Someone really has to reign me in with these titles. Anyway, you may or may not have heard that the CNN spam mails have now morphed into mails that appear to come from Msnbc.com instead. The titles of the emails are still as insane as ever:
……uh, wow. The email will take you to a fake Flash download, just like the previous efforts:
Click to Enlarge
Obviously, they haven’t gotten around to making fake Msnbc pages so for now we’re still stuck with the fake CNN pages.
An odd side-effect of these emails is that they’re likely lowering subscriber numbers for CNN and Msnbc, because the emails contain genuine unsubscribe links at the bottom:
I doubt the creators of these scam mails intended that - they’re just wanting to make the mails look realistic - but I could imagine disgruntled subscribers wondering why CNN and Msnbc keep sending them these things then reaching for the “no more, please!” link…
* Click Here For Link To Original Article Source
If you enjoyed this post, make sure you subscribe to my RSS feed!
Sorry to go all X-Files on you, but I received an EMail earlier today that really drives home how paranoid we probably all are about Phishing nowadays.
Entitled “Chris Boyd, would you be able to spot a fake email?”, it was apparently from Paypal:
“Protect yourself from phishing: Paypal is working with Gmail and Yahoo! to block fake Paypal emails from your inbox. Learn how”.
As it turns out, the email was real - but as soon as I hear someone asking me “Can you spot a fake Email”, my brain is sadly conditioned to assume the mail asking me that question is fake anyway.
Kind of depressing, isn’t it? At any rate, it’s interesting how certain words / phrases in mails will automatically set alarm bells ringing. If I’d received this email, I’d have deleted it as soon as I saw the phrase “Your download to win contest has arrived”.
Download to Win Contest?? That sounds so very, very wrong, doesn’t it?
* Click Here For Link To Original Article Source
If you enjoyed this post, make sure you subscribe to my RSS feed!
Nothing earth-shattering, but worth a mention anyway. I’ve noticed a couple of blogs pushing security blog feeds are also hawking pretend Youtube vids:
Click to Enlarge
When the videos are clicked, you’ll find your browser vanishes down onto the taskbar, replaced by this sitting in the middle of the screen:
Once you click the popup box away, you’re confronted with this:
Click to Enlarge
…a randomly selected rogue antivirus product. From here on it, any and all attempts to get rid of this page results in an endless barrage of popups, scare tactics ad hilariously lame warning messages (note the first one is called a “Security Update”):
Wow, they just get more and more hysterical, don’t they?
The site to block that’s pimping the fake videos is
thoughtcrime(dot)blogtodo(dot)com
* Click Here For Link To Original Article Source
If you enjoyed this post, make sure you subscribe to my RSS feed!
The Facebook News Feed is something that tells everyone on your friend list what both you (and everyone on your friend list) is doing, and it’s the first thing you see when you login:
Click to Enlarge
Effectively, it takes bits and pieces of all the smaller feeds and rolls them into one. However, imagine instead of the above in your feed, you see something like this:
Click to Enlarge
Those are customised messages inserted into your feed - and there’s a good chance everyone on your Friends list will see it on their own feed when they login to Facebook.
This would happen because someone has made a Bot for Facebook that allows you to insert your own custom message / image / clickable link into your Facebook feed. I’ve no idea if this is against the Facebook Terms of Service or not, but I can only imagine the chaos that would ensue if someone purchases this application then decides to use it for nefarious purposes. It’s being promoted as a sales / marketing tool, but from a security standpoint it seems potentially disastrous.
If a bad actor buys their own Bot, imagine the Myspace-style spam campaigns that could take place…everything from malicious URLs to obnoxious flashing banners could be the order of the day. At the very least, one would hope the makers of this Bot have some quality control going on with regards Bot owners. More here.
/ Hat-tip to LoLo
* Click Here For Link To Original Article Source
If you enjoyed this post, make sure you subscribe to my RSS feed!
