SEARCH

  • [:en]Recent Posts[:af]Onlangse bydraes

  • [:en]Categories[:af]Kategorieë

  • [:en]Archives[:af]Argiewe

«
»

New html phishing scam Nuwe html “phishing”

There are a number of e-mails arriving in student and personnel accounts that have malware/virus infected attachments, usually *disguised* as .html files.

The e-mails have subject lines like “UCount reward confirmation” and “Confirmation of epayment” and have .html attachments.  After clicking the link on the webpage that appear, you will be sent to a fraudulent site, which looks just like the institution’s web site and you will be asked for various sensitive information. Although the Trojan attachment does not install anything into the system, it utilizes the “social engineering” technique to force users fill in their personal data on a fraudulent web site.

  • Always beware when asked for private information.
  • Do not click on links in e-mail and do not copy-paste them into your browser.
  • Open a new browser window and type in the company’s correct address.
  • Make sure such requests are genuine by, for example, calling a known company’s phone number.
  • Do not send sensitive information by e-mail. Legitimate companies do not ask you to send important data by e-mail.

Be careful out there. The reason why scammers are so successful is because they catch people regularly!

[ARTICLE BY DAVID WILES]

Op die oomblik ontvang heelwat studente- en personeelrekeninge e-pos met “malware” of virusbesmette aanhangsels, gewoonlik *versteek* as .html leêrs.

Die e-posse se onderwerpe sluit onderwerptitels in soos “UCount reward confirmation” en “Confirmation of epayment”. Daarmee saam word `n .html dokument gestuur. 

Nadat jy op die skakel op die webblad (.html dokument) gekliek het, sal jy herlei word na `n vals webwerf. Die webwerf sal wel lyk soos die instelling se webwerf, maar dis bloot `n kopie. Die webwerf sal, onder andere, persoonlike en vetroulike inligting van jou vra.

Alhoewel die Trojan-aanhangsel nie enigiets op jou rekenaar installeer nie, gebruik dit `n sosiaal-gefabriseerde tegniek om gebruikers te dwing om persoonlike inligting op `n valse webwerf in te voer. 

  • Wees altyd versigtig wanneer privaatinligting gevra word.
  • Moenie kliek op skakels in e-posse nie en moet dit nie kopieer en plak in jou webblaaier nie. 
  • Maak `n nuwe blaaier-oortjie oop en tik die betrokke maatskappy se regte adres in. 
  • Maak seker die versoeke is wettig deur, byvoorbeeld, die maatskappy se telefoonnommer te skakel.
  • Moenie sensitiewe informasie met e-pos stuur nie. Wettige maatskappy sal nie vra dat jy data per e-pos aan hulle versend nie. 

Wees versigtig daar buite. Kubermisdadigers is so suksesvol omdat hulle so gereeld mense uitvang!

[ARTIKEL DEUR DAVID WILES]

Email

This entry was posted on Wednesday, August 26th, 2015 at 9:55 am and is filed under E-mail, Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed.