These predators are intent on stealing your money and personal information, installing damaging programs on your computer, or misleading you with an online scam.

Cyber-crooks are relentless in their pursuit of your money and "It's all about the money," according to Graham Cluley, senior technical consultant at Internet security firm Sophos. In the worst case scenario, your identity and your financial security can be severely compromised.

Looking at estimates provided by a number of Internet security companies, the consensus seems to be that there are over 11,000,000 malware programs currently in the ether. Various Internet security companies report having to deal with as many as 20,000 new versions of malware daily. Here’s the math; one new malware program every four seconds!

Since additional sophisticated threats are being developed, or are currently being deployed, some observers are of the opinion that the Internet is essentially broken. If you think this is an exaggeration, check this out and then you decide.

Tainted search engine results: Internet security gurus have known for some time that we can not rely on Internet search engine output to be untainted and free of potential harmful exposure to malware.

Cyber-crooks continue to be unrelenting in their chase to infect web search results, seeding malicious websites among the top results returned by these engines. When a potential victim visits one of these sites, the chances of downloading malicious code onto the computer by exploiting existing vulnerabilities, is extremely high.

Infected legitimate websites: According to an Internet security industry leader Sophos, over 90 percent of dangerous websites, that is - websites that are distributing Trojan horses and spyware - are legitimate sites that have been hacked through SQL injection.

It was reported recently that over sixteen thousand web pages were infected daily between January and June of this year; three times the rate of infection noted in the previous year. Work out the math, and you’ll find that’s one new infected legitimate website every five seconds!

More disturbing, seventy nine percent of compromised web pages tracked this year were on legitimate web sites; including web sites owned by Fortune 500 companies, government agencies and ironically, security vendors.

Drive-by downloads: Drive-by downloads are not new; they’ve been lurking around for years it seems, but they’ve become much more common and craftier recently.

If you’re unfamiliar with the term, drive-by download, they are essentially programs that automatically download and install on your computer without your knowledge.

This action can occur while visiting an infected web site, opening an infected HTML email, or by clicking on a deceptive popup window. Often, more than one program is downloaded; for example, file sharing with tracking spyware is very common. It’s important to remember that this can take place without warning, or your approval.

Rogue software: Unless you have had the bad experience of installing this type of malicious software, you may not be aware that such a class of software even exists. But it does; and regrettably, it is becoming more widespread. Most rogue software uses social engineering to convince users’ to download this type of malicious software.

A rogue security application is an application, usually found on free download and adult websites, or it can be installed from rogue security software websites, using Trojans or manipulating Internet browser security holes.

After the installation of rogue security software the program launches fake or false malware detection warnings. Rogue security applications, and there seems to be an epidemic of them on the Internet currently, are developed to mislead uninformed computer users’ into downloading and paying for the “full” version of this bogus software, based on the false malware positives generated by the application.

Even if the full program fee is paid, rogue software continues to run as a background process incessantly reporting those fake or false malware detection warnings. Over time, this type of software will essentially destroy the victim’s computer operating system, making the machine unusable.

Some types of rogue security software have the potential to collect private and personal information from an infected machine which could include passwords, credit card details, and other sensitive information.

Email scams: Email scams work because the Cyber-crooks responsible use social engineering as the hook; in other words they exploit our curiosity. The fact is, we are all pretty curious creatures and let’s face it, who doesn’t like surprise emails? I think it’s safe to say, we all love to receive good news emails.

It seems that more and more these days, I get phishing emails in my inboxes all designed to trick me into revealing financial information that can be used to steal my money.

If you’re unfamiliar with phishing, it is defined as the act of tricking unsuspecting Internet users into revealing sensitive or private information. In a phishing attack, the attacker creates a set of circumstances where the potential victims are convinced that they are dealing with an authorized party. It relies for its success on the principle that asking a large number of people for this information, will always deceive at least some of those people.

A personal example of how this works is as follows. According to a recent email (similar in form and content to 20+ I receive each month), my online banking privileges with Bank of America had been blocked due to security concerns. This looked like an official email and the enclosed link made it simple to get this problem solved with just a mouse click. What could be easier than that?

Clicking on the link would have redirected me to a spoof page, comparable to the original site, and I would then have begun the process whereby the scammers would have stripped me of all the confidential information I was willing to provide.

My financial and personal details, had I entered them, would then have been harvested by the cyber-crooks behind this fraudulent scheme who would then have used this information to commit identity and financial theft.

