Scams like these

[Pushka]

Not quite JohnK. It is an email that contains the normal kind of text. It has a word doc attached and the email (can be routed from someone you know or a legitimate business as they are hijacking accounts) says to open the word doc. So you do and there is nothing you can see.
In the past, it has been zip files that people know are risky but now it also includes word docs and even PDF's. There is no mention of macros.

 

[JohnK]

Not quite JohnK. It is an email that contains the normal kind of text. It has a word doc attached and the email (can be routed from someone you know or a legitimate business as they are hijacking accounts) says to open the word doc. So you do and there is nothing you can see.
In the past, it has been zip files that people know are risky but now it also includes word docs and even PDF's. There is no mention of macros.

Thanks. Get it now. You still have to open a document or click on a link.

 

[trixydoza]

So somebody has apparently put my username up on "bugmenot" with a fake password. I cannot for the life of me understand what this would achieve, but my imagination is apparently having trouble with the speed of technological innovation, so if anyone can point to a risk I've missed?

 

[Cynicor]

Is it possible to just be a typo?

It can lick you out of things automatically- several fake attempts.

But no real risk that I can see either.

 

[trixydoza]

Is it possible to just be a typo?

It can lick you out of things automatically- several fake attempts.

But no real risk that I can see either.

Not sure what you mean by the typo bit, but the rest was something I hadn't thought of, thanks. So it would be a way of getting me blocked out of my account by having multiple incorrect password attempts?

 

[Cynicor]

Not sure if your username is close enough to something that could be used as a generic log in, is what I meant by typo.

But yeah, multiple attempts might lock you out, depending on the site.

 

[admin]

As "bugmenot" does not have your correct AFF password, there is minimal risk. At worst you can be locked out of your AFF account for a period of time if there are multiple login attempts. In general, contacting sites like "bugmenot" is not a good idea - I'm always suspicious that once they have been contacted, they know you are a real person...

If it is of concern to you, I would suggest simply changing your AFF Handle. If you want to do this send me a PM with your preferred new name(s) and I'll change it for you.

So somebody has apparently put my username up on "bugmenot" with a fake password. I cannot for the life of me understand what this would achieve, but my imagination is apparently having trouble with the speed of technological innovation, so if anyone can point to a risk I've missed?

 

[marki]

Renounce your citizen ship sure......
For a reason
Don't want to pay Tax

 

[RAM]

Thanks. Get it now. You still have to open a document or click on a link.

Unfortunately not anymore.

One new threat vector came up early last year (I think, possibly late 2014) which works from the preview pane on some email systems/browsers.

There are so many holes in the various operating systems (including the latest & 'greatest' Win 10) that one would almost think it is analogous to Glass/Window repairers paying someone to go around smashing windows.

For example have a look at this one...

Return-oriented programming (ROP) is a computer security exploit technique that allows an attacker to execute code in the presence of security defenses such as non-executable memory and code signing

https://en.wikipedia.org/wiki/Return-oriented_programming

There are so many around that for 99.99% of machines it is only a matter of time before some attack is successful.

One way (extreme but quite effective for a home machine) is to only scan your emails inbox NOT look at them until the following day.

WHY?

Many viruses/hacks/vectors etc only get 1 to 2 days in wide use. So delaying email opening by a day increases the likelihood that your anti-virus/firewall program(s) have been updated to deal with it.

Now how many of you clicked on one (or all) of the links I included above?

YOU COULD HAVE JUST ADDED MALWARE if I'd been hacked etc.

Where you see something that interests you (like example above of ROP gadgets) then:

write down (or remember) the key words and do a search on them - NEVER click a link if you can help it.

 

[RAM]

And just got a call from "Optus" yet again about a new mobile phone offer.

As the Indian chap started his patter I asked "Where is your call centre located?"

To which I got the immediate response;

"Goodbye."

Never realised locations were a state secret....




EXTREME SARCASM above (just in case you were thinking...)

 

[yld200]

Recently I've had a number of phishing emails from 'pay pal support'...

Good news! The waiting period is over. You can now replace all your info and change the password for the paypal account .

As part of this process, your old security info will be deleted and your contact email

Click the button below to finish Update Now.

