SEARCH

  • [:en]Recent Posts[:af]Onlangse bydraes

  • [:en]Categories[:af]Kategorieë

  • [:en]Archives[:af]Argiewe

spam

« Older Entries
Newer Entries »

[:en]Scam warning: UPS Parcel Receipt with infected attachment[:]

Wednesday, November 30th, 2016

[:en]

The holiday season is upon us and there is a lot of activity around this time of the year with parcels being delivered both at home and at the university. This is being exploited by the scammers.

There is currently a UPS scam making its rounds in university mailboxes, where victims are lured into clicking a download link.

If you have received a package via the parcel company like UPS or DHL, you might be tempted open up an e-mail that seems to come from them, saying they have a package for you. There might be an attachment that you are asked to open to confirm your address or to fill in your personal details for “verification”.

The whole thing is a scam. Clicking on the attachment will download a Trojan virus onto your computer which will just sit there doing its nefarious work — reading your files, including confidential information, then transmitting the details to a server somewhere that is controlled by the criminals.

It seems there are two main variations of this “parcel delivery” scam – both looking like a genuine notification.

  • The first one tells you the parcel service tried, but was unable to deliver a package to you because of an incorrect address. The subject heading usually has a phony tracking number. The attachment is supposedly a copy of a waybill or invoice for you to print and use to collect the parcel from a UPS office.
  • The second is a customs notification and may even seem to come from “US Customs Service” rather than UPS. It says you have an international package (usually from Europe) and that you need to complete the attached customs form so it can be delivered.

In both these cases, the attachment is a compressed ZIP file (that is, one with a name that ends in “.zip”), even though the icon may look like a Word document. As soon as you double click on it, it will install a program onto your computer will then download and install several files on your system. These may disable your firewall, look for and steal credit card and bank account details, make screen snapshots and allow hackers full access to your machine.

This attack underlines the danger of opening an attached file in an email, even if it appears to come from a person or organization you know or frequently deal with.

Here is an example of one such mail.

 

 

From: Usps Parcel [mailto:shipment@uspc.com]

Sent: 28 November 2016 07:29 AM

To: Recipients <shipment@uspc.com>

Subject: Parcel Receipt

 

USPS Shipment Notification

A parcel was sent to our office for you and we have tried to deliver it several times to your address on file.

Attached is the receipt via Dropbox, used in sending you the parcel. We advise you DOWNLOAD the document and reconfirm the address on receipt if its your valid address.

For further assistance, please call USPS Customer Service.

For International Customer Service, please use official USPS site.

 

Copyright © 2016 USPS. All Rights Reserved.

This message has been scanned for viruses and dangerous content by Fair Distribution MailScanner, and is believed to be clean. 

 

So do not succumb to the temptation of opening up attachments in emails, especially if it comes from couriers and parcel delivery companies like UPS or DHL. It is the end of the year. Our energy and concentration is ebbing and we are all more vulnerable, making us all potential targets of the cyber-criminal.

[ARTICLE BY DAVID WILES]

[:af]

[:]

Email

Tags: , ,
Posted in E-mail, Security | Comments Off on [:en]Scam warning: UPS Parcel Receipt with infected attachment[:]

[:en]Whatsapp scams[:af]Whatsapp-verblindery[:]

Wednesday, November 23rd, 2016

[:en]

WhatsApp is a popular communication tool, used by students and personnel every day. On the downside, it provides cyber criminals with another way to convince you to part with your well-earned money and unfortunately it’s usually quite convincing.

WhatsApp scams come in many different forms and are often very convincing. Just make sure that you stay vigilant and don’t fall for anything that seems too good or too worrying to be true. Just because a friend or a family member sends you something, it doesn’t mean that it is safe.

Voucher scams

A message arrives in your WhatsApp from someone who looks like your friend, recommending a deal they’ve found. The messages usually come with a link that actually takes you to another website and tricks you into giving your personal information. Don’t ever click a link you’re not sure of and certainly don’t ever hand over personal information to a website you haven’t checked.