These types of attacks against financial institutions, and consumers, are occurring with such frequency that the IC³ (Internet Crime Complaint Center), has called the situation “alarming”, so you need to be extremely vigilant.

Being involved in computer security, I am amazed and frankly frustrated, at the lack of knowledge exhibited by most typical computer users, and most importantly, the lack of knowledge concerning the need to secure their machines against the ever increasing risks on the Internet.

We now live in the age of the “Interconnectedness of All Things” in which we are beginning to see the development and availability of large numbers of Internet connected devices. There is no doubt that this will lend new strength to computer-aided crime and in this new political environment we now live in, perhaps even terrorists.

This is by no means an exhaustive list of the dangers we are exposed to on the Internet. There are many more technical reasons why the Internet is becoming progressively more dangerous which are outside the scope of this article, but one worth mentioning is the recent discovery that the very backbone of the Internet DNS can be compromised.

The Domain Name System serves as the "phone book" for the Internet by translating human-readable computer hostnames, e.g. www.example.com, into IP addresses, e.g. 208.77.188.166, which networking equipment needs to deliver information.

So what do you think? Is the Internet broken and if so, how can it be saved?

Be kind to your friends, relatives, and associates and let them know that all of the above dangers are now epidemic on the Internet. In that way, it raises the level of protection for all of us.

Be aware of the following security risks on the Internet:

Trojan horse programs

Back door and remote administration programs

Denial of service

Being an intermediary for another attack

Unprotected Window shares

Mobile code (Java, JavaScript, and ActiveX)

Cross-site scripting

Email spoofing

Email-borne viruses

Hidden file extensions

Chat clients

Packet sniffing

Review the following actions you can take to protect your Internet connected computer system:

Install an Internet Browser add-on such as WOT (my personal favorite), which provides detailed test results on a site’s safety; protecting you from security threats including spyware, adware, spam, viruses, browser exploits, and online scams.

Don’t open unknown email attachments

Don’t run programs of unknown origin

Disable hidden filename extensions

Keep all applications (including your operating system) patched

Turn off your computer or disconnect from the network when not in use

Disable Java, JavaScript, and ActiveX if possible

Disable scripting features in email programs

Make regular backups of critical data

Make a boot disk in case your computer is damaged or compromised

Turn off file and printer sharing on the computer.

Install a personal firewall on the computer.

Install anti-virus and anti-spyware software and ensure it is configured to automatically update when you are connected to the Internet.

Ensure the anti-virus software scans all e-mail attachments.

O código foi gerado pelo desenvolvedor do Metasploit, ele realiza ataques imperceptíveis de phishing nos servidores DNS desatualizados.

"Crackers também poderiam usar o código para redirecionar silenciosamente usuários para servidores falsos de atualização de software, os forçando a baixar programas maliciosos, afirmou o diretor técnico da Symantec Zulfikar Ramizan.

A potencial ameaça é uma variação do que é conhecido como ataque de envenenamento de cachê, que tem relação com a maneira como clientes e servidores DNS obtêm informações de outros servidores DNS na internet."

Fonte

Outras noticias

Bei dem sogenannten Phishing versuchen Betrüger die geheimen Zugangsdaten zum Online-Banking aus zu spionieren, um sich dann selbst am Konto des Opfers zu bedienen. Wird das Geld dann überwiesen, wird es über oft ahnungslose Mittelsmänner ins Ausland transferiert. Übernimmt die Bank keine Haftung, bleibt das Opfer meist auf seinem Schaden sitzen.

Bank trägt das Risiko - ausspioniert trotz Anti-Viren-Software

Im verhandelten Fall wurde auf einem Familien PC offenbar heimlich Schadsoftware aufgespielt, mit der die Betrüger an die Kontodaten gelangten. Kurz darauf wurden rund 5000 Euro des Opfers auf ein anderes Konto überwiesen und als Teil eines Ebay-Kaufs getarnt. Nach Angaben der Kriminalpolizei sei dann das Geld bar abgehoben und nach St.Petersburg überwiesen worden, wie FAZ.net berichtete. Die Bank weigerte sich die Transaktion rückgängig zu machen und berief sich auf die Tatsache, dass aus ihrer Sicht der Kunde selbst oder eine von ihm beauftragte Person die Überweisung getätigt habe. Zudem habe die Bank Sicherheitshinweise veröffentlicht, um derartige Fälle zu verhindern.

