Author Topic: Some recent tricks used by hackers and how to avoid them  (Read 7755 times)

Offline Meryl

  • BetterMost Supporter
  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 12,192
  • There's no reins on this one....
Some recent tricks used by hackers and how to avoid them
« on: April 21, 2010, 05:03:40 pm »
We received this e-mail from our IT department at work, and I thought it was well worth passing along:

The tricks the hackers use you probably never heard about!

Looks like cybercriminals have turned social networking into a minefield of threats where one wrong move may have very serious consequences. Long gone are the days when you could avoid being scammed simply by using antivirus software. The more aware we are the harder bad guys are working on fooling us. And let me tell you, their techniques are getting more and more sophisticated! Have a look at some examples of the latest cyber criminals' creations and how to avoid them.

1. Koobface (social networking worm). It gains access to Facebook profile pages and directs you to view a video that then encourages you to update your Flash player. Malicious files such as flash_update.exe and bloivar29.exe are being downloaded and installed which results in a range of visible problems, including modifications to your Facebook profile, with the immediate result being an error message to contact support. There is also the very real potential for your identity and finances to be compromised!

2. Picture files carrying malware are "planted" on social networking websites and instant messaging programs. Hackers try to convince you that your friend has sent you a message or IM to view pictures. Legitimate looking URL when clicked on sends you to an illegitimate website hosting malicious files and executables, which have been modified to appear to be genuine picture files (jpg, gif or bmp). When you download and open those "pictures"; the malware unknowingly runs on your computer. It allows hacker to take control over your operating system as well as the information in it and exposes you to identity fraud and financial loss!

3. UPS Delivery Threat, also known as Zbot. It delivers an illegitimate file when you are visiting a counterfeit UPS delivery site. Zbot has been known to distribute via email phishing and instant messenger. Upon informing you that you have missed a UPS delivery, the message urges you to view the invoice online, which in fact sends you to the counterfeit website which downloads a malicious program designed to bypass the firewall and then steal banking and personal information.

So how do we protect ourselves against all this and more?

   1. Be wary of unexpected IM messages and emails urging you to open or run an attachment or download

   2. Run up-to-date anti-virus and anti-spyware software with behavioural protection - such as VIPRE AntiSpyware with AntiVirus. Keep it running in the background at all times.

   3. Ensure you run Smart Updates and Microsoft updates regularly.

   4. If you are asked to update to a new version of a flash player or any other program go to Adobe (or manufacturers' website and download the update directly from it.

   5. Organizations usually contact you by phone or mail, so when you get an email call them back instead of clicking on any links or attachments.

   6. Never let your PC run without comprehensive protection. Don't rely on old antivirus and antispyware programs, especially when they are free!  Unfortunately, most of them fail to sense the new generation of viruses.
« Last Edit: April 21, 2010, 09:29:10 pm by Meryl »
Ich bin ein Brokie...

Offline Sason

  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 10,333
  • Bork bork bork
Re: Some recent tricks used by hackers and how to avoid them
« Reply #1 on: April 21, 2010, 05:11:21 pm »
Quite scary.....

Thanks for the info, Meryl!

Düva pööp is a förce of natüre

Offline Kelda

  • BetterMost Supporter!
  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 14,685
  • Zorbing....
    • Keldas Facebook Page!
Re: Some recent tricks used by hackers and how to avoid them
« Reply #2 on: April 21, 2010, 05:23:55 pm »
thanks Meryl! Our laptop was hacked into on Friday so this is a timely reminder!
http://www.idbrass.com

Please use the following links when shopping online -It will help us raise money without costing you a penny.

http://www.easyfundraising.org.uk/idb

http://idb.easysearch.org.uk/

Offline Meryl

  • BetterMost Supporter
  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 12,192
  • There's no reins on this one....
Re: Some recent tricks used by hackers and how to avoid them
« Reply #3 on: April 21, 2010, 09:29:34 pm »
Thanks, buds!  8)
Ich bin ein Brokie...

Offline underdown

  • BetterMost Supporter!
  • BetterMost 1000+ Posts Club
  • *****
  • Posts: 2,586
  • aka... Rob
Re: Some recent tricks used by hackers and how to avoid them
« Reply #4 on: April 28, 2010, 11:35:14 am »

Ouch !!