Thanks,

 

[AustraliaPoochie]

Anyone got the "get a new iPhone 6 for just $2 postage from a Melissa" email?
My pops wants everything so dumbly he replied to the email.
I told him off but at 84 he fies not listen, ...
Do they clone your life or only credit card is the only thing at risk?
Possibly the above, or he was dumb enough to put his email on a marketing list, ala get $100 Coles or Woolworths or Bunnings voucher for answering a survey.

 

[AustraliaPoochie]

Ram, nowadays even legit calls to Optus 13 xx xx phone number now goes to India.
Telstra goes to the Phillipines...
Southernphone says Aust call centre, but people I know got over billed by Southernphone.

 

[JohnK]

Unfortunately not anymore.

One new threat vector came up early last year (I think, possibly late 2014) which works from the preview pane on some email systems/browsers.

There are so many holes in the various operating systems (including the latest & 'greatest' Win 10) that one would almost think it is analogous to Glass/Window repairers paying someone to go around smashing windows.

I have a theory.

Many viruses are released by Anti-virus companies.

 

[marki]

I have a theory.

Many viruses are released by Anti-virus companies.

Deep .......

 

[RAM]

I have a theory.

Many viruses are released by Anti-virus companies.

I posted (from memory I think I did here) earlier in this thread an article from a Q&A session at a high powered tech conference.

In it a CEO from one anti-virus firm basically admitted that the US Govt is 'in bed' with every US anti-virus company just as Putin is with Kaspersky.

Wonder how long (maybe I've missed it) until there is a Chinese anti-virus company giving away free anti-virus programs outside of China?

 

[RAM]

Ram, nowadays even legit calls to Optus 13 xx xx phone number now goes to India.
Telstra goes to the Phillipines...
Southernphone says Aust call centre, but people I know got over billed by Southernphone.

They certainly do.

However the legitimate ones

• DO tell you were they are based
• DO NOT ask you for your CC or Bank details
• Give your a free iPhone 6S as an upgrade in your existing mobile phone plan WHEN YOU DON'T even have a mobile phone.

Other than that it could have been legitimate.

I've given up with the Telstra and Vodaphone calls about my fixed line/internet/mobile accounts long ago. It was just the timing of the Optus call that struck a chord this time around.

 

[coco50]

Recently I've had a number of phishing emails from 'pay pal support'...

Good news! The waiting period is over. You can now replace all your info and change the password for the paypal account .

As part of this process, your old security info will be deleted and your contact email

Click the button below to finish Update Now.

Thanks,

Or something like: "If you do not update your details within the next two days your account will be suspended." But I haven't got a ****ing account with them

 

[QF WP]

Latest email:

"Sehr geehrter kunde,
Haben Sie eine interne nachricht von Amazon haben.

Klicken Sie hier um zu sehen, und es lösen.

Mit freundlichen Grüßen,

Diese EMail wird automatisch gesendet - antworten sie nicht.
Dieses Postfach wird nicht überwacht, und sie werden keine antwort bekommen."

Now my German is okay and Google translate filled in the blanks. The link under "Klicken Sie hier" I have taken out, but it is a German page. Wierd that my brother has just moved to Berlin (last week) indefinitely...

For those interested, Google translates it as saying:

"Dear customer,

Do you have an internal message from Amazon.

Click here to see, and solve it.

Best regards,

This email is sent automatically - not answer it.
This mailbox is not monitored, and they will receive no answer."

 

[Major]

Latest email...not bad, considering I live in QLD

Dear Valued Customer,
Please find attached your E-Toll account statement.
If you would like to claim Cashback please:

1. Simply login to your account and click on the 'Claim Cashback' link on the Account Overview screen. Follow the easy steps and submit your claim online.
   Please note: Online claims can only be completed on E-Toll accounts with online access.
2. Mail the E-Toll transaction statements that list your toll usage for eligible trips and a completed Cashback rebate form to the following address:
   Roads and Maritime Services M5 Cashback
   Locked Bag 3
   Dubbo NSW 2830

Rebates must be claimed within 12 calendar months of the end of the Cashbackquarter.
Thank you for choosing E-Toll
Regards
The E-Toll Team
Roads and Maritime Services
To view documents in PDF format, you musthave Adobe Acrobat PDF reader software version 5 or above installed on yourcomputer.
This email was sent to you by Roads andMaritime Services. This is an unmonitored email address so please do not replyto this email. If you have questions about your E-Toll account please email [email protected] or call 13 18 65.