Beware emails that sound too good to be true



A new phishing scheme is promising tax refunds in the amoutn of over $500 to recipients of the scam. Sophos has an advisory. It looks pretty devious – asking people to type in the link address (or copy and paste) and using URL redirect to make it use an official site to then redirect to the phony site.


Apparently, the site claims that your refund may have been delayed and you have 12 days to claim it. And, of course, you need to provide Social security number and credit card information. The bottom line is this…. if you have a solicitation (phone/email/cold caller) that CLAIMS to be representing a company or organization. Contact that company to verify it’s validity. NEVER use information provided by the person making contact to do so… (links in emails, phone numbers/web sites a phone solicitation gives).

A few nights ago we had a call looking for donations from what would seem to be a good cause. I interrupted though and told the caller that I never gave to phone solicitations without looking into the group/organization that was calling. I got the name of where she was calling from and she invited me (of course) to get more information from their website. I haven’t yet set down to look them up but you can bet I’ll take the website she gave with a big grain of salt.

Be cautious.

–update–
Also covered at the Register. While the official US Govt. site used in the attack was not compromised. It is configured in a way to allow redirects such as the one they phishers used. So far I haven’t seen the link itself, all I’ve seen are munged screenshots.

Related Posts

Blog Traffic Exchange Related Posts
  • Google cache revealing critical personal infromation A while back I did an article on using Google search in some slightly more advanced ways, as well as a link to a site of specific Google searches. I've come across something in the Handlers diary at Incidents.org that is worth knowing about. The entry in question details that......
  • Scottrade announces compromise that put eCheck secure infromation at risk The securityfix is reporting that Scottrade, one of the larger online brokers, has announced details of a security compromise that has put a good deal of customer information at risk. It looks as though it is related to the eCheck Secure service for transferring data from personal bank accounts to......
  • Titan Rain - China attempting to crack US computers? According to an article at the Washington Post, it appears that there are a large number of attacks against Defense related non-classified computers coming from (at least in the last hop) computers residing in China. It's unclear whether these attacks are REALLY originating from China or if crackers are using......
Blog Traffic Exchange Related Websites
  • U.N. Cybersecurity Arm Endorses EC-Council's Global CyberLympics   Aug 4, 2011 | ALBUQUERQUE, NM - The cybersecurity executing arm of the United Nations has endorsed the Global CyberLympics, a new initiative by the EC-Council to foster stronger international cooperation on information security issues and to improve cybersecurity training and awareness in developing nations and third world countries.......
  • Apply For An Auto Loan Online More and more people are getting their auto financing online instead of at dealerships where they buy their vehicles. Getting auto loan from a dealership has some benefits: The vehicles and financing in one place and the dealer is motivated to find financing for buyers, regardless of their circumstances. A......
  • SEO Singapore for Amateurs If you'd like to find out about Singapore SEO, then you will want to read this work. Specifically, we'll discuss what SEO is and the two main SEO techniques: on-site and off-site optimization. Many newbies in web based marketing or web marketing would fail just because they do not......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site