I typed in an address for a web site I go to from time to time but I mistyped the name. The site with that mistyped name redirected me to a page that told me I needed to upgrade my media player with red letters that said “Required”. As an IT professional I knew it was bogus but I can see how so many of my customers have been fooled in to installing this malware. They made the page look just like a page you would see on adobe.com. Nothing actually said Adobe but most people wouldn’t have noticed that.
Be careful what you believe to be legit or allow to be downloaded to your computer from the Internet. There are indeed times when something needs to updated but that info will come from a legit site, not something you got to by accident. Also look for brand names to identify legitimate downloads. Generic terms like “media player” and “video player” are red flags.
Example, if your Adobe Flash Player needs to be updated then any site claiming to be an update site for Adobe Flash Player would have the word Adobe all over it plus it should be at adobe.com.
A PayPal scam this time. I received an email purporting to be from PayPal. It was sent to the correct address and looked exactly like emails I get from PayPal. It said the transfer of $13,438.62 was being held for security reasons and to click the “Accept” or “Decline” buttons.
Oddly the transfer was listed as being to Young31622@sandscomputers.com. I think I know what email addresses are valid at my own company. Also one sentence had incorrect English.
The buttons both went to the same non-PayPal address where I am sure they would either infect my computer with some sort of malware or would have tried to get my login information for PayPal.
These guys are pretty clever. This scam involves a fake order from Amazon. I was notified just moments ago that the Samsung 40″ HD TV I ordered was shipped and will arrive on the 21st. Of course I didn’t order a TV from Amazon. Of course the email provides MANY links to click to get information. All of them lead to the same web site that is not Amazon. The email is pretty convincing looking exactly like an email one would get from Amazon. The email address it came from is not Amazon however. They made no attempt to fake the email address this came from so it’s pretty obvious it’s not from Amazon.
It’s been a couple of weeks since the last scam alert I posted. Got a new one today. A fake email from Intuit that states you need to get a security update or you won’t be able to access your Quickbooks data anymore. The link provided takes you to a web site not remotely connected to Intuit where you will undoubtedly be infected with something nasty.
Once again people, don’t ever click on links in emails.
This week’s scam. You receive an email saying <someone’s email address> has just sent you an ecard from 123greetings.com (or some other ecard place). There is a link to click that looks like it will take you to said ecard but if you hover over the link and look at where it will actually take you you will see it goes to someplace completely different and most likely will infect you with malware. Once again, don’t click on links in emails people, no matter what they say or who they appear to be from. Ever.
Another Facebook related scam. If you receive an email claiming you have been tagged in a photo on Facebook don’t click any links. The link could take you to a site that infects you with malware. Some of the emails have “Faceboook” spelled with 3 o’s.
I personally received one of these emails last week. When I hovered over the link it was to some site not remotely connected to Facebook so I deleted the email.
A new Facebook scam exploits your desire to get a free pair of Oakleys sunglasses. Don’t just blindly click on suspicious links. Remember: if it’s too good to be true, it’s probably a scam.
So it appears THE way to spread malware now is by email attachments like the ones I have been posting about. I received another one today about the Delta Airlines tickets I supposedly purchased. The attachment was a zip file and the email said there was a document attached. The zip file had an executable in it that would most likely take you to a site that would infect you. It might infect you directly but I wasn’t going to try it. 😛