Doch das Gericht urteilte anders. Ohne wirksamen Überweisungsauftrag könne die Bank das Konto des Kunden nicht belastet. Ein solcher Auftrag habe nicht bestanden, daher müsse die Bank das Geld erstatten. Der Richter unterstrich vor allem zwei Aspekte: Zum einen trage die Bank das Fälschungsrisko von Überweisungsauftragen und zum anderen habe der Kunde die üblichen Schutzmaßnahmen ergriffen, um einen solchen Fall zu verhindern. Der Geschädigte hatte eine aktuelle und marktübliche Anti-Vieren-Software sowie eine Firewall installiert. Dass ein Spezialist das Vorhandensein mehrerer Troyaner und Vieren auf dem fraglichen Computer feststellte, änderte daran nichts.

Im Urteil heißt es dazu:

"Die Beklagte hat nur dann einen Aufwendungsersatzanspruch gegen den Bankkunden, den sie durch Abbuchung vom Konto des Bankkunden befriedigen darf, wenn dieser oder eine von ihm beauftragte Person einen Überweisungsantrag abgegeben hat.

Ohne wirksames Angebot des Kunden auf Abschluss eines Überweisungsvertrages kann das Konto nicht belastet werden, da es an einer Weisung fehlt. Das Fälschungsrisiko des Überweisungsauftrages trägt die Bank (Assies, Handbuch des Fachanwaltes für Bank- und Kapitalmarktrecht, 1. Auflage, 3. Kapitel, Rn. 52 unter Hinweis auf BGH, NJW 2001, 2968, 3183 und 3190 zu gefälschten Überweisungsträgern und Rn. 350 ff. zum Onlinebanking)."

Quellen und Links

• FAZ.de-"Bank haftet für Missbrauch beim Homebanking"
• Kanzlei Dr. Bahr - "AG Wiesloch: Bank haftet bei Phishing-Schäden"

Tenho visto muitos contatos no Messenger incentivando pessoas a visitarem certos sites que verificam on line ou através de programas quem as bloqueou ou excluiu do MSN.

NUNCA VERIFIQUE ATRAVÉS DE SITE NENHUM, MUITO MENOS INSTALE PROGRAMAS ALHEIOS!

A dica é antiga, mas parece que ainda há muitos que a desconhecem.

APRENDA e SIGA AS INSTRUÇÕES:

Na janela do MSN clique em FERRAMENTAS >> OPÇÕES >> PRIVACIDADE.
Nos contatos em que você queira saber se houve bloqueio ou exclusão, clique com o botão direito do mouse.
Se a opção de EXCLUIR estiver ativa (ou em negrito), significa que você foi excluído ou bloqueado por este contato.

Para aqueles ainda mais curiosos, que desejam saber se foi bloqueio ou exclusão, adianto que este passo-a-passo não informará exatamente. Então, fica por conta e risco de sua curiosidade utilizar os outros meios.

Ao oferecer a identificação de quem excluiu/bloqueou quem no Messenger, os crackers induzem os internautas a clicar e executar o programa ou informar a senha (ou senhas), assim roubando informações ou contaminando a máquina com vírus.

Esta modalidade é conhecida como PHISHING, termo que vem do inglês "fishing" (pescaria - pesca), só que neste caso significa roubo de informações, golpes, fraudes.

Os golpes mais conhecidos são aquelas mensagens que se passam por entidades, bancos, SERASA e outros mais.

Leiam mais sobre o assunto nos seguintes links:

♦ Dica da Geisa: Antes de clicar em QUALQUER link, ponha o cursor do mouse (a setinha ou outro ícone que utilize) em cima do link e repare na barra de status, como mostra sinalizado na imagem abaixo o verdadeiro caminho eletrônico aparece. Infelizmente é mais perceptível por usuários avançados.

O que não significa que você não possa perceber que há algo estranho:

Ex: Se o endereço do site do Banco XX é http://www.bancoxx.com.br e na barra de status mostra http://cainarede.clique.VGHTYDJIJHFDDS.... é porque se trata de golpe. Então você não deve clicar.
Se ficou confuso, não se preocupe. Envie sua dúvida para atendimento@constanzaconsultoria.com, que eu respondo.

Agora sim, os links dos artigos sobre o assunto PHISHING:

PHISHING - Como identificá-lo? (artigo da WNews)

Como funciona o phishing (artigo da HowStuffWorks Brasil)

Dicas do Antispam.br

Assim, os curiosos não precisam mais por seu PC e suas senhas em risco.
Nem em casa e nem no trabalho.

