Safenetting : Phishing, Malware, Security Report for October

User Group Network UGN Safenetting and Cybercrime report From the Kenyan mall to Obamacare, phishing and spammers are busy with their criminal agendas. This week’s Safenetting evils are :
* Bogus AmEx “Unusual activity detected” email leads to phishing
* WARNING: There Is STILL No Way To See Who Viewed Your Profile
* Spam Mails Refer to Kenyan Mall Incident, Deliver Malware
* Google now prompting a whole new form of “Joe Job” spam
* Domain Name Registrar Allows Completely Blank WHOIS
* Obamacare Open Enrollment Is Phishing Season
* Mac Product Testing: After the (Flash) Flood
* Phishing scam warns against phishing scams
and more . . .


Safenetting

Spam Mails Refer to Kenyan Mall Incident, Deliver Malware

Symantec the security company cautions Internauts to be wary about malware-laden e-mails that cyber-criminals are distributing while referring to the Kenyan shopping mall that lately came under terrorists’ attack.
      It maybe noted that terrorists struck in a group killing numerous visitors as well as wounding several at the capital Nairobi’s chic Westgate Mall of Kenya.
READ THIS REPORT Full story : SPAMfighter News


Phishing scam warns against phishing scams

This fraud is diabolical in its cunning parody of the way that financial service outfits actually speak — in the most tedious and officious way possible. *If it hadn’t taken the trouble to warn me about phishing scams, I might have clicked it just to see what was going on.
      If you receive an email message that appears to come from Intuit but that you suspect is a phishing email, please forward it to immediately to spoof@intuit.com
READ THIS REPORT Full story : Wired


Obamacare Open Enrollment Is Phishing Season

Open enrollment has begun for Obamacare as well as for health insurance plans offered by many employers. And that means it’s prime time for fraudsters to target consumers with phishing scams, disguised as official-looking open enrollment messages, in an attempt to steal personal information.
      Privacy and security experts stress the need to remind those participating in open enrollment about the dangers of phishing, including avoiding clicking on links in suspicious e-mails that bring individuals to fake websites designed to gather information.
READ THIS REPORT Full story : GovInfoSecurity.com


Bogus AmEx “Unusual activity detected” email leads to phishing

An extremely thorough phishing campaign is currently targeting American Express customers by trying to make them believe that access to their account will be restricted within 48 hours if they don’t update their account information.
      By clicking on the included link, the victims are taken to a spoofed AmEx webpage where they are urged to log in with their user ID and password. Once they have done that, they are faced with another message urging them to update their personal information
READ THIS REPORT Full story : Help Net Security


WARNING: There Is STILL No Way To See Who Viewed Your Profile

The false promise of being able to see who viewed users’ Facebook profiles is once again being used as bait on a phishing trip, as security firm Symantec reported in a blog post that this particular scam was designed to loosely resemble Facebook’s login page, but unsuspecting Web surfers will fall victim to the Infostealer strain of malware.
      Check the URL in the address bar when logging into your account and make sure it belongs to the website that you want to go to.
READ THIS REPORT Full story : AllFacebook


Mac Product Testing: After the (Flash) Flood

This year’s Virus Bulletin conference, the ‘must-go-to’ event for most anti-malware researchers, was light on (directly) Mac-related content. Unsurprising perhaps: there has been no recent high-profile, high-volume malware event equivalent to the great Flashback Flashflood of 2012.
      Instead, we’ve seen an ongoing trickle of highly-targeted malware. We’ve also caught glimpses of miscellaneous malware – a little of it Mac-specific, more that is in some sense Mac-capable – in non-Mac server environments that give us a hint that Something Is Going On, but ‘what it is ain’t exactly quite clear’.
READ THIS REPORT Full story : www.infosecurity-us.com


Domain Name Registrar Allows Completely Blank WHOIS

Garth Bruen, the force behind Knujon, and the movement to make ICANN accountable has posted this article at CircleID . . . Garth writes:
      In a very casual and low-key footnote over the weekend, ICANN announced it would be further bypassing the Affirmation of Commitments and ignoring the WHOIS Review Team Report. There will be no enhanced validation or verification of WHOIS because unidentified people citing unknown statistics have said it would be too expensive.
READ THIS REPORT Full story : www.circleid.com


Google now prompting a whole new form of “Joe Job” spam

Okay . . . Google’s recent “Penguin” program seeks to penalize web sites that new not adhere to Google’s new “linking” regulations. The new regulations cancle the linking advice taught by web design industry for nearly 20 years. Penguin now threatens a web owner with search engine penalties (lower rankings) if they allow certain links.
      Now the cybercrime industry has taken that lead to conduct “joe job” campaigns against rivals. A “joe job” is spam sent with forged headers so spam filters and traps think it came from the crook’s rival. Now, the crooks are sending Google “Penguin” alerts telling web site owners they’ll be removed from the search results if they don’t remove links. (Links of rivals, that is.) And people are doing it, thinking it’s authentic from Google. The “real” Google messages come from Google’s botnet, with no reply possible, so victims cannot see if it’s authentic.
READ THIS REPORT Full story : www.97thfloor.com


GO What did you miss in the last Safenetting Phishing Update

 


GO Send in your items for Safenetting readers
GO Facebook Safe Netting
GO Join / Like / contribute : UGNN FaceBook Group, (ug.netnews)

DO NOT CLICK

If you think you’re a victim, file a complaint with the
GO FBI Internet Crime Complaint Center : IC3.

You can also keep up with the efforts to curb spam and cybercrime by reading the news at
GO Knujon and
GO HostExploit.com. And, you should
GO switch to SpamCop and take a stand against spam.