Monday, July 27, 2015

New Look for an Old Scam- Your email has been accessed from unknown location

The following email is being sent to potential victims:

The blackout in the brackets after E-mail Service is a user id at an email account.  I suspect the hackers bought the email address from a reseller and the email belongs to someone in our community.

The link is unusual and is probably the way future "bad links" will be made.  It is a "tinyurl"  Tinyurl is a web site that changes a long internet address into a short one.  In this case, the url is http://tinyurl.com/q6ornxn  This is called "cloaking" when it is used by black hackers.   I can run an "unshortener" to get back the long url.  However, when I do for this url it says it is not recognized.  So this is not good at all.
Posted by at No comments:

Wednesday, July 22, 2015

Calls from 546-659-4152: what's going on?

Calls from this number are fraudulent and are costing our neighbors money.   Too many are falling for it.  The frauds call the same phone number several times a day. Your caller ID does not give a name.  Out of curiosity or whatever you finally answer.  Let me give you the details on what they do:

  1. The tell you that you have some malware on your computer  (If you can understand them.   The person on the other end has a very thick east Asian accent.)
  2. They will ask you to run eventvwr, an application that shows the log of all activities on your computer.  (For windows, go to This log will always have warning messages and errors in it.  It has nothing to do with malware or viruses.)  It is normal operation to get errors.  But they tell you that you have malware and viruses and your computer is in danger.  They ask to log on to your computer to fix the erros.
  3. They ask you to download Teamviewer (you might already have it, but that doesn't matter)  You give them an ID and password that teamviewer generates and they get control of your computer (Note that I use Teamviewer too.  Teamviewer is not the problem; the problem is the person on the other end. )
  4. They will start asking for money.  They will get your credit card information.  (If you have fallen for this fraud, the credit card info is probably being sold on the criminal market.  Get a new credit card.)
  5. They will run a number of free, open source and readily available programs that will always show that your computer has some problems.  I think their favorite is CCleaner, which everyone should be using.  You don't have to pay $100 for them to use it  
  6. They may have you agree to a contract.  If you do that, then you may not be able to stop payment on your credit card by reporting the fraud.
So, as a community we are in uncharted territory.  Since it looks like everyone is being called, our personal information has been compromised!  That probably includes our social security numbers.  We have to assume that someone is selling that information and we know that this one company is using the information.

You know the drill, but this is serious now.

  1. Don't use your social security number as a method for verifying who you are.
  2. Don't fall for any of these fraudulent computer service outfits.  In fact, if you want to, play them along and act stupid to waste their time.  You can even let them on a computer you don't care to restore and keep them going as long as you can. 
  3. Long passwords.  Don't use the same password twice.  Change your passwords.
  4. Always use https:  as your internet site prefix.  That sets a secure connection.
  5. Don't save any important documents "on line" without encrypting them.  I can tell you how if you call.
  6. Stay away from suspicious sites and don't download any free software without validating that the site is trustworthy.
  7. PDF files still contain poison pills.  So do Flash files (Video streaming files).  It is getting to the point where other technology is being used to display video.  You could turn off the Flash plugin and see if it is really used that much for what you do.
Posted by at No comments:

Monday, July 13, 2015

Fix-My-Computer Dude Update

In a previous blog entry I described the Fix-My-Computer Dude scam.  This scam and many others like it have "technicians," supposedly from Microsoft, calling to tell you that they have detected a problem on your computer.  You let them on your computer, show you "problems" and then try to get you to buy a service, perhaps up to $300/year.  If you balk, then some scammers will start a program that destroys the data on your hard drive. (This doesn't necessarily happen with the Fix-My-Computer group.)

Well, there is more to the story.  After I published the blog entry, I got comments that extolled the virtues of "Fix-My...".  Apparently, the outfit has people trolling the internet for negative comments and they try to "correct" the misconception.  For your entertainment, here is a screen shot of their comments:


Posted by at No comments:

Is Window 10 Free... Forever, or Do You Have to Pay an Annual Fee After the First Year?

Well, it is almost time for Windows 7 and 8 users to be able to get the free upgrade to Windows 10.  But there has to be a catch, right?  The most common catch going around the internet is that it seems to be free for the first year, but, since Microsoft is moving to a rental model for programs, a fee will be charged for each year after the first.  What is the truth?  To summarize what is known:

  • Windows 10 will be a free upgrade for Windows 7 and 8 users for the life of the current computer.  There will be no annual fee.  But only for the current computer.  
  • You will be able to download a full installation disk for Windows 10, so you will not be stuck with a use until fail scenario, or  a use until you add something to the PC/tablet/smartphone scenario.
  • Windows 10 free upgrade will not be available to Vista and XP users. 
  • There isn't any special support program for Windows 10.  You get help from me, your own local IT expert, or from the Microsoft knowledge base.  Fee for service through a contractor will be available on the Microsoft website.
For the general user, I am recommending about a 3 month wait after general release before trying to install Windows 10 over an existing system.  This will give Microsoft time to fix the "big" flubs in the system.

 For details, read http://www.forbes.com/sites/gordonkelly/2015/06/17/windows-10-free-for-1-year-what-happens-next/
Posted by at No comments:

Caller ID and Spoofing

Do you have caller ID on your phone line?  I do.  Increasingly, I am getting unsolicited calls from my local area code that are unsolicited and even dangerous (The ones that say your computer has been hacked.).   This practice, called "spoofing," is a direct and conscious business decision on the part of the caller to avoid FCC regulations regarding unsolicited phone calls and caller id.  For the regulations, in readable form, see https://www.fcc.gov/guides/caller-id-and-spoofing.  "Intrastate calls are not subject to the caller id regulations."  When I asked the last spoofer, who was marketing technical literature, including literature on internet security, why the company was using local numbers, she quickly and seamlessly replied that it was so I would have a local number to return the call.  Ha!

So this is getting ridiculous.

I guess the response from us has to be NEVER answer a local call that doesn't give caller ID information you recognize.  Let them leave a message.

And I'm outing eWeek (PCWeek) as the spoofer in this last case.  Shame!

By the way, there are many computer and smart phone apps that will provide you with "spoofing" capability.  For example, one can be downloaded at (don't bother going there unless you go in sandbox mode and as a incognito browse session) http://www.spoofcard.com/.  Unbelievable!
Posted by at No comments:
Subscribe to: Posts (Atom)

Printfriendly

Print Friendly and PDF