WhatsApp shutting down

There are many fake messages claiming that WhatsApp is going to end unless enough people share a certain message. The messages often look convincing, claiming to come from the CEO or another official. They’re written using the right words and phrases and look like an official statement. Any official statement wouldn’t need users to send it to everyone like a round robin. You would either see it in the news or it’ll come up as a proper notification in the app from the actual WhatsApp team.

WhatsApp threatening to shut down your account

This is very similar to the previous scam. It looks like an official message that claims that people’s WhatsApp accounts are being shut down for being inactive. Sending the message on will prove that it’s actually being used and often instructs people to pass it along.

WhatsApp forcing you to pay

Similar to the previous scam, with the only difference being that the message supposedly exempts you from having to pay for your account – if you send it on to other people.

WhatsApp Gold or WhatsApp Premium

The claim suggests that people pay for or download a special version of WhatsApp, usually called Gold or Premium. It offers a range of exciting-sounding features, like the ability to send more pictures, use new emoji or add extra security features. The problem is that it is far from secure. Downloading the app infects people’s phones with malware that use the phone to send more fake messages at the cost of the original victim.

Emails from WhatsApp

Spam e-mails are bad enough. E-mails plus WhatsApp is even worse. There’s a range of scams out there that send people e-mails that look like they’ve come from WhatsApp, usually looking like a notification for a missed voice call or voicemail. But when you click through, you will end up getting tricked into giving over your information, passphrases etc. Don’t ever click on an e-mail from a questionable sender. WhatsApp doesn’t send you e-mails including information about missed calls or voicemails.

Fake WhatsApp spying apps

Currently, it is not possible to let people spy on other’s conversations on WhatsApp, because it has end-to-end encryption enabled, which ensures that messages can only be read by the phones that send and receive them. These scam apps encourage people to download something that isn’t actually real and force people to pay money for malware, or actually read your chats once they’ve got onto your phone.

Lastly – 

Hopefully, you have  already blocked sharing your WhatsApp details with Facebook (telephone number, name etc. and allowing Facebook to suggest phone contacts as friends) and Facebook will not be able to  make your WhatsApp account accessible to the 13 million South African Facebook users.

There are some details about this controversial policy change by WhatsApp on the following page: http://www.mirror.co.uk/tech/you-can-stop-whatsapp-sharing-8893949

 

[ARTICLE BY DAVID WILES]

 

 

[:af]

WhatsApp word deur studente en personeel gebruik as belangrike kommunikasiemiddel. Ongelukkig bied dit aan kuberdiewe nog ʼn platform om hul aktiwiteite op uit te oefen. 

WhatsApp kuberstreke kom in verskeie formate voor en is dikwels besonder oortuigend.  Maak seker jy bly oplettend en word nie geflous deur iets wat te goed of te problematies om waar te wees lyk nie. Net omdat ʼn familielid of vriend vir jou iets aanstuur, beteken nie dis veilig nie.

Koepon-truuks

Jy kry ʼn boodskap via Whatsapp van (wat lyk soos) een van jou vriende en hy beveel ʼn aanbod waarop hy afgekom het, aan. Gewoonlik is daar ʼn skakel in die boodskap wat jou na ʼn ander webwerf neem en waar jy jou persoonlike inligting invul. Moet nooit op ʼn skakel kliek waaroor jy nie seker is nie en moet definitief nooit persoonlike inligting gee op ʼn webwerf wat jy nie ken nie. 

WhatsApp maak toe

Daar is heelwat vals boodskappe wat beweer dat Whatsapp gaan toemaak indien genoeg mense nie ʼn spesifieke boodskap deel nie. Die boodskappe lyk dikwels heel oortuigend en gebruik die regte woorde en frases vir die konteks, asof dit deur ʼn direkteur van ʼn maatskappy of iemand amptelik gestuur is. 

ʼn Amptelike verslag sal egter nie van kliënte verwag om dit heen en weer te stuur nie. Dit sou deur middel van normale nuuskanale verkondig word of as ʼn kennisgewing in die toepassing self deur die Whatsapp-span.

