Phishing – Page 6 – Paul's Tech Talk

Old phish becomes new again

PaulJanuary 4, 2009

According to some reports, this phishing has started up again and is now changed a little web address and when you go to the site it looks like:

[ad#ad2-right]If you sign into this website with your twitter account information, it sends out a Direct message with these links in them rosalierebyb.blogspot.com redirects to http://twittyblog.access-logins.com/login and the only way you can fix this is to CHANGE YOUR PASSWORD.

I’d also suggest getting a password manager so if you use just one password for all accounts you will easily be able to change them and make the passwords much harder to hack. You do not want your passwords stolen do yo? I suggest Roboform it works really well with password management.

Antivirus Professional 2008 uses Scare tactics

PaulNovember 10, 2008

[ad#ad2-right-1]

We came across a rogue today called Antivirus Professional 2008 that uses GeoIP Lookup as part of its scare tactics. This site uses Flash and script to create the effect of an online scan, that then attempts to push an installer at the visitor. The NoScript extension for Mozilla Firefox is an excellent way to mitigate against this kind of garbage.

[Via F-secure]

It seems that there is a site out there, that seems to be trying to scare you into downloading there software. If you have any questions about this site please feel free to check out what I’ve found out:

Registration Service Provided By: ESTDOMAINS INC
Contact: 1.3027224217
Website: http://www.estdomains.com
Domain Name: ANTIVIRUS-ONLINE-SCANNER.COM
Registrant:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732
Creation Date: 07-Jun-2008
Expiration Date: 07-Jun-2009
Domain servers in listed order:
ns2.antivirus-online-scanner.com
ns1.antivirus-online-scanner.com
Administrative Contact:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732
Technical Contact:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732
Billing Contact:
N/A
Serento faloimitator@list.ru

Minskay str. 27-14
Kiev
Kiev 237293
UA
Tel. 044.2901732

[ad#ad2-right]Now as you can see this site is located in Russia, and if that’s the case it is probably some virus itself to take control of your system to do what they want with it. So you best advice is if you think you have a virus then check out my recommendations these are all free to download and try. Unlike this site, they are legitimate and actually do what they promise. If you want to email them you can but It don’t think it will help.

*UPDATE on that Website*

According to F-secure that site is now Suspended. Great job guys. We are now fighting these people even better than I’d thought.

Are you asking to be scammed?

PaulOctober 15, 2008

As we go further into the economic death, we are faced with the most undesirable aspect of the human culture. That is to say, scammers are going to use the chance to find people to scam. I don’t say this lightly because scammers have become more cunning and dubious through the years. They are actually using the internet as well as most companies. They are going to sites like Monster.com, Careerbuilder.com, and other hiring sites to get people to apply for jobs.

<<See Previous Post — Nationwide Marketing Scam

Having said that, I recently had a problem with being tried to be scammed. I applied to a job posted on Careerbuilder and that is how they got a hold of my home address. I did not think about the security problems associated with applying for jobs on line, until recently.

As you can see that is how they got a hold of my information and have made myself vulnerable to scams and also, other potential problems. I am talking about Theft ID and also spam. Although spam is to be expected with anything we do online. I’ve come to the conclusion that we will always have to deal with spam. I wanted to talk about how to be careful when you apply for online jobs and put your information out on the internet. I’ve started taking some steps to prevent this from happening again.

[ad]

No Longer am I going to apply for any more private companies — if I can’t see who they are then they have something to hide.

To prevent spam — I am going to make an email address just for my resume. That way I don’t have to worry about spam on my main account.

If it’s too good to be true, it is probably not — I am going to start using that philosophy when I’m about to apply for a job. See picture above, advertising way to much money for a Customer Service rep.

Don’t ever put your Social on your Resume — That is the most crucial part, if you want your identity stolen that is one sure way to get it stolen. Even though that should be painfully obvious it is sometimes overlooked.

I am sure there are more but that is the basic idea of the whole thing. I will probably come up with even more ideas later on but this was one thing that I have been thinking about all day. I also think we have to starting asking the questions before the seriousness of the scammers come to bear. They will never go away but until we get serious, they will always be there to taunt us and laugh us. I am not sure how to do it, Do you? Are we just supposed to sit here and take it or do we fight back and how? These are importantquestions for anyone to consider when you are faced with the possiblity of fraud or being scammed? How do we deal with it in the future? Should scammers be punished serverely or moderately?

Does your DNS still have flaws?

PaulJuly 23, 2008

Late the week, I’ve had some concern with the DNS flaws with my ISP. So I’ve change to another DNS. So I went and did a test at:

Doxpara

So what does this mean when it says I might be at risk?

Very simple, your DNS provider is not randomizing the ports. I’ll get to that in a bit.

What is DNS?

The DNS is like a big Phonebook to where you tell it who you want to call, in this case go, and it finds the numbers and takes you there. It’s like telling a cab driver where you want to visit, just like telling the cab driver to come to my site. When you enter http://www.paulstechtalk.com into your browser, your telling DNS to go fetch the ip and direct your connection to this site.

So how can I fix this flaw?

Simple, You will need to direct yourself to OpenDNS. Has Fixed the flaw to help protect you. How do you use it? You will tell your system to direct all the DNS queries through that then your ISP DNS.

[ad]

So by using the openDNS, you will be bypassing the DNS flaws that you might of have. If you want to use that DNS server go to there website and it tells you step by step on how to do it with your own system.

The Nice thing about OpenDNS is they have so many features, You can prevent phishing, adult sites, Domain blocking, and much more. If you use this, you can prevent you kids from getting on the sites that you don’t want them to get on. It lets you have control over what you want to do. I recommend people to use OpenDNS.

What’s the DNS flaw?

http://en.wikipedia.org/wiki/DNS_cache_poisoning

I can’t explain it but maybe this can. If you want to diqus this in the community you can go to:

Technology Community Page

[ad]

I must verify my Gmail account! (That’s a laugh)

PaulDecember 21, 20074 Replies

Dear Member,
Account Alert

VERIFY YOUR GMAIL ACCOUNT NOW TO AVOID CLOSE !!!
GMAIL lettering
Dear Member,
This message is from gmail message center to all gmail free account owners and premium account owners. We are currently upgrading our data base and e-mail account center. We are deleting all unused gmail account to create more space for new accounts.

[ad]To prevent your account from closing, you will have to verify it below so that we will know that it’s a present used account.

CONFIRM YOUR IDENTITY. VERIFY YOUR FREE GMAIL ACCOUNT NOW !!!

Gmail! ID:…………………….

Password:……………………

Your Birthday:……………..

Your Country or Territory:………..
Enter the letter from the Security Image :……… Registration Verification Code

Warning!!! Account owner that refuses to update his or her account before two weeks of receiving this warning will lose his or her account permanently.

Sincerely,
Gmail Team