In der alten und neuen Firmware für das iPhone 3G und den iPod Touch befindet sich nach Angaben des Sicherheitsexperten Aviv Raff ein Sicherheitsloch, über das Angreifer eine Phishing-Attacke ausführen können. So soll es möglich sein an Login-Daten für Online-Banking oder Shop-Account zu gelangen.

Noch kein Update

Mittels eines präparierten Links in einer E-Mail, den User im mobilen Safari-Browser öffnen, soll sich das Leck in der Firmware 1.1.4 und 2.0 ausnutzen lassen. Dabei geben Nutzer im Glauben sich auf der Online-Banking-Seite zu befinden, ihre Daten ein. Ob auch frühere Versionen betroffen sind, steht zum jetzigen Zeitpunkt noch nicht fest. Apple untersuche derzeit das Problem. Einen Patch bzw. ein Firmware-Update gebe es bislang noch nicht. Mehr Details zu der Lücke will Raff vorerst nicht veröffentlichen bis das Problem behoben ist.

Verstärkter Spam-Empfang

Zudem soll ein Fehler im E-Mail-Client den Empfang von besonders vielen Spam-Nachrichten zulassen. Dabei handle es sich jedoch nicht um eine Sicherheitslücke, sondern um einen grundsätzlichen Fehler im Software-Design. Es sei laut Raff gut möglich, dass dieser Fehler bereits von Spammern ausgenutzt werde. Auch in diesem Fall will Apple einen Patch liefern.

Quelle: derStandard.at

When someone (say, my mother) would tell me to, "get over here now", I knew I was in trouble and I would move slower than grass grows.
When a Mandatory Staff Meeting was being held (back in the days before self-employment) I was famous for always having some trick worked out that allowed me to escape attendance.. because we all know that "Mandatory Staff Meeting" translates into English as "torture session - guaranteed to drive you insane."

So, armed with that knowledge about me, you will understand why I ignored this e-mail for several days...

IRS Notification - Tax Refund - Attention Required.

.. and if you read me regularly (or, happened to catch this article) you know that when I did take an action on this e-mail, I marked it as Junk, unopened.

What?! (you say) How could I disrespect the IRS?! (you say)
Well, for one, the IRS does not e-mail you important documents (neither does your bank, or Pay Pal, or..). And, the IRS -- like almost every other Government institution -- uses "dot gov" in its URL. In fact, the Internal Revenue Service's web address is www.irs.gov.

These particular phraudsters haven't tried spoofing the URL, instead they've set up a similar looking name, hoping that I wouldn't notice.
This classic phishing attempt is using "social engineering" to try to get me to reveal information that will allow cyber-criminals to adopt my identity. It is using my conditioning (to reacting) to Authority. It is appealing to my greed. It is telling me to "act now" (or miss out). In it is a hyperlink that would take me to a very realistic-looking fake IRS website.
This phraudster, or gang, probably had a network of zombie computers send out a million of these e-mails.. because he knows that for every phishing-savvy person, who deletes at a glance, there's 3 who've never heard of phishing.

Tip of the day: Pay attention to details, and know that IRS phishing e-mails are an everyday occurrence, and an estimated 6,000 fake IRS websites are in daily operation. Don't even open e-mails you suspect may be a scam.
Yes. I'm repeating myself. But, at least a part of someone's identity is being stolen every two seconds (global) at an estimated cost to business of $25 billion a year. That's 15,000,000 victims a year.

Today's free link(s): Folks, I don't usually do this (in fact, I never have before).. but I bet you don't know that you have a heuristic bogus Website detector built right into your machine, and all you have to do is turn it on. I wrote an article on how to do that, and the link to it is here.

Firefox users have this protection as well, and it is already enabled. When you see this..

you've stumbled across a cyber-criminal's site. I have been using the new version of Mozilla's Firefox browser, Firefox 3, for a while now, and am satisfied enough to recommend it. To get it, or just read more about it, click here.

Copyright 2007-8 © Tech Paul. All rights reserved. post to jaanix

Share this post :

Internauci korzystający z usług serwisu PayPal po raz kolejny stali się celem ataku oszustów - ostrzega firma G DATA Software. Za pomocą profesjonalnie przygotowanego ataku phishingowego, chińscy cyberprzestępcy starają się wyłudzić dane dostępowe użytkowników. Potencjalne ofiary otrzymują spreparowaną wiadomość e-mail, informującą o zawieszeniu konta PayPal z powodu dokonywania nieautoryzowanych transakcji. W treści maila podany jest link prowadzący do realistycznie wyglądającej witryny, na której użytkownik poproszony jest o zalogowanie się do serwisu w celu odblokowania konta.

