Jon – Page 6 – Anti-virus Software, Spyware Protection & Firewall

Jon November 18, 2010

Fake FDIC Phone and Email Scams

The name of the FDIC continues to be used by scammers to try to get your money or commit identity theft. In the past few months, the FDIC has been receiving increasing reports of fraudulent phone scam attempts by people claiming to be from the FDIC. These calls are, in fact, a vishing scam. (A form of social engineering that takes place over the phone, often through a VoIP connection) According to the FDIC in their September 2010 Consumer Alert:

To date, the callers have alleged that the call recipient is delinquent in payment of a loan that was applied for over the Internet or made through a payday lender. The loan may or may not actually exist. The caller attempts to authenticate the claim by providing sensitive personal information, such as name, Social Security number, and date of birth, supposedly taken from the loan application. The recipient is then strongly urged to make a payment over the phone to “avoid a lawsuit and possible arrest.” In some instances, the caller is said to sound aggressive and threatening.

Source: FDIC

If you get a phone call, email, fax, carrier pigeon, or anything from the FDIC claiming something akin to the aforementioned, it’s a scam, plain and simple. These scam artists aren’t dumb. They’ll craft an email, a phone script, or even a website to look as legitimate as possible in order to fool you, but it’s not from the FDIC. In fact, the FDIC specifically states that:

The FDIC generally does not initiate unsolicited telephone calls to consumers and is not involved with the collection of debts on behalf of operating lenders and financial institutions.

Source: FDIC

In short, if it’s a phone call, hang up. If it’s an email, don’t click on anything and delete the email. Then go through your bank and credit card statements to make sure you aren’t already facing an identity thief who is trying to gather more data on you. If you find out that you’ve been swindled already, contact your financial institutions immediately.

Image courtesy of http://www.flickr.com/photos/brauerranch/ / CC BY-ND 2.0

If you're looking for great anti-virus software that won't break the bank, try StopSign. You don't pay extra for tech support for difficult malware, and our web protection software just works. Download & install StopSign to find out why our members choose us over the other options.

Filed Under: Blog Tagged With: fdic scam, identity theft, Internet Security, vishing

Jon November 16, 2010

Reporting Online Fraud and Cybercrime

If you or someone you know is becomes the victim of online fraud or any other type of cybercrime (or even just an attempt at it), you need to contact the authorities as soon as possible. Keeping it to yourself can lead to repeated attacks, as well as continued spread of Internet fraud, crime, and even increased distribution of viruses and spyware through crime networks that try to set up shop on your computer.

Depending on what level of fraud and/or cybercrime you’re dealing with, you may have to notify multiple agencies. But regardless of how many places you have to contact, doing so will be the first step to stopping the crooks in their tracks. Please use the list below as a starting point to report any incident:

An Important First Step:
If the fraud you’re reporting reporting is, or becomes, aggressive or threatening in any manner, contact your local authorities. The police in your community should be made aware of any potential threats to you, your family, your home, etc.
Get Into The System:
Head to IC3.gov, the “Internet Crime Complaint Center”. This site is a partnership between several government agencies, including the FBI. The IC3 has an online complaint submission form that you can use to report online fraud and other Internet-related scams.
If It’s International…:
If you feel you’re the victim of an international scam operation, contact econsumer.gov, a coalition of about 2 dozen countries who want to help stop cross-border cybercrime. You may also want to contact a US Secret Service field office to let them know, too.
Contact Credit Reporting Companies:
If you think you’ve been the victim of identity theft, contact any one of the big 3 credit reporting companies. They’ll get your information disseminated to all three. Their contact info is as follows:
- Equifax
  equifax.com; 1 (800) 525-6285
- Experian
  experian.com; 1 (888) EXPERIAN
- TransUnion
  transunion.com; 1 (800) 680-7289

Don’t just be a victim of online fraud and cybercrime. Contact the appropriate authorities and government agencies and stop Internet-related crime before it stops you.

Image courtesy of http://www.flickr.com/photos/alancleaver/ / CC BY-ND 2.0

Filed Under: Blog Tagged With: cyber-crime, identity theft, internet fraud, phishing, smishing, Tech Related, vishing

Jon November 11, 2010

Avoiding Nigerian Scam Emails

“There’s a sucker born every minute.”

