Scam

now browsing by tag

 
 

#Cyber #Security Today: Jan. 7, 2019 — #iPhone call #scam, Germans #hacked and Android #spyware

Watch out for this iPhone call scam, prominent Germans hacked, Android spyware found and an Acrobat update.

Apple iPhone users should be on the lookout for a phone phishing scam. According to security writer Brian Krebs, it works like this: You get a call and when you look at the phone’s screen to see who it is, the Apple logo, real phone number and real address is displayed. The target in this case didn’t answer the call so a message was left asking her to call a 1-866 number. It probably led to a scammer who would have asked for personal information. So iPhone users, ignore calls purporting to be from Apple. Apple won’t phone you. And for those who use other phones, hang up on anyone who tries to get personal information or passwords.

Hackers somehow have gotten access to private emails, memos and financial information of hundreds of German politicians, reporters, comedians and artists. The information was then published through a Twitter account. At this point no one knows if this was the work of a mischievous activist or a foreign country, or exactly how it was done. But British security writer Graham Cluley suspects victims fell for a phishing lure and gave away a password to one of their email or social media accounts. The hacker then went from there. Victims may have also used the same password for different accounts, which also makes a hacker’s job easier. If so, it’s another example of why you shouldn’t use the same password on more than one site, and, where possible enable two-factor authentication to make sure someone else can’t log into your account. Two factor authentication usually sends a six-digit number to your smart phone that you have to enter in addition to your password. Check your applications’ settings to see if you have it.

UPDATE: According to the Associated Press, a popular German YouTube contributor who was victimized said the perpetrator somehow first gained access to his email account and then convinced Twitter to disable a second security check — presumably two-factor authentication — required to take control of his account on the social networking site.

Twitter didn’t immediately respond to a request for comment and it wasn’t clear how many of those affected by the leak had such “two-factor authentication” enabled for their email or social media accounts, and whether the hacker similarly managed to bypass it.

As hard as Google tries to keep malware out of the Google Play store, criminals manage to find ways to evade detection. Trend Micro reports it discovered spyware hidden in six seemingly legitimate Android applications including a game called Flappy Bird, a presumably copycat called Flappy Birr Dog, FlashLight, Win7Launcher and others. All have been removed from the app store. The spyware would have stolen information like user location, text messages, contact lists and device information as well as try to phish for passwords. Owners of any computing device have to be cautious when deciding what to download, advises Trend Micro.

Finally, Adobe usually issues security updates on the second Tuesday of the month, which is tomorrow. However, it has already issued an emergency patch for Acrobat and Acrobat Reader. So if you use either of these applications check you have the latest versions.

 

Source: https://www.itworldcanada.com/article/cyber-security-today-jan-7-2019-iphone-call-scam-germans-hacked-and-android-spyware/413736

 

 

View full post on National Cyber Security

New #tax scam #targeting preparers #tricks #clients with #fraudulent #returns

When tax preparer Annette Kraft in Duncan, Oklahoma, checked the status of her clients’ tax returns in January, she was surprised to find all of them had been rejected.

“The code was 902-01,” she said. “That means someone else has already filed a tax return.”

It turns out her clients were victims of a new tax scam intended to cheat them out of their refunds. The criminals get their hands on returns from previous years, then use that information to file new fraudulent returns on unsuspecting victims. After the refund goes into the victim’s bank account, the crooks, posing as debt collectors for the IRS, follow up with a phone call claiming the refund was an error, then directing them to a fraudulent website to return the money.

“I had about $9,015 more than I anticipated,” said Duncan police officer David Woods.

He discovered that supposed refund one day as he checked his bank balance, but it didn’t make sense because he hadn’t filed his taxes yet.

“I didn’t get my W-2 to file my taxes,” Woods said.

He returned the money to the government, but now the IRS says his real refund of $3,000 will be delayed, possibly for months. He’s not alone.

At the local tire shop, 49-year-old Jerry Duvall told us his $5,800 return is more than two months late.

“We planned on taking care of expenses, getting caught up on bills and we counted on it,” Duvall said.

He missed a $200 car payment, and on the very day we spoke with him, he told us his car was getting repossessed.

At least 230 of Kraft’s clients have been hit and face months of delays. Taxpayers like 91-year-old Ray Prothro found out about the scam from the IRS while we were there.

“They ought to go to jail,” Prothro said.

It’s not just one tax preparer in Duncan. There may be as many as 100 tax preparers across the country affected by this scam. Those are just the ones that they know of, so the real number could be tens of thousands of taxpayers.

IRS agents showed us where criminals buy those tax returns on the dark web. One seller offered an example: A Midwestern couple’s full 2016 tax return.

As for Kraft, she says the scam has turned her business upside down.

“My clients are more like a family,” Kraft said. “I want them to know that they can trust me, that I can trust them, it hurts.”

Although the IRS says preparers are the ones being hacked, Kraft’s own experts told her she was not hacked. But the IRS says there are a variety of ways for hackers to break in and steal information.