W rzeczywistości jest to sfałszowana strona wynajęta przez fikcyjną chińską firmę i ulokowana na australijskim serwerze - cały proces służy do wyłudzenia poufnych danych dostępowych do serwisu umożliwiającego dokonywanie transakcji pieniężnych.

Dodatkowo, sfałszowana witryna jest zainfekowana złośliwym oprogramowaniem, które przenikając do systemu ofiary włącza jej komputer do sieci komputerów-zombie. Nawet czujni internauci, którzy nie dadzą się nabrać na podstęp, mogą więc paść ofiarą tego ataku.

Jak zwykle - aby ustrzec się przed tego typu zagrożeniami należy jak najczęściej aktualizować system operacyjny oraz oprogramowanie antywirusowe.

That’s right, the combined revenues of Microsoft, Google, Amazon, eBay, Yahoo!, Apple, Netflix and EarthLink. You’re not really surprised, are you?

Even if you are an infrequent user of the Internet, it is probable that you have been exposed to unwanted porn while surfing the web.

Now, I hold no moral, religious, or political views on the availability of pornography on the Internet; except of course that which is clearly illegal or morally reprehensible, such as child pornography.

My main concern with pornographic Websites is focused instead on the primary/secondary use that many of these sites are designed for – as a vehicle for the distribution of potentially harmful malware applications that can be surreptitiously dropped onto unwitting visitors computers.

WOT, (Web of Trust) has just released a study of 19 million sites covered by the website reputation database which was conducted from March to May 2008 and focused on dangerous sites – such sites amount to 1 in 20 Internet sites.

The survey employed sophisticated algorithms to ensure the filtering of non-adult content, and to enhance the accuracy of the finale results.

For those that are unfamiliar with WOT; it is a free Internet Browser resource (my personal favorite), that has established an impressive 4.5/5.0 star user rating on CNET, tests web sites you are visiting for spyware, spam, viruses, browser exploits, unreliable online shops, phishing, and online scams, helping users avoid unsafe web sites.

According to the key findings of the study, Websites offering adult content are the single most significant security threat exposure for Internet users, both home users’ and corporate users’, with 31% of dangerous websites falling into the category of adult sites.

Experienced computer users are generally aware that pornographic web sites are notorious for spyware, viruses, browser exploits and phishing attacks on insufficiently protected computers.

The credibility of this view is emphasized by Esa Suurio, CEO of Against Intuition Inc., the company that supports Web of Trust, who concludes from the survey that “Visiting the red light district of the Internet makes the user vulnerable to spyware, viruses and leakage of confidential information which can cause significant damage.”

Esa goes on to say “Given the size of the problem there has been surprisingly little debate on the topic. Perhaps the suffering parties, individuals and companies, hesitate to express their complaints in public.” No doubt this last can be explained by the old Puritan view, still held by many, that condemns the viewing of pornographic material.

Recently I came across statistics that indicate 91% of corporate computer users’ routinely break their company’s Internet usage policies. WOT’s survey makes it clear that such lack of responsible usage, particularly where inappropriate sites are accessed, can “put their company at risk by introducing malware, viruses and spyware which can cause a security breach in the organization. The potential for damage is enormous, from inside and outside their firewalls, considering that confidential data can be stolen by keyloggers and tracking cookies, a common form of malware used by porn sites”.

As a result of this survey WOT has been enhanced its database with double the coverage of pornographic sites than it had previously. Parents who are concerned for the safety of their children on the Internet will be glad to know that WOT has information on nearly 1 million sites that are rated poorly for child safety.

Supporting statistics:

4.2 million pornographic websites

420 million pages of adult content

11 new porn sites are created each hour

34% of Internet users received unwanted exposure to porn

The average age of first Internet exposure to pornography is 11

Malware and phishing attacks cost computer users $18 million per year

Download WOT

WOT Demo video

Market facts, related links and research about Internet safety

Im iPhone 3G und dem iPod touch mit alter und neuer Firmware steckt ein Sicherheitsleck. Angreifer können darüber Phishing-Angriffe durchführen und so an Zugangsdaten für Onlinebanking oder Shopping-Angebote gelangen. Bislang hat Apple das Sicherheitsloch nicht geschlossen.

Wir halten euch auf dem Laufenden!

