Beware emails that sound too good to be true



A new phishing scheme is promising tax refunds in the amoutn of over $500 to recipients of the scam. Sophos has an advisory. It looks pretty devious – asking people to type in the link address (or copy and paste) and using URL redirect to make it use an official site to then redirect to the phony site.


Apparently, the site claims that your refund may have been delayed and you have 12 days to claim it. And, of course, you need to provide Social security number and credit card information. The bottom line is this…. if you have a solicitation (phone/email/cold caller) that CLAIMS to be representing a company or organization. Contact that company to verify it’s validity. NEVER use information provided by the person making contact to do so… (links in emails, phone numbers/web sites a phone solicitation gives).

A few nights ago we had a call looking for donations from what would seem to be a good cause. I interrupted though and told the caller that I never gave to phone solicitations without looking into the group/organization that was calling. I got the name of where she was calling from and she invited me (of course) to get more information from their website. I haven’t yet set down to look them up but you can bet I’ll take the website she gave with a big grain of salt.

Be cautious.

–update–
Also covered at the Register. While the official US Govt. site used in the attack was not compromised. It is configured in a way to allow redirects such as the one they phishers used. So far I haven’t seen the link itself, all I’ve seen are munged screenshots.

Related Posts

Blog Traffic Exchange Related Posts
  • Bellsouth mail.lig.bellsouth.net server phasing out? I haven't had much time to look into this, but one of the mailservers I administer is typically configured to relay through mail.lig.bellsouth.net, with mail.averyjparker.com as a fallback. Sometime overnight, mail.averyjparker.com started getting heavy use and on checking this morning was getting all of the outbound traffic. So, I did......
  • Google cache revealing critical personal infromation A while back I did an article on using Google search in some slightly more advanced ways, as well as a link to a site of specific Google searches. I've come across something in the Handlers diary at Incidents.org that is worth knowing about. The entry in question details that......
  • Identity theft So, you don't click on "phishy" links, keep your pc free from spyware, only bank at secure websites, do all the good things a cautious computer user is supposed to do to keep from having your identity stolen. Your safe right? Not entirely. I just found this in the Security......
Blog Traffic Exchange Related Websites
  • Navigating Hunting Sites There are thousands and thousands of hunting sites online. Someone who enjoys hunting and surfing the Internet could spend weeks just discovering new sites and evaluating them. Because so many new sites go up each day, it would be a never ending pursuit. But because there are so many, that......
  • Apply For An Auto Loan Online More and more people are getting their auto financing online instead of at dealerships where they buy their vehicles. Getting auto loan from a dealership has some benefits: The vehicles and financing in one place and the dealer is motivated to find financing for buyers, regardless of their circumstances. A......
  • SEO Singapore for Amateurs If you'd like to find out about Singapore SEO, then you will want to read this work. Specifically, we'll discuss what SEO is and the two main SEO techniques: on-site and off-site optimization. Many newbies in web based marketing or web marketing would fail just because they do not......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site