WhatsApp dreig om jou rekening te sluit

Hierdie voorbeeld is soortgelyk aan die vorige een. Dit lyk soos ʼn amptelike boodskap wat beweer dat jou Whatsapp-rekening gesluit gaan word omdat dit nie aktief gebruik word nie. Dit versoek dat jy die boodskap aanstuur om te bewys dat dit wel gebruik word.

WhatsApp dwing jou om te betaal

Ook soortgelyk aan die vorige kuberdiefstalpoging. Die enigste verskil is dat jy blykbaar vrygeskeld word van betaling indien jy die boodskap aanstuur na ander persone.

WhatsApp Gold of WhatsApp Premium

Dié boodskap stel voor dat jy ʼn spesiale weergawe van Whatsapp, gewoonlik genoem Gold of Premium, koop of aflaai. Blykbaar bied hierdie nuwe weergawes opwindende ekstra kenmerke, soos die vermoeë om meer fotos te stuur, nuwe emojis te gebruik of ekstra sekuriteitsopsies. Ongelukkig is hierdie verbeterde weergawes glad nie veilig nie. Wanneer die toepassing aflaai word, word die foon besmet met malware, wat opsigself meer vals boodskappe genereer op jou onkoste.

Whatsapp e-posse 

Gemorspos e-posse is erg genoeg, maar saam met Whatsapp raak dit onbeheerbaar. Daar is ʼn verskeidenheid kuberdiefstalpogings daar buite wat e-posse uitstuur wat soos Whatsapp-kennisgewings lyk – gewoonlik ʼn kennisgewing van ʼn verlore oproep of stempos. Maar wanneer jy daarop kliek, word jy oortuig dat jou inligting, wagwoord, ens. moet verklap.

Moet nooit op ʼn e-pos van ʼn twyfelagtige sender kliek nie. Whatsapp stuur nie e-posse oor verlore oproepe of stempos nie. 

Onegte WhatsApp afloer-toepassings

Whatsapp gebruik end-to-end enkripsie en gevolglik is dit nie moontlik om iemand anders se boodskappe te lees nie. Boodskappe kan slegs gelees word deur die fone wat dit stuur en ontvang.

Hierdie pogings moedig jou aan om iets af te laai wat nie bestaan of moontlik is nie. Jy betaal eintlik vir malware wat jou eie boodskappe lees wanneer jy dit op jou foon laai.

Laastens –

Hopelik het jy reeds die verstelling verander wat jou Whatsapp-details (telefoonnommer, naam, ens.) met Facebook deel en sal Facebook nie jou Whatsapp-rekening toeganklik maar vir 13 miljoen Facebook-gebruikers nie. 

Meer inligting oor dié kontroversiële beleidsverandering deur Whatsapp kan op die volgende bladsy gelees word:  http://www.mirror.co.uk/tech/you-can-stop-whatsapp-sharing-8893949

[ARTICLE DEUR DAVID WILES]

[:]

Email

Tags: , , , ,
Posted in Apps, Communication | Comments Off on [:en]Whatsapp scams[:af]Whatsapp-verblindery[:]

[:en]Spam = blocked accounts [:af]Gemorspos = geblokte rekeninge

Thursday, October 6th, 2016

[:en]A fast-spreading spam e-mail caused problems on campus last week. Some students and staff clicked on a malicious link in a phishing e-mail and subsequently gave a hacker access to their Outlook cloud e-mail accounts. The criminal proceeded to use their e-mail addresses and mailbox to spam all their contacts. Since it was sent from a @sun address, receivers of the spam didn’t suspect anything. (An example of the e-mail, with dangerous links removed, is shown below)

Unfortunately, due to the mass e-mails sent from these mailboxes, Microsoft automatically blocked the users’ accounts and they were unable to access e-mail. 

Please remember to look for the general characteristics of a phishing e-mail before you click on links in e-mail. Just because it’s sent from a @sun address , it does not mean it’s safe.

If you suddenly don’t have access to your e-mail, contact the IT helpdesk (x4367). If you’ve clicked on a suspicious link, change your password immediately.

 

From: Known address <knownaddress1@sun.ac.za>
Sent: 05 October 2016 12:26 PM
To: SU address <knownaddress@sun.ac.za>
Subject: PI Doc copy

 

Please confirm PI doc copy below using Google documents
for your account to be credited.