(Click to zoom open in a window, again to zoom in)

This is a screenshot of the email I received this morning. The email indicates that if you do not update your account information, your webmail account will be shut down permanently!!! All Penn State Email users should be warned that this is what is known as a phishing scam!!! Some foolish person online is attempting to take your personal information from you. If, by some fateful decision, you decided to reply to the email and give them your address, PASSWORD, date of birth, and country or territory, the thief could then log in as you would and get at look at any sensitive information in your account. It should be noted that if Penn State was actually looking to update their accounts in this way, they would probably just send you an email and see if you opened it within, say, a month or two. DO NOT BE FOOLED OR TRICKED BY PHISHERS!!!

The Internet, despite its fundamental flaws, does offer the potential for safe, convenient, and new ways to shop for financial services and conduct banking business, any day, any time.

While it’s true that the Internet has the “potential” for safe and secure financial transactions, safe banking online relies on you making good choices and decisions that will help you avoid costly surprises, or even carefully crafted scams and phishing schemes.

Despite all the hype concerning inpenetrateable system security, we have learned, much to our detriment, that no such inpenetrateable systems exist. The inescapable fact remains; you are your own best protection while conducting financial transactions on the Internet. So it’s important that you learn about, and take advantage of, security features offered by your financial institution.

Some examples are:

Encryption is the process of scrambling private information to prevent unauthorized access. To remind you that your transmission is encrypted, most Internet browsers display a small icon on your screen that looks like a lock or a key, when you conduct secure transactions online. Avoid sending sensitive information, such as account numbers, through unsecured e-mail.

Passwords, or personal identification numbers, should be used when accessing an account online. Your password should be unique to you, and this is extremely important, you should change it regularly. Do not use birthdates or other numbers or words that may be easy for others to guess.

Always carefully control to whom you give your password. For example, if you use a financial company that requires your passwords in order to gather your financial data from various sources, make sure that you are aware of the company’s privacy and security practices.

General security over your personal computer such as virus protection and physical access controls should be used and updated regularly. Contact your hardware and software suppliers, or Internet service provider, to ensure you have the latest in security updates.

Tips on safe computing practices when conducting your online banking at home, or at a public computer:

Never leave your computer unattended once you have signed in to online banking.

After completing your transactions, ensure that you sign out of online banking, clear your cache, and close your browser. Often, it is easy to forget to sign out of an online banking session

Keep your password and card number safe. This seems like a no brainer, but surprisingly many users do forget this critical step in the process.

Do not share, disclose, or provide your bank card number, or password, to another party or website other than your bank. Most banks will not send you an email requesting this information. If your bank practices this very unsafe routine; you should change banks.

Do not save your bank card number or password on a publicly accessed computer.

If you do use a public access computer such as at an Internet café or public library, to be safe change your password after completing your session by calling your bank’s telephone banking number.

When selecting a password, choose a series of characters that cannot be easily guessed by anyone else. The best passwords are made up of an alpha-numeric combination that’s more than four characters long and a combination of capital and lower case letters.

This is an example of an Online Banking email phishing attempt.

Don’t use:

A password you use for any other service.

Your name or a close relative’s name.

Your birth date, telephone number or address, or those of a close relative.

Your bank account number or bank card number.

Do not share your personal verification question answers with anyone, and do not disclose them in any emails. It’s simple; giving your password answers to another person, or company, places your finances and privacy at risk.

Auf täuschend echten Phishing Webseiten werden die Login Daten abgefragt und erbeutet. Benutzer werden über SPAM e-Mails auf die Seiten gelockt. In der e-Mail wird davon berichtet das der eigene PayPal Account wegen nicht autorisierten Transaktionen gesperrt sei.

Sollten die Benutzer nun dem Link folgen werden sie auf die Phishing Seite weitergeleitet. Die Domain sieht für unerfahrene Nutzer relativ echt aus, www.paypal........com.

Selbst wenn man nicht auf die Phishing Attacke hereinfällt kann es schon zu spät sein. Sobald man die Webseite besucht kann der Rechner infiziert werden.

Per Drive-by-Download Attacke wird versucht einen Trojaner (Trojan-Downloader.HTML.Agent.ij) einzuschleusen. Dieser kann Schadsoftware nachladen und den PC in ein Botnetzwerk einbinden.

Sicherheitstipp: Service-Foren.de empfiehlt keinen Links aus e-Mails zu folgen. Wenn ihr eine e-Mail von z.B. PayPal oder eurer Bank erhaltet in der ihr aufgefordert werdet eure Daten neu einzugeben, so besucht die Webseite des Anbieters direkt. Dazu gebt die Web-Adresse des Anbieters manuell ein und nicht die Adresse des Links aus der e-Mail.