– P.T. Barnum (Attributed)

What is the Nigerian Email Scam?

I’m sure that by now you’ve heard of the Nigerian email scams that are still being emailed out to millions of people every year and claiming new victims. These scams continue to bilk innocent people out of their money and more, even though the basic scam itself has been around for hundreds of years.

These emails are a typical example of how fraud and various scams are easily disseminated among a large group of people. The Internet is a great distribution method for crooks who want to attempt this scam since emails are cheap and getting millions of email addresses to send their letters to is relatively easy.

What Are the Basics of This Scam?

The Nigerian scam emails are a variation on the old “Spanish Prisoner” con and they’re sometimes referred to as “Advanced Fee Fraud” or a “419 scam” (based on the article in the Nigerian Criminal Code dealing with fraud). No matter what name is used, the modern variant of these scams go roughly like this:

A Wealthy Foreign Patron
A rich person from another country, or possibly a representative for said person, contacts you, generally via email (though fax and snail mail aren’t unheard of). Regardless of who contacts you, it’s actually a con artist and not a rich person or their rep.
- NOTE Although are normally referred to as “Nigerian scam emails”, these emails can technically come from any foreign country.
A Large Sum of Money (Trapped)
The rich person/con artist claims they’re trying to invest their money, or maybe just trying to get it out of the country (often due to political upheaval or pressure), but needs an external bank account to transfer it all to safely. That’s where you come into the equation.
The Deal
In exchange for transferring a large sum of money and “helping” the con artist, you are guaranteed a percentage of the transaction. This is normally a large enough percentage that it’d be like winning the Lottery.
A Problem Arises
If you should be so… unfortunate… as to accept the offer, you’ll no doubt be contacted and told that there is some kind of problem: Some official needs to be bribed, perhaps a transfer fee is needed, new or underestimated attorney fees, or something along those lines. The con will ask you to front a certain amount of money to take care of the problem and will assure you that you’ll either be compensated at the end of the transaction or that the amount you’re getting in exchange for the deal once it all goes down will overshadow the “small” amount of money you’re asked to put up.

This is the part where they try to part you from your money.
Goodbye Money
After you’ve fronted the money for the problems that arise, you’ll very likely be told of more problems that require additional money to be transferred until you’re either tapped out of money or the con artists decide to move on. Either way, you end up the loser in this con game.

Who Are Typical Victims of This Scam?

Unfortunately confidence scam victims come from all walks of life. Rich, poor, old, young… who you are and where you come from doesn’t matter to a Nigerian email scam artist. Out of the millions of emails they’ll send, they only need a handful of marks (e.g. victims) to make their email scam a success; the FBI estimates that millions of dollars are lost every year to these Nigerian/419 scams. They’ll take whomever they can get.

How Can I Protect Myself?

The first rule of Don’t Get Scammed Club is… use common sense. If it’s too good to be true, it probably isn’t true. Secondly, always be wary of any email, IM, or other communication from a stranger that involves money or personally identifiable information. If you think that you, or someone else you know, is currently being targeted by a Nigerian scam email proposition here in the US, contact the FBI or the Secret Service.

Image courtesy of http://www.flickr.com/photos/28288673@N07/ / CC BY-ND 2.0

Filed Under: Blog Tagged With: 419 scam, advanced fee fraud, internet fraud, Internet Security, nigerian email scam, online scams

Jon November 4, 2010

Are Popup Ads Dangerous?

Excuse me, but your pop-up is on my screen.

Ah, yes… the ubiquitous pop-up ad. Annoying? Yes. Misunderstood? Possibly. Dangerous? Well, that remains to be seen. But what exactly is a pop-up ad? Is it anything at all that “pops” up on your screen a pop-up ad? Wikipedia says:

Pop-up ads (or pop-ups are a form of online advertising on the World Wide Web intended to attract web traffic or capture email addresses.

