Category Archives: Phishing Scams

Email, Hotmail, Keep Safe Online, Phishing Scams, Phishing Scams, Security

Stay Safe Online – Part two Email Dangers

March 6, 2014 Computers Made Simple Leave a comment

We’ll get right to the point of today’s post. Here’s an example of a bad and very dangerous email:

Photo of Example of Fraudulent Email 1 — **We expect that you’d recognize this as fraudulent. We hope you would anyway.**

A credit card approval in sixty seconds, supposedly from First Premier Bank. A telltale clue is the address up on the top left. Do you think the First Premier Bank would use ‘edanasupermoistnep.com’ as their email address? Apparently, some people do, otherwise criminals wouldn’t bother sending out millions of these junk emails. If only one half of one half of a percent even answers one of these emails, the mission would be successful.

Here’s more:

Photo of Example of Fraudulent Email 2 — **Look down on the lower left to see where this link actually takes you.**

The link in the email does NOT take you to First Premier Bank. Additionally, although the bank’s address in South Dakota seems to be correct, the Texas address isn’t. It’s a well known source for this and other suspicious emails. If you received an email like this one, you’d delete it right? We hope you would. If your credit isn’t that good, however, the attraction of a ‘Bad Credit’ card might be very attractive. Unfortunately, after a bit of digging, we discovered that a First Premier Credit card is the last credit card you’d want. With interest rates up to 79%, you’d almost be better off borrowing from a loanshark.

We did not click on any of the links here, obviously. It was a simple matter to block further emails from this address, at least it was on hotmail/live/outlook. We suggest you do the same.

Here’s an example of a real email from a bank.

Photo of Example of Real Bank Email — **This is a real email from one of our banks. Still, there are things to look out for in it.**

We’re in Canada and we deal with several banks here. The Royal Bank is one of the largest banks in the world so we feel pretty safe doing some of our online banking with them. This email is simply a notification that our electronic statements are ready to be viewed online. No big deal, right? How do we know that this is a real, and safe, email? Well, it contains a real name, for one. The account numbers (blacked out) match ours and, as we said before, we actually have accounts with this bank.

Still, there are some things in this email that we should warn you about, primarily the contact telephone numbers. While the numbers shown in this email are virtually 100% safe, don’t use them to contact the bank. Why? Because sometimes hackers have access to some of your information but not all of it. Let’s say that someone knew we dealt with the Royal Bank and somehow obtained the last four digits of our account numbers. How could they do that? Maybe from a slip of paper blowing in the wind on garbage day, for one.

If this person needed the rest of our information, it wouldn’t take too much time to draw up an email like this and zip it off to us, complete with phone numbers that would be answered by that person. If you want to contact your bank, how would you find the real number? Easy. The number is on your bank statement, on your credit card and your debit card as well as on your cheques, at least in some cases. Additionally, make sure that you type in the url of the bank’s site, don’t trust the link. We are pretty sure that this email is completely safe but you never know, right? Why not take the extra bit of time to look up both the phone numbers and bank url yourself? If you get in the habit of doing that every time you contact one of your financial institutions, you’ll be well on your way to keeping your identity and your assets safe.

What have we learned? Mainly that you have to be suspicious of just about everything.

1. An email from your bank should have your name either in the body or in the subject line. Emails from Paypal, for instance, always have your name in the subject line. This simple precaution has virtually wiped out phishing emails attempting to steal your Paypal credentials.

2. Don’t click on links or phone the numbers in these emails, even if you are sure that the email is safe. Enter the bank’s URL yourself. Look for the bank’s telephone number in a bank statement, in the phone book or on your credit/debit card.

3. If you don’t deal with the bank that supposedly sent you the email, delete it. Most banks don’t use email to contact their customers except for simple statement notifications similar to the one we showed you above.

4. Above all, if a bank or credit card company has found ‘unusual activity’ surrounding any of your accounts, don’t you think they’d call you on the telephone? Think about it. Stay safe.

Thanks for reading! We’ll continue this series over the next few posts. We will share more thoughts and links on our Facebook page. Here is the link to it:Computers Made Simple on Facebook.