Nachricht von http://www.service-foren.de

Forse hanno seguito un corso di italiano ad alto livello oppure sono italiani con un certo livello di istruzione, oppure ancora sono clienti della banca ed hanno 'riciclato' qualche informativa arrivatagli per posta, ma in ogni caso l'e-mail che presentiamo parla da sola.

L'e-mail è scritta in un italiano perfetto, con proprietà di linguaggio e contiene anche un preciso riferimento ad una delibera della Banca d'Italia.

Non deve trarre in inganno neppure il fatto che uno degli indirizzi internet riportato nell'e-mail (alla terzultima riga) inizia per 'https://', cosa che apparentemente farebbe pensare ad una connessione sicura SSL.

Si ricorda che 'connessione sicura' significa solo che i dati non possono essere intercettati dagli hackers perchè sono criptati ma ciò non significa che il sito a cui ci si collega sia affidabile!

Quindi attenti anche alle e-mail che non presentano evidenti errori di grammatica o grossolane storpiature della lingua italiana.

There’s a wise saying: When a thing is done, advice comes too late. But it has its counterpart in: It is never too late. I think they’re complementary to each other. My advice is - you better start protecting your identity before and not after you’re hacked and consider these 3 ways for a better identity protection:

1. Your identity is protected by a master password and a strongly encrypted database.  

When you set a master password you become the only person that can decipher your data.

Your information is stored locally on your hard drive. Nothing is sent outside your computer, and the master password is not stored as clear text in memory!

Web Replay password manager uses the latest desktop database technology from Microsoft featuring government approved encryption. No home-made encryption algorithms that can be broken.

2. Protect your identity by generating strong passwords for your websites.

Web Replay generates virtually unbreakable passwords. Allows you choose what characters to be included in the password.

Automatically fill the generated password in a web page.

3. Protect your identity against KEYLOGGERS.

Using Web Replay password manager no key-logger will be able to intercept your passwords because you do not type them, but fill the password field in a mouse click.

4. Protect your identity against PHISHING ATTACKS.

Web Replay is using 2 anti-phishing alerts:

a. Antiphishing dialog - Web Replay has the option to ALERT you every time you manually log in to a web site that you have not visited before.

b. Green login fields on websites you saved with Web Replay password manager - The login fields on the sites recognized by Web Replay turn green so you will always know when it is safe to enter your password on a site.

This is the reason why I see Web Replay password manager as an extension to an anti-virus: it can do what an anti-virus program cannot in some sensitive respects like phishing attacks and keyloggers, strong password generating and password strength checking and more.

Click HERE to download Web Replay password manager and log in to 10 websites FOR FREE FOR LIFE!

Deskperience Software

Ricordate sempre di difidare sempre di questi servizi online di controllo di chi vi ha bloccati, perchè sono tutte truffe!

By Giovanni Manai!

Voi non lo fate assolutamente, perchè, sarà solo un modo per rubarvi i dati, senza avere nessun analisi del blocco contatti!

By Giovanni Manai

From: donaldc1@nb.sympatico.ca
Subject: Bellnet Maintenance,
Date: July 21, 2008 11:59:52 AM EDT (CA)
To: info@maintenance.co.uk
Reply-To: bellnetupgrade4spam@yahoo.com

This is to notify you that we are presently working on our WEBSITES "BELLNET" This maintenance can close your email account completely. Please do not say you were not informed, your urgent response is highly needed, to protect your email account from being closed, please forward your USERNAME and PASSWORD to this, email:bellnetupgrade4spam@yahoo.com

Sincerely,
Gladys Heights

Such scams have been known for a while. Now, just yesterday we received a phishing sample that is quite new to us but it does remind so-called "Nigerian letters" that say you have won an international lottery or asks you to help release a large sum of money inherited by someone and a percentage in return. This is an ancient form of phishing that pre-dates the Internet.

Scams like this target everyone. But there seem to be customized versions of such scams targeting particular groups of people. There are postings on business forums where multiple victims complain they have paid thousands of dollars for submitting an application to receive financing from VC firms.