Thanks, Meryl. That info could save a few nasty incidents.  :)
 

Offline Meryl

  • BetterMost Supporter
  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 12,192
  • There's no reins on this one....
Re: Some recent tricks used by hackers and how to avoid them
« Reply #5 on: April 28, 2010, 01:19:07 pm »
Hope you never have to encounter those hackers, Rob!  :)
Ich bin ein Brokie...

Offline Meryl

  • BetterMost Supporter
  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 12,192
  • There's no reins on this one....
Re: Some recent tricks used by hackers and how to avoid them
« Reply #6 on: May 02, 2010, 12:17:47 am »
Here's another bulletin from our IT department:

How to Recognize an E-mail Scam

"I just got an email that says...":

   1. I was just awarded a million dollars by Google.
   2. That my email account needs to be verified and for that I need to provide certain information.
   3. That the IRS needs me to fill out a form with personal information and fax it back to a fax number in Canada.
   4. That UPS could not deliver my package because it doesn't have my address, and needs the following data by return e-mail so if you could please fill out the attached form...

On and on (laughable as they are, the above are actual scam e-mails making their way around the world). So, what do scam e-mails have in common? How can they be recognized?

   1. They ask you for sensitive data, such as a password, social security number, bank account or credit card details, and so forth. And usually they offer a reward if provided or threaten a penalty if not provided.

   2. They often are written with bad grammar or have glaring typos in them (like an email from Hotmail calling it "hot mail")

   3. They come from an e-mail address that is not related to where it's supposed to be coming from.

In some cases they throw a curve because they ask for sensitive data and provide a file attached to the email, which one is supposed to use to provide the data. However the purpose of the e-mail is not to get your data, but to get you to open the attachment that is not what it appears and will infect your computer if opened, like the UPS example above. Pretty slimy.

So if you ever get an e-mail with any of the above points (especially the first point), know that it's a scam, and don't fall for it. Delete it, report it if you know how to and feel like it. But whatever you do, don't provide the information requested. Don't even reply. -- Carlos Duran
Ich bin ein Brokie...

belongcyl

  • Guest
Re: Some recent tricks used by hackers and how to avoid them
« Reply #7 on: August 09, 2010, 10:00:42 pm »
Thanks a lot~ O0

Offline Meryl

  • BetterMost Supporter
  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 12,192
  • There's no reins on this one....
Re: Some tips for safe shopping on the internet during the holidays
« Reply #8 on: December 04, 2010, 01:11:53 am »

Here's the latest advice from our IT department, some tips for safe shopping on the internet during the holiday season:


1.   Keep Your PC Secure: The bad guys are trying to get in to your computer. They are releasing 70,000 (that's thousand) malware variants daily. Keep your Antivirus and Firewall up-to-date. We cannot overstate this enough, having seen so many computers get infected just because their security software was out of date.

2.   Don't Be Stupid: Really I hate to put it so bluntly, but truly if you knew how many PC's got infected just because the user did something dumb, you just might scream. You have to stay aware. Avoid going to controversial sites, aka porn, file sharing sites, etc.

3.   Think Before You Click: Is that photo of Angelina Jolie or Justin Bieber really that important that you are willing to risk the security of your computer?

4.   Look Where You Are Going: Be certain you are doing business with a legitimate merchant. Don't just click on a link as it may be a scam. Phishing tips: lousy grammar, poor spelling and of course incorrect URL's.

5.   Secure Site: And before you whip out your credit card make sure you're on a "secure "site. The URL should have instead of http, an https at the beginning (s for "security") and there should be a small gold lock in the lower right corner of the browser. This isn't an iron-clad guarantee, but still worth looking for.

6.   Check Your Accounts: When you are shopping online, you want to make sure there haven't been any "accidents" of a financial nature. It is a good idea to regularly scrutinize your accounts to make sure they are not being abused.

7.   Avoid Public 'Puters: Don't do your banking or any other financial transactions on public computers or terminals, which could have keystroke loggers or other malware on them, and while we are at it, also do not use a laptop and Wi-Fi doing financial things in public places.

8.   Reviews: A good way to check on merchants and products is to read user reviews and ratings. But even these can be spoofed. So read with a critical eye, and use your judgment.

Ich bin ein Brokie...

Offline Sason

  • BetterMost Moderator
  • The BetterMost 10,000 Post Club
  • *****
  • Posts: 10,333
  • Bork bork bork
Re: Some recent tricks used by hackers and how to avoid them
« Reply #9 on: December 04, 2010, 06:53:50 am »
Thanks, Meryl!

These are useful tips.

Düva pööp is a förce of natüre