__________________________________________________________

Here’s a link that might help us if you are interested in hosting your own blog with Fatcow Hosting. We’ve signed up to become an affiliate and we make a bit of money if you sign up for hosting via this link: FatCow Hosting Thanks!

Internet, Keep Safe Online, Phishing Scams, Safe Surfing, Scam, Security, Virus and Malware Descriptions

10 Ways to Stay Safe Online

November 15, 2013 Computers Made Simple Leave a comment

Today’s post could be titled ‘The Ten Commandments of Staying Safe Online’ but we didn’t want to confuse people who were googling for the real ten commandments. Staying safe online is based on common sense, there’s no rocket science about it. Use your head and you’ll be safe. If something happens, we’re always ready to help.

Photo of Safe Online — **Ten Safety Tips**

1. Don’t click on email attachments.

We dealt with attachments earlier this week, explaining what they are and how to avoid getting tricked by a malicious one. Even if the email is from someone you know, double check with them before opening anything that’s attached to an email.

2. Don’t click on links in the body of unknown or suspicious emails.

Credit card companies and banks DO NOT send emails with links in the body of the email, at least not the ones that we deal with. If you get regular mailings from companies who are sending you updates on merchandise or sales they are having, fine. If you don’t deal with the company that sent the email, don’t click on anything inside it. Even if the email is from a friend, be suspicious. Some friends send or forward all kinds of things, right? Laugh at this, chuckle at that, you know the type. What are you going to miss if you don’t click on the link? Nothing. We can’t think of any reason why you should click on a link anyway. It’s not worth the risk.

3. Use and maintain a good anti-virus program.

We told you about several free AV programs this week so make sure you’re protected. Lack of money is no excuse. If you’re go online without the protection of AV software, you’re pretty much begging for trouble.

4. Use Google Chrome.

Not only is Chrome fast, it also updates itself every time you start it and it has a built-in protection from malware sites. If you use Internet Explorer from Microsoft, well, you’re on your own there.

5. Don’t think the Macs are safe from viruses and malware.

They aren’t. Apple is just as big of a target as Microsoft. Thousands of people around the world are busy 100% of the time trying to find holes in Windows. iOS and all of the software that goes with them.

6. Don’t use torrents to download movies or software.

Not only is it illegal but it’s also dangerous. Unless your AV software is completely up-to-date, a virus attached to a file that you’ve downloaded can wreck your computer and/or your identity in seconds. Steer clear of torrents!

7. Only download software from trusted sites.

This applies to apps that you get for your mobile devices, too. The software that we mention here is almost always free and we provide direct links to the home page of the people who create the apps. Tucows, a site that’s been around for years, is safe while sourceforge, a site that’s also been around for years, isn’t safe. Sourceforge now adds other software during the installation process while Tucows doesn’t. The added software is usually some kind of toolbar or adware that changes your browser settings completely. If in doubt, ask us first.

8. Don’t share flash drives. If you do, make sure you scan the drive with your AV software before you transfer any files.

Flash drives are wonderfully handy, aren’t they? If you use them on your own computers, you’re probably quite safe. If you lend them out to your kids or friends, scan the drive before you use any of the files on it. If your children have used a drive on a computer at their school, double and triple check it with your AV software. You’ve been warned.

9. Don’t sign in to your email, Facebook or other social media account just because something asks you to do so.

If you type in ‘facebook.com’ and then sign in to your account, that’s one thing. Typing your email and password into a pop-up window is something else. There is a good chance that something has hijacked your browser if you get these kind of pop-ups. Don’t be tricked. Always enter the website address yourself. If you happen to accidentally sign in using a pop-up window, close the window, close your browser, open it again and type in the site url yourself. Sign in and immediately change your password.

10. Don’t upgrade your flash player from any website that tells you to.

That’s why we advise you to use Chrome. Chrome updates its flash component automatically, you cannot do it yourself. If you are on a video site, other than Youtube we mean, and something pops up to tell you that your ‘flash player’ is out of date, don’t believe it. Chrome can play any video from any site on the Internet. You do not need anything else on any site that we’ve seen yet. If you’re using Chrome, your flash player/software is always up to date.

There are many more tips and tricks for keeping safe online but if you remember these ten, you’re well on your way to smooth cruising on the Internet. For more tips and tricks, Like us on Facebook. Here’s the link:

Computers Made Simple on Facebook

Thanks for reading!