The letter that we received targets photographers. Being a photography post production company, we were not familiar with this new scam genre and forwarded the email to one of our old clients, who replied that she has been receiving such emails for a while. We decided to post the entire letter so that you would recognize a phishing "inquiry" if you get one. There are at least six distinctive markings of a scam here: it’s too good to be true, it’s too wordy and has too much personal detail aimed at establishing credibility, "I am looking for the BEST" – an old-time classic to flatter you, name-dropping by specifying a modeling agency that exists, a hazy excuse "I could have making this a phone order but", plenty of errors. See for yourself:

 My name is Laura Baldwin a model with UK Model Management Company But Presently am in Essex,North London on a modeling contract which i hope to be back home soon to join my fiance which lives in LA.My Husband's name's Bruce and I are planning to have our wedding on  Sept. 27th,2008 @
Millennium Biltmore Hotel 506 South Grand Avenue LA,I am looking for the best Photographer who will come and photo shot on the D-day and when i came across your advert i was impressed.
 
Let me know your price charges for your required services if you are to give me the below packages on that day with full coverage of both the church and reception and of both the bride and the bridegroom,their parents,the officiating ministers and our guests:

1 CD with all your edited photos, High Resolution (100-400 Images)
1 16X20
1 DVD Slide show, 50 photos
1 12X18 Leather or Suede Coffee Table Album (24 sides)
2 5X7 Leather or Suede Coffee Table Albums (24 sides)

 
We will want you to work for at least 6 Hours at both occasion and if you are out of party venue,we will pay the transportation charges to and from the party venue .Also,we will have the videos at the wedding forwarded to the Publisher of a celebrity magazine here in Essex,UK so they could feature it in their celebrity weekly Mag.

I could have making this a phone order but there is a little problem with the network of the state so bear with me in a couple of days.
 
Expected guest count: ~105.
Ceremony start time: ~10:00am, And you could probably leave after cocktail hour, which would probably end around 4:00pm .
 
Thanks and hope to hear from you soon.

B.Rgds.
 
Laura Baldwin.

What to do if you receive such a letter? Ignore and delete. Or, if you are not lazy, report it to the US federal cybercrime site at http://www.usdoj.gov/criminal/cybercrime/ or to the Anti-Phishing Working Group - http://www.antiphishing.org.

I've been scratching my head trying to figure out what good works I've done that would have merited such generosity, but then I remember what I learned during my boyhood back in Indiana: God Works in Mysterious Ways.

Ain't it the truth:

From: donaldc1@nb.sympatico.ca
Subject: Dear Subscribers
Date: July 19, 2008 10:14:45 AM EDT (CA)
To: Info@sympatico.ca
Reply-To: info.sypatico@yahoo.com

Dear Subscribers

This is To enable us complete our upgrading and maintenance on our services.
You are advice to reply to this email immediately and enter yourpassword
here [........] Failure to do this may lead to your email account deactivated from our database.

Thank you for using Sympatico.ca
THE SYMPATICO TEAM

This arrived in my inbox the other day, and is a perfect example of a phishing attempt (phishing - setting out a lure / bait and hoping someone bites (and sends in personal information - passwords, credit card numbers etc)

Subject: Global Email Alert
From: Global Email {Monash Email Solution} <helpdesk@monash.edu.au>
Reply to: monashhelpdesk@live.com

X-Mesa de Concertacion-MailScanner-Information: Please contact the ISP for more information
X-Mesa de Concertacion-MailScanner: Found to be clean
X-Mesa de Concertacion-MailScanner-SpamScore: s
X-Mesa de Concertacion-MailScanner-From: helpdesk@monash.edu.au X-Spam-Status: No Dear Student/Staff Due to the recent development on the circulation of email from outside the school in request of your first name, username and password, we did advise you ignore the message and remove it from your email account because it is a HOAX not from the school but from outside source trying to gain access to your private message. With regard to this development, we advise you respond to this email with the following information of your yours so that we can carry out a complete over-hauling our database and enhance security on your email account:

Your Department:{*********}

Your Complete Name:{********}

Your Username:{***********}

Your Current Password:{**********}

Your Current Possition In School :{********} STAFF ONLY

Your Current Level In school:{********} STUDENT ONLY

Upon verification of the above information, an email will be sent to you from this office on the next step to take to make sure that your email is well protected from outside intruder. Regards Global Email Center.

--
Este mensaje ha sido analizado por MailScanner
en busca de virus y otros contenidos peligrosos,
y se considera que está limpio.
For all your IT requirements visit: http://www.transtec.co.uk

There are a number of subtle clues as to why this is not genuine - see how many you can find, and also just think - if you got this in your inbox, would you have picked it at first glance or not?