Continue to Gdocs

Kind regards

[:af]

ʼn Gemorspos het verlede week soos `n veldbrand op kampus versprei. Toegang is tot sommige personeel en studente se Outlook wolkpos verkry, omdat hulle gekliek het op ʼn skakel in ʼn phishing e-pos. Die slagoffers se e-posadresse is gevolglik gebruik om gemorspos aan hul kontakte te stuur. Aangesien die e-pos vanaf ʼn @sun adres gestuur is, het ontvangers geen onraad vermoed nie. (Sien onder ʼn voorbeeld van die betrokke e-pos, met die vals skakels verwyder)

Weens die massa gemorspos wat vanaf die e-posrekeninge gestuur is, het Microsoft outomaties hierdie gebruikers se rekeninge gesluit en kon hulle nie e-pos gebruik nie.

Onthou om altyd bedag te wees en uit te kyk vir die kenmerke van phishing. Net omdat ʼn e-pos vanaf ʼn universiteitsadres gestuur word, beteken nie noodwendig dat dit veilig is nie. 

Indien jy skielik nie toegang tot jou e-pos het nie, kontak die IT Dienstoonbank. (x4367). Indien jy op ʼn potensieël gevaarlike skakel gekliek het, verander dadelik jou wagwoord. 

From: Known address <knownaddress1@sun.ac.za>
Sent: 05 October 2016 12:26 PM
To: SU address <knownaddress@sun.ac.za>
Subject: PI Doc copy

Please confirm PI doc copy below using Google documents
for your account to be credited.

Continue to Gdocs

Kind regards

Email

Tags: , ,
Posted in E-mail, Security | Comments Off on [:en]Spam = blocked accounts [:af]Gemorspos = geblokte rekeninge

[:en]How to avoid spam[:af]Hoe om gemorspos te voorkom[:]

Thursday, March 17th, 2016

[:en]

Spam is unsolicited and often profitable bulk email. Spammers can send millions of emails in a single campaign for very little money. If even one recipient out of 10,000 makes a purchase, the spammer can turn a profit. Unfortunately spam is more than a mere nuisance. It is also used to distribute malware. 

Here are a few tips to prevent your mailbox from being flooded with unwanted, dubious e-mails.

Never make a purchase from an unsolicited email.
By making a purchase, you are funding future spam. Spammers may add your email address to lists to sell to other spammers and you will receive even more junk email. Worse still, you could be the victim of a fraud.

If you do not know the sender of an unsolicited email, delete it.
Spam can contain malware that damages or compromises the computer when the email is opened.

Don’t use the preview mode in your email viewer.
Spammers can track when a message is viewed, even if you don’t click on it. The preview setting effectively opens the email and lets spammers know that you receive their messages. When you check your email, try to decide whether a message is spam on the basis of the subject line only.

Don’t overexpose your email address.
How much online exposure you give your email address is the biggest factor in how much spam you receive. Here are some bad habits that expose your email address to spammers:
– Posting to mailing lists that are archived online
– Submitting your address to online services with questionable privacy practices
– Exposing your address publicly on social networks (Facebook, LinkedIn, etc.)
– Using an easily guessable address based on first name, last name and company
– Not keeping your work and personal email separate

Use the bcc field if you email many people at once.
The bcc or blind carbon copy field hides the list of recipients from other users. If you put the addresses in the To field, spammers may harvest them and add them to mailing lists.

Use one or two secondary email addresses.
 If you fill out web registration forms or surveys on sites from which you don’t want further information, use a secondary email address. 

Opt out of further information or offers.
When you fill out forms on websites, look for the checkbox that lets you choose whether to accept further information or offers. Uncheck if you don’t want to receive any more correspondence.

Take note that information below is an extract from the Sophos Threatsaurus, compiled by Sophos, a security software and hardware company.

[:af]

Gemorspos is ongewensde massa e-pos. Dis dikwels winsgewend vir die versenders aangesien miljoene e-posse in `n enkele veldtog gestuur kan word teen `n lae koste. As slegs een ontvanger uit 10,000 `n aankoop maak, kan die versender `n wins maak. Ongelukkig is gemorspos meer as net `n irritasie. Dit word ook gebruik om malware te versprei. 

