phishing

(get it in RSS or Atom)

PayPal phishing scams - take care of yourself online this Christmas

paypal-scam-login-250

PayPal users are being targeted in what is a now-typical pattern of phishing against the global payment service.

The trick is short and simple: you receive an email "acknowledging" a smallish payment. It's $79 to an eBay advertising service in our example...

How to report a computer crime: Phishing attack

How to report a computer crime: Phishing attack

What would you do if you unwittingly became a victim of a phishing attack? Do you know how you'd go about reporting the phishing to the authorities?

Phishing attack promises a free version of Windows 8

Phishing attack promises a free version of Windows 8

On Friday, Microsoft launched Windows 8 to consumers.

Today, the experts at SophosLabs have intercepted a phishing attack which plays upon interest in the new operating system.

Huawei UK makes a blunder with its online careers page

Huawei UK makes a blunder with its online careers page

Chinese technology giant Huawei, under the spotlight following US concerns that its technology could be used for undercover surveillance, has made an elementary mistake in regards to its UK careers page.

India spews more spam than ever before, report finds

India spews more spam than ever before, report finds

You can thank India for one out of six spam messages in your inbox, up from one in 10 when SophosLabs last put out its list of the Dirty Dozen top spam-relaying countries. The UK has upped its spam output as well, meaning it's rejoined the dirty dozen after an 18-month hiatus.

Bogus Apple Store discount card offer attempts to steal users' identities

Apple updates iOS fixing 27 vulnerabilities and TURKTRUST revocation

Spam messages have been sent out by cybercriminals claiming to reward loyal Apple customers with $100 of credit to spend in-store if they just buy a $9 discount card.

It's a wonder that Apple makes any money with marketing campaigns like this! (Or rather it would be, if the email could be trusted).

Invited to change your Twitter profile's header image? Beware, it could be drug spam

Invited to change your Twitter profile's header image? Careful, it could be drug spam

Inventive spammers are up to their old tricks again, desperate to do whatever it takes to get you to click on a link to their websites.

Microsoft Windows Update emails try to steal your Gmail, Yahoo, AOL passwords...

Microsoft Windows Update emails try to steal your Gmail, Yahoo, AOL passwords...

Beware any emails which claim to come from privacy@microsoft.com - it could be that you're being targeted in an attack designed to steal your AOL, Gmail, Yahoo or Windows Live password.

Facebook glitch lets spear phishers impersonate users' friends and family

Facebook glitch lets spear-phishers impersonate users' friends and family

Facebook blames a "temporary misconfiguration" for allowing spammers to get their hands on users' personal details and then pose as trusted friends to lure victims into clicking.

But is the problem properly fixed yet?

Phishing without a webpage - researcher reveals how a link *itself* can be malicious

Phish without a web page? Yes you can!

Can you phish without a phishing page? Research by a student at the University of Oslo in Norway finds that, with the help of a trusty URI, ‘Yes, you can.’

How to report phishing to Facebook

How to report phishing to Facebook

Facebook has today announced a new way in which it hopes to combat phishing scams targeting its 955 million users.

Exploits posing as messages from payroll company ADP

Exploits posing as messages from payroll company ADP

The bogus messages contain links to Java exploits that some anti-virus products struggle to detect.

O2 phishing emails pose as network disruption apology

O2 phishing emails pose as network disruption apology

Phishers have taken advantage of the network disruption suffered by the O2 mobile network earlier this month.

BlackHat conference in giant phishing gaffe

bh2012-gaffe-250

The annual BlackHat conference in Las Vegas prides itself as "the best and biggest event of its kind, unique in its ability to define tomorrow's information security landscape."

That may well be. But this year's event has kicked off with a giant security boo-boo.

Is security training futile?

teacher_thumb

Phishing attacks succeed against even those who should know better.

Which all begs the question, "Why bother with security training?"

Prison for phishers who targeted university students to the tune of £1.5 million

student-loan-thumb

Two British men have been sent to prison for their involvement in a criminal scheme that targeted students and managed to steal £1.5 million.

What you need to know about Facebook sneakily swapping users' default email addresses to @facebook.com

fb-contact-thumb

Have you checked the contact information you list on your Facebook profile? Chances are that it's now listing an @facebook.com email contact address for you.

Learn how to change your settings to make the email address invisible, and to control who can message you.

Twitter account hack epidemic - Don't fall for "CNBC" spam!

cnbc-twitter-thumb

Throughout the month of June, Twitter accounts have been getting hacked and have subsequently been sending spam that links to fake CNBC news articles. Be cautious about links in direct messages or tweets, even if they're sent from a friend's account!

Online romantics targeted by dating site phishing attack

cursor-heart-thumb

More and more people are looking for love online.

Be careful not to find yourself reeled in by a phisher.

Phishing with help from Google Docs

Google Docs phishing

It's child's play to create a Google account, and use the Google Docs facility to host an online form.

But scammers are exploiting Google Docs to phish for passwords and sensitive information.