Keep Safe Online, Phishing Scams, Scam, Security, Security Questions

Avoid Phishing Website Tricks

August 26, 2013 Computers Made Simple 7 Comments

We had a curious experience this week that made us realize how easy it is to be tricked by an unscrupulous website. Here’s how it happened and here’s what you can do about it:

1. When you are on a Facebook page, you’re usually quite safe, right? It’s when you click on a link in a comment or beside a photo that you might get into trouble. Here’s an example of what we’re talking about:

Photo of Phishing Tricks 1 — The photo itself isn’t the link, the blue line is.

In this case, you can click on the photo to enlarge it or you can click directly on the link. Where does the link lead? We don’t know, do we. The link has been shortened. When a link looks like this, you have to ask yourself, “Is this safe to click on?” In spite of the fact that we know and trust ‘Home Design’, how do we know their account hasn’t been compromised (hacked)? We don’t. Is it worth clicking the link? Better not.

2. Here’s an example of a safer link:

Photo of CBC Url. — **The CBC uses full links, not shortened ones. It’s obvious where this link leads.**

Just for extra security, hover your mouse over any link on a page then look down at the bottom of your browser window. The real url of that link will be shown there. Like this:

Photo of Phishing Tricks 3 — **Here is the real URL of the link, in this case it’s the same as the link in the CBC post.**

3. Next, the phishing attempt. You’re already on Facebook. You know that. When you click on a link and the page that comes up happens to look like a Facebook page and asks for your password, wouldn’t that set off your warning alarms? Facebook knows your password, you are still logged into it. Why would they be asking for that password again? They’re not. The link from Facebook led to a page that only looks like it belongs to Facebook. Look up at the top of your browser window. This is what you should see if you are still on a Facebook page:

Photo of Phishing Tricks 5 — **Make sure the url reads: https://www.facebook.com**

4. The above information is for Facebook but this also applies to your email, Twitter, Instagram and other accounts that you must sign in to use.

TIP: When you find yourself on a page that asks for your password, close your browser, reopen it and type in the URL yourself. If you happen to click on a link in an email and a page opens that asks for a password, close the tap, open another one and type the address that you want at the top.

We hope we’ve given you some useful tips about how to guard your identity online. There are many different ways that unscrupulous people can get access to your different social networking accounts. If you have questions or tips about this yourself, let us know.

Thanks for reading.

Phishing Scams, Scam, Security

What is Phishing

November 27, 2012 Computers Made Simple Leave a comment

Phishing is a new word but it’s very popular these days. What does it mean? Phishing is an attempt to trick people out of their social network or email passwords. Here’s now it works.

This morning, a company that we follow on Twitter sent us a direct message. A direct message on Twitter is much like an email between two Twitter users. Here is what the message looked like:

Photo of a phishing direct message on Twitter. — ***Check the spelling. Pretty obvious that this isn’t something that a company sent.***

How would you know this is a phishing attempt? This direct message has a link in it, that’s a key give-away. Also, check how Lick’s used ‘u’ instead of ‘you’. Would a company send out a message with bad grammar in it? That is a second clue. Third, this message was received on Twitter. Why would Lick’s include a link to Facebook in a direct message on Twitter?

Don’t EVER click on a link in a message like this. What happens if you do? If you do click on a link in a phishing email, you will be taken to a page that looks very much like a Facebook or Twitter page. That page, which isn’t a real Facebook or Twitter page, will ask you to log in to your account. Because the page is extremely well made and looks identical to a Facebook/Twitter log in page, people often log in. At that point, the fake page steals your account, changing the password as it does, and starts sending out messages or posts using your name.

Since it seems that these messages are coming from you, your friends click on the link in the message and the fake site gets even more passwords. The circle gets much larger with each click.

Sometimes these links lead to sites that install software on your computer that will steal your personal information, your banking passwords, things like that. Everyday there are new phishing emails sent out, new phishing posts on Facebook and Twitter and, unfortunately, new users who are tricked into clicking on the links. Watch out for this trickery, folks.

Thanks for reading!

a little bit of hi-tech, a little bit of common sense and a lot of fun