Hier is `n paar wenke om te verhoed dat jou posbus oorloop van ongewensde, twyfelagtige e-posse.

Moet nooit iets koop deur gemorspos nie.
Deur iets te koop, befonds jy toekomstige gemorspos. Jy bevestig daarmee dat jou e-pos geldig is en jou e-posadres word dan bygevoeg op `n lys om te herverkoop aan ander gemorsposversenders. Jy sal derhalwe nog meer ontvang en stel jouself bloot aan moontlike bedrog.

Ken jy die persoon wat dit stuur? Nie? Vee dit uit.
Gemorspos kan malware bevat wat jou rekenaar besmet as jy die e-pos oopmaak.

Moenie die voorskou-opsie in jou e-posprogram gebruik nie.
Versenders van gemorspos kan sien of jy na die boodskap gekyk het, al maak jy dit nie oop nie. Die voorskou-verstelling maak inderwaarheid die e-pos oop en laat weet die versender dat die boodskap ontvang is. Wanneer jy e-pos lees, kyk na die onderwerpreël en probeer daarvolgens bepaal of dit gemorspos is.

Moenie jou e-pos onnodig blootstel nie.
Die grootste faktor wat bepaal hoeveel gemorspos jy kry, is hoeveel jy self jou e-posadres aanlyn blootstel. Hier is `n paar slegte gewoontes wat jou risiko verhoog:
– Jy stuur e-posse na adreslyste wat aanlyn gestoor word.
– Jy gee jou adres vir aanlyndienste waarvan die privaatheidspraktyke twyfelagtig is.
– Jy stel jou adres op sosiale netwerke bloot (Facebook, LinkedIn, ens.)
– Jy gebruik `n adres wat gebaseer is op jou naam, van en maatskappy.
– Jy gebruik een e-posadres vir werk en persoonlike sake. 

Gebruik die bcc-veld as jy vir `n groep mense e-pos stuur.
Die bcc of blind carbon copy veld steek die lys ontvangers weg. As jy al die adresse in die To veld sit, kan almal, ook gemorsposversenders, dit lees, en by hul eie adreslyste voeg.  

Gebruik een of twee sekondêre e-posadresse.
Wanneer jy webgebaseerde registrasievorms of opnames invul en daarna nie weer gepla wil word met inligting nie, gebruik `n ander, sekondêre adres vir die doel.

Kies om nie inligting of aanbiedinge te ontvang nie. 
Wanneer jy vorms op webwerwe invul, kyk vir die boksie wat jou die opsie gee om nie verdere inligting of aanbiedinge te ontvang nie. Verwyder die merkie af as jy nie gepla wil wees nie.

Neem kennis dat al hierdie inligting geneem is van die Sophos Threatsaurus, saamgestel deur Sophos, `n sekuriteit sagte- en hardwaremaatskappy. 

[:]

Email

Tags: ,
Posted in E-mail, Security | Comments Off on [:en]How to avoid spam[:af]Hoe om gemorspos te voorkom[:]

SARS e-mail may fool usersSARS e-pos mag gebruikers bedrieg

Tuesday, October 15th, 2013

For some lucky people, it is time for the tax returns from SARS. The criminals know it too and every year at this time, users will get emails allegedly from SARS promising tax returns and asking you to click on a link, log in and provide your bank account details and password so they can pay you money!

This is a scam, and you should never respond or go to the site or open up the attached file, as this could compromise your banking security.

  1. SARS has your banking details on record and these are stored in secure and encrypted form. They do not need you to confirm or enter your banking details.
  2. SARS would always either SMS or send you a registered letter in the post to inform you of tax returns, etc. They would never contact you via unsecured e-mail, and furthermore they have enough of your data to address the mail to you PERSONALLY and not via some vague “Dear Taxpayer” salutation.
  3. There is no returnfund@sars.co.za address
  4. The attached file is usually a html (webpage) file that gives you a forged webpage sitting on the criminals server somewhere overseas.
  5. The amount that they promise to pay you is always something like R9,250.75
  6. Unless you have added your university e-mail address as the primary contact address on the SARS system you should never get mail on your university account.

