.
4 Tips IT Security Experts Use
Why not apply the same basic principles to your personal security that IT pros apply to the enterprise? Here are 4 easy to follow tips adapted for home use.
Package Tracking Scams
Don't fall victim to the next UPS or FedEx shipping scam. Here's how to spot these bogus email.
What's In Your Inbox?
Scammers prey on fear, urgency, lust, and greed. Chances are, over a fourth of the email you receive tries to exploit these fundamental flaws of human nature.
Greeting Card Scams
Be aware of scams that masquerade as greeting cards. It may just be trap laid to launch trojans onto the computers of the unsuspecting.
Social Engineering Attacks
You might be surprised at how much cybercriminals know or can easily find out about you. Even more disturbing - the clever ways this info is used to attack you or your company.
Wire Transfer Scams
Small businesses in the U.S. are having their hard-earned funds stolen by cybercriminals and transferred overseas, all thanks to the willing gullibility of scam victims engaged in illegal wire transfers.
Twitter Safety: How to Tweet and Twitter Without Spam, Phish, or Scareware
The micro-blogging Twitter phenomenon has captured global fancy and provided an instant platform for expressing your every thought in 140 characters or less. Unfortunately, Twitter has also captured the imagination of spammers, scammers, and criminals. Here are some Twit tricks you'll want to avoid.
Fraudulent Link Scams
Scams, in general, are the new malware delivery method. Social engineering is the norm. Falsifying a link is the hallmark of phishing scams, seeded downloader Trojans, and other web-based malware.
Pump and Dump Stock Scams
Referred to as 'pump and dump' scams, the intent of the email is to get lots of people to take advantage of this unexpected windfall of information and buy the stock. This inflates the price, at which time the scammers sell their shares for a hefty profit and leave you holding the losses.
If you're out of work, an unsolicited job offer or promise of easy money might seem like a dream come true. But beware - con artists specifically prey on folks down on their luck. Following are three of the most common scams targeting the unemployed.
Word of Warcraft Scams
WoW players are frequent targets of scammers intent on stealing World of Warcraft login credentials. And because Blizzard (developers of WoW and several other popular online games) has merged WoW logins with Battlenet credentials, a compromise of your WoW account now means a compromise of all your Battlenet games. Following are common tricks the scammers use.
"Your PC is Infected" Phone Scam
Someone phones you claiming to be from Microsoft, or an antivirus company, or some random tech support facility. They claim their systems have detected that your computer is infected. And of course they are offering to help. So much so, that for just a one-time payment of X, they are willing to offer a full LIFETIME of guaranteed support.
WoW Real ID
For players of World of Warcraft (WoW), it can be frustrating to meet cool players from other realms in dungeon finder but then have no way of contacting them after. Or to discover your friend from school plays WoW, but their level 80s aren't on your server. Blizzard's Real ID program could have solved those issues and provided a safe, in-game way to communicate cross realm. Instead, safety was a…
Nigerian 419 Advanced Fee Fraud
Generally, the Nigerian 419 scammer claims to be the relative of some high-profile deceased/arrested political figure. The scam claims this relative has horded millions of dollars in cash and are now seeking someone to help transfer the money in exchange for a hefty percentage of the profits.
Best Buy 'Fraud Alert' Email Scam
An email claiming to be a 'Fraud Alert' from Best Buy is actually a scam designed to trick people into divulging their personal information to identity thieves via bogus websites.
Tricks of the Scam Trade
Malware isn't the only scourge plaguing Internet users today. Online scam artists use social engineering techniques to trick victims into performing illegal money laundering, or paying large sums of their hard-earned money for the promise of a big payout that never materializes.
Citibank victim of flaw
Citibank customers were among the first targeted by miscreants exploiting a flaw in the way some browsers interpret web addresses. The flaw allows a different web address to appear in the browser than is actually being displayed.
Have You Ever Been Scammed?
You probably wouldn't knowingly launder money or steal from small businesses. But if you fall victim to a payment processing scam, you may be doing just that. And it will be your own money that gets seized by authorities. Scams come in many flavors - and all are geared to trick you into giving up your hard earned cash. Have you ever been a victim?
Link flaw a serious exploit for scammers
A vulnerability in the way web addresses are interpreted by some browsers makes financial email scams, known as phishing, even easier. The vulnerability causes a spoofed URL (web address) to appear in the browser's address bar, making it appear as if visitors are on one site, when in fact they are on another.
Lottery winner scams
The Lottery Winner scams attempt to trick recipients into believing they have won large sums of cash, and then bilks them out of their own dough in a similar fashion to the Nigerian 419 scam.
Scam emails deliver Trojaned goods
Criminal emailers are increasingly exploiting MS04-013, an MHTML URL Processing vulnerability which allows a remote attacker to download and execute arbitrary code via miscreant websites or email.
Digital Age Credit Card Fraud
Numerous reports of credit card fraud have been pouring into DSLReports and other forums. The vast majority of complaints involve a fraudulent charge of $24.99 posted to the credit card as DIGITAL AGE 888-529-98 CYPRUS.
Chase Online $20 Reward Survey
Beginning early in 2006, online fraudsters mass-emailed scams targeting Chase Manhattan and JP Morgan customers. The scams frequently purport to be a "$20 Reward Survey".
Almost Scammed: International Lottery 'Winner' Speaks Out
I was sent a letter in the mail and the address on the envelope was Crystal Trade Inc. 2555 Kenndy N Sherbrooke QC J1E 2G8. When I opened it, it said it was from Crystal Trade Financial Group of Publishers Sweepstakes 4555 Spruce Ave. Abbotsford B C. V3t 2W4. It went on to say that This was my final notification and I was a winner in an International promotions/prize sweepstakes lottery.
Lottery Scam Meets AOL/Microsoft Hoax
What do you get when you cross the old-time AOL/Microsoft email tracking hoax with a modern day email lottery scam? Something just like this.
Hitman Email Threatens to Kill Recipients
A scam/hoax first reported in December 2006. The 'hitman' email attempts to frighten victims into paying large sums of money to the email sender, who poses as an assassin.