If we go by Wikipedia’s definition (and for the purposes of this blog post, we are), then we can break it down to say that anything that opens up a “form of online advertising on the World Wide Web” is a pop-up ad. Notice the emphasis on “online” — in this blog post we’re not including pop-ups that are generated from software. (Usually in the form of a Windows dialog box) That’s a good topic for another post at another time.

What’s dangerous and what’s annoying?

In reality, a true online ad is no more dangerous than a TV ad. Sure, it may be an annoyance, but you’re not going to get anything you don’t ask for unless you click on the ad. The trouble is that a malicious pop-up can be confused with a legitimate pop-up ad. That’s the rub. Whether those pop-ups come from software, a website, or from a magical dimension (ha-ha-ha), bad stuff is bad stuff, and that bad stuff is often masked to look like a legitimate pop-up. Why? Because the folks who are trying to get their badness out there are preying on our trust. Make the pop-up look like it came from a trusted source and more people will click.

Because of that, you and I have to be careful when surfing the Web and we’re confronted with a pop-up. Even if it’s something we’re interested in, we run the risk of being redirected somewhere we didn’t think we’d be sent to. And even if we’re not interested, sometimes even closing the pop-up can be a challenge. How many times have you tried to close a browser window with a pop-up ad only to be confronted with another pop-up? Even worse are the pop-up confirmation boxes that ask us if we’re sure, and then confuse us by saying clicking one button will do this and the other will do that, and neither explanation seems clear as to what clicking on either will actually do. It’s enough to drive you crazy!

Closing the pop-up debate.

If you’re surfing the Internet and keeping to well known sites like Google, Bing, and other big-name blogs/sites/etc. then the likelihood of you getting propositioned by a malicious pop-up are small. But no matter if you stay on the big sites or walk the wild side, you can keep yourself safe by downloading and installing a pop-up blocker, antivirus and anti-spyware software that specifically looks to remove any malicious software you may accidentally get infected with. Doing so will help keep you safe, whether or not you’re being exposed to legitimate ads or dangerous pop-ups.

Image courtesy of http://www.flickr.com/photos/courtneybolton/ / CC BY-ND 2.0

Filed Under: Blog Tagged With: annoyances, online ads, popups, spam, Tech Related

Jon October 27, 2010

6 Must-Do Tips for Avoiding Credit Card Scams

When times get tough, the crooks start coming out of the woodwork. The last thing you need is to be hit by a Visa, Mastercard, etc. credit card scam when you’re already having a hard time making ends meet. With the current world economy, scammers are stepping up their game so you’ve got to be aware of what they’re up to and keep your credit, your money, and your identity safe.

There are probably a million ways to keep from being the victim of a credit card scam or fraud attempt, but the following six habits (and these are good habits to have) will go a long way in protecting you from Visa scams, Mastercard maliciousness, and Amex anomalies.

Trust but Verify:
If you receive a phone call from your credit card company, make sure you’re actually talking to your credit card company. Cardholders are increasingly reporting calls from “representatives” who sound official (even going so far as to present “badge numbers” and other official-sounding information) but end up being scam artists. If someone calls your home claiming to be from your card company, politely hang up and call the number on the back of the card itself and verify. At that point you’ve made sure you’re talking to a real credit card company rep and can address any issue they called about in the first place.
Review Your Credit Card Statements:
This is a no-brainer, right? I don’t even know why I mentioned this because you keep monthly tabs on your credit card activity, looking for odd charges, inconsistencies, and anything else unfamiliar. Reviewing your credit card statement may be the only indication you have that something’s wrong, so do it every time.
Keep Your Card Hidden:
At restaurants, the grocery store, or anywhere that a stranger might see your card, be sure to keep it under wraps. Visa debit card scammers (and other cards, too) have been known to sneak into legitimate businesses and install cameras to pick up either your card number or your PIN number. Keep them covered as much as possible. And don’t forget to be sure that, at a restaurant, your server actually picks up the “Merchant Copy” of your bill. Many places, but restaurants especially, print out the card number on the signed receipt.
Use a Secure Site (https):
We’ve already discussed how to spot a fake website, but now you’ve also got to tie that into the first item in our post “5 Simple Tips to Staying Secure Online“. The basic gist is this: When you’re submitting sensitive information, be sure to look in the address bar to make sure you’re on a secure, or “https” site.
Keep One Card for Online Purchases:
Using one credit card for online purchases will not only help keep your transactions easy to account for (“Honey, why did you put that flat screen TV on the Visa at Amazon?”), but it will also help reduce the hassle you’ll have if/when your card info gets stolen.
Shred Old Credit Cards & Statements:
It’s not enough to just toss out old cards and to put your old card statements in the recycling bin. Invest in a shredder, preferably a cross-cut shredder. They’re relatively inexpensive, safe, and easy to operate. And as an added bonus, they make it darn near impossible for crooks to get/read your credit card statements.