If you do go to this site and you do enter in your banking account details, credit card details, passwords etc, this will allow the criminals to log into your bank account via the internet, and take control over your bank account. They will create themselves as beneficiaries and then transfer all your money to their account, and then delete all the evidence pointing to their account.

These scam e-mails will never stop. It is always difficult to block them too because scammers change their addresses, details and methods on a daily basis. So it is always best to dump these mails in the junk mail folder, blacklist the sending domain and delete the mail immediately.

Why do these criminals continue to send their mail? Because they catch people regularly. In 2012 South Africa was the 5th most phished country in the world behind India, Canada, the USA and the UK, with estimated figures of R14 million being stolen from South Africans last year alone.

 

[ARTICLE BY DAVID WILES]

Vir die gelukkiges onder ons, is dit weer tyd vir SARS se belastingopgawes. Ongelukkig weet die kriminele elemente dit ook en telkens die tyd van die jaar, ontvang gebruikers e-posse wat klaarblyklik deur SARS gestuur word en `n belasting terugbetaling belowe. Al wat jy moet doen is om op `n skakel te kliek, aan te teken, jou bankrekeningdetails en wagwoord te gee en jy kry jou geld!

Natuurlik is dit `n klassieke geval van “phishing”. Moenie eers reageer, na die webwerf gaan of die aangehegte leêr oopmaak nie, aangesien dit jou banksekuriteit sal blootstel. Hier is `n voor-die-hand-liggende redes hoekom jy dit as `n swendelary moet herken:

1. SARS het jou bankdetails op rekord en dit word op `n sekure bediener en in geënkodeerde formaat gestoor. Hulle het nie nodig om jou weer te vra om jou bankdetails te bevestig of te verskaf nie.

2. SARS sal jou altyd SMS of aan jou `n geregistreerde brief  deur middel van pos stuur om jou in kennis te stel van enige betalings. Hulle sal jou nie kontak d.m.v. `n onsekure medium soos e-pos nie. Buitendien het hulle ook genoeg inligting om jou persoonlik aan te spreek en nie met `n vae  “Dear Taxpayer” nie. 

3. Daar bestaan nie `n returnfund@sars.co.za adres nie.

4. Die aangehegde leêr is gewoonlik `n html (webblad) leêr wat lei na `n vervalste webwerf op `n onwettige bediener erens oorsee.

5. Die bedrag is altyd in die omgewing van R9 250.75

6. SARS sal jou nie op jou universiteitsadres kontak tensy jy dit gegee het as jou primêre adres nie.

Indien jy wel na die webwerf gaan, moenie jou bankrekening-details, kredietkaart-details of wagwoord invoer nie – dit sal aan skelms die kans gee om op jou bankrekening aan te teken deur die internet en beheer te neem oor jou bankrekening. Hulle kan dan hulself as begunstigdes byvoeg, al jou geld in hul rekeninge oorplaas en die bewyse wat hulle impliseer uitvee.

Hierdie tipe e-posse sal nooit ophou nie en dis bykans onmoontlik om dit te blok, omdat die kriminele hulle adresse, details en metodes op `n daaglikse basis aanpas. Die beste verweer is om hierdie e-posse in die junk mail leêr te sit, die domain waarvan dit gestuur word op die swartlys te sit en die e-pos dadelik uit te vee. 

Hoekom hou hierdie kuberskelms aan om hulle e-posse te stuur? Want mense val telkens daarvoor. In 2012 was Suid-Afrika die 5de hoogste land wat “phising” betref, net na Indië, Kanada, Amerika en Brittanje en `n beraamde  R14 miljoen is verlede jaar van Suid-Afrikaners gesteel.

 

[ARTICLE BY DAVID WILES]

Email

Tags: , , ,
Posted in E-mail, Security | Comments Off on SARS e-mail may fool usersSARS e-pos mag gebruikers bedrieg

« Older Entries
Newer Entries »