If you see an unexpected refund pop into your account, call your bank and the IRS, and get the money sent back to the Treasury. If you keep money you’re not entitled to, the IRS will require you pay it back.

advertisement:

The post New #tax scam #targeting preparers #tricks #clients with #fraudulent #returns appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Here’s another #cyber #scam that could cost you #thousands

more information on sonyhack from leading cyber security expertsSource: National Cyber Security – Produced By Gregory Evans In this year of horrendous cyberheists — Equifax the most prominent — you’ve probably taken at least a few precautions: changed passwords, stopped opening files and links from unknown senders, upgraded your computer security measures, maybe put a freeze on your credit reports. But if you’re […] View full post on AmIHackerProof.com | Can You Be Hacked?

Ethereum #heist: New #phishing scam sees #hackers rake in over $15,000 in just two hours

Source: National Cyber Security – Produced By Gregory Evans

Ethereum #heist: New #phishing scam sees #hackers rake in over $15,000 in just two hours

A new Ethereum phishing campaign, targeting users of the online Ethereum wallet website Myethereumwallet.com, has been uncovered. The scam saw hackers make away with over $15,000 (£11,308) in just two hours.

According to security researcher Wesley Neelen, who identified the campaign when he received a phishing email from the cybercriminals, the scam involved hackers sending out phishing emails purporting to be from the Myetherwallet.com website. The email was designed to trick victims into clicking on malicious links that would redirect them to a fake version of the website. The victims would then be prompted into divulging their account passwords, which the hackers would later use to transfer out all the coins in the victims’ wallet.

Although the fake Myetherwallet.com site was designed to look similar to the legitimate site, keen observers would likely notice that the fake site contained a small comma beneath the “t” in the site’s address. According to Neelen, the cybercriminals used a Unicode trick that allowed them to register domains that looked like Latin characters. This ploy in turn, allowed the hackers to create fake sites that can convincingly look like legitimate sites to unsuspecting users.

According to Neelen, some people have unfortunately already fallen victim to the scam. Neelen and his colleague Rik van Duijn, discovered a log file that contained a list of all the wallets stolen by the hackers. The security experts determined that the cybercriminals had stolen a total of $15,875.65 in Ethereum and had then proceeded to transfer the stolen coins to three different wallets operated by the hackers.

Ethereum’s growing popularity has made it an attractive target for cybercriminals. So far, there have been around four incidents involving hackers stealing millions of dollars worth of ether from various wallets. Oddly, in one such Ethereum heist, a hacker who stole nearly $7m of Ethereum from CoinDash later returned around $3m in stolen funds, sparking further mystery about the heist.

The post Ethereum #heist: New #phishing scam sees #hackers rake in over $15,000 in just two hours appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Charlotte BBB warns of latest ‘iCloud Hack’ scam

Source: National Cyber Security – Produced By Gregory Evans

We hear it all the time: A celebrity’s been hacked. Their private photos leaked. Now there are hackers preying on everyone’s fear that this could happen, using one of the most trusted names in technology. An urgent warning coming tonight from Charlotte’s Better Business Bureau with what you need to…

The post Charlotte BBB warns of latest ‘iCloud Hack’ scam appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hackers scam half a million from Enigma digital currency investors

Source: National Cyber Security – Produced By Gregory Evans

Cunning hackers have successfully duped investors out of almost $500,000 after compromising the servers of the online currency platform Enigma. The organization, set up by MIT whiz kids and due to launch its new cryptocurrency on September 11, had its website, email servers and Slack channel hacked. The attackers then…

The post Hackers scam half a million from Enigma digital currency investors appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Lindsay man loses thousands to ‘Romance Scam’

To Purchase This Product/Services, Go To The Store Link Above Or Go To http://www.become007.com/store/ A Lindsay man has been defrauded of almost $4000.00 in what police are describing as a romance scam. The man attended Kawartha Lakes Police on July 31st, 2017 indicating that he had lost almost $4000.00 out…

The post Lindsay man loses thousands to ‘Romance Scam’ appeared first on Become007.com.

View full post on Become007.com

Court Enforces $4.8M in Insurance Coverage for Email Scam

Source: National Cyber Security – Produced By Gregory Evans

The legal landscape for insurance coverage for business email scams remains unsettled, but a recent decision from a Manhattan judge ordering an insurer to cover $4.8 million in losses for a company that fell victim to a “spoofing” scam may give plaintiffs a new weapon in coverage disputes. Southern District…

The post Court Enforces $4.8M in Insurance Coverage for Email Scam appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

How A Billion-Dollar Internet Scam Is Breaking Hearts And Bank Accounts

To Purchase This Product/Services, Go To The Store Link Above Or Go To http://www.become007.com/store/ Modern online romance scams are premeditated, organized crimes that steal millions ? potentially billions ? of dollars from vulnerable, lonely people over the internet. The scammers may just have lit upon the perfect crime: They sit…

The post How A Billion-Dollar Internet Scam Is Breaking Hearts And Bank Accounts appeared first on Become007.com.

View full post on Become007.com

Lewiston Police warn of detective impersonator phone scam

To Purchase This Product/Services, Go To The Store Link Above Or Go To http://www.become007.com/store/ LEWISTON, Idaho – The Lewiston Police Department warns the public of a new phone scam where a man claiming to be a detective for the department is asking for money. Lewiston …

The post Lewiston Police warn of detective impersonator phone scam appeared first on Become007.com.

View full post on Become007.com