Keeping yourself free from the headache of identity theft, stolen credit cards, and unwanted purchases is your job. Sure, your card company may have monitoring in place, but only you truly care about the security of your account, so get proactive and learn to protect yourself from credit card scams.

Image courtesy of http://www.flickr.com/photos/bjohnsonjewelry/ / CC BY-ND 2.0

Filed Under: Blog Tagged With: identity theft, internet fraud, Internet Security, online scams

Jon October 22, 2010

Rise of the LSO, AKA the “Super Cookie”

Since the dawn of the first web browsers dragging themselves from the sea to the land and gasping air for the first time (or something like that), there has been someone who wanted to track what’s happening in the browser. Whether it’s for remembering settings, keeping items in a shopping cart, or aiding in online marketing, the ubiquitous browser cookie has been a staple of the Internet since the early days of the Mosaic browser.

Today, however, there has been an evolution in the browser cookie life cycle, and it’s known as the LSO (Local Shared Object, AKA a “Flash cookie”). It’s not called the Super Cookie because it can leap buildings in a single bound, but rather because, like the Man of Steel, super cookies are pretty darn close to impervious when normal humans like you or I attempt to get rid of them.

What’s the difference between a browser cookie and a super cookie?

The super cookie is both scary and fascinating. Unlike its cousin the browser cookie, the super cookie is a Flash-based cookie that is stored in a different location on a computer than a browser cookie, can be much larger than the 4K allotted the browser cookie, and is much more difficult to uninstall (or even find on your PC) than the cookies you’re used to dealing with. In short, it’s a nightmare to deal with and opens up all kinds of privacy concerns.

What can I do about the super cookie?

Now, whether you want to keep or kill the super cookie is up to you. Like the browser cookie, a super cookie is only as evil as its creator, and most developers will likely use the LSO to make things like tracking general customer information easier vs. attempting to waylay your privacy and sell your data to the highest bidder. However, there are enough differences between browser cookies and Flash super cookies that it’s kind of a “Wild West” situation right now in the Land of Cookies.

If you’re afraid of someone using super cookies for evil (and lets face it, that’s a possibility), there are several ways to suppress or remove the LSO super cookie:

Manual deletion:
The most tech savvy method to remove the super cookie, manual deletion is probably best suited for the technically minded. A super cookie is usually found in the “Flash Player” directory on your computer, but can be stored elsewhere. Use the search tool on your PC an look for the *.sol file extension.
Better Privacy (Firefox addon):
If you use Firefox you can add the Better Privacy plugin to your install and let the addon work its magic on your LSOs.
Disable/remove Flash:
Not a fan of Flash in the first place? Don’t care about certain videos or online games? If so, just disable or full-on remove the Flash player from your computer. If it works for iPhone users, it might work for you, too.
Visit Adobe:
Adobe has a tool that you can use to update your settings quickly and easily. Just go to http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager03.html and set the “Global Storage Settings” to “Zero”. This will prevent new flash cookies from being put on your computer, but if you have any right now you’ll still have to remove them as described above.

As you can see, updating, removing, or changing the behavior of Flash super cookies is kind of a pain right now. But like always, we have to roll with the punches, right? Now that you know about the LSO, check them out every now and again and see if you want to keep them around or not.

Image courtesy of http://www.flickr.com/photos/sashawolff/3199050657/ / CC BY-ND 2.0

Filed Under: Blog Tagged With: cookies, flash cookies, Internet Privacy, Internet Security, privacy, super cookies