Sep282010

The evolving “LinkedIn” threat

A couple of days ago I posted a warning about false communications pretending to be from LinkedIn.  That threat continues and evolves with a variation on the threat arriving in my email today.  See the screen capture below.  Everything about this email on the surface looks legitimate, except of course for the fact my name is not “Dawn”, nor am I expecting any payment from any of my LinkedIn connections.

As always, your best defense is your own common sense.  If anything arrives in your email that just doesn’t “smell right”, chances are it’s not right and potentially carrying a nasty payload just like the ZIP file attached in this email.

Always make sure your system has the latest critical updates from Microsoft.  Always make sure you have current AntiVirus and other malware detection systems active and most importantly, CURRENT and up to date with the latest threat definitions.  The Internet is a seedy place, browse safely and trust no one.

 

Email carrying malicious payload



[KickIt] [Dzone] [Digg] [Reddit] [del.icio.us] [Facebook] [Google] [StumbleUpon] [Twitter]

Tags: , , , , , ,

E-mail | Permalink | Trackback | Post RSSRSS comment feed 0 Comments

Sep252010

New “LinkedIn” threat

Published by dave at 11:43 AM under Current Threats | Malware | social media | Daily Tips

Lately I’ve been receiving a lot of email “invitations” to connect with people on LinkedIn, a popular career networking site.  There are three glaring problems which should raise your suspicion immediately: 1) the emails are arriving at an email address that I have not associated with LinkedIn, 2) I've never heard of the person "making the request", and 3) the URL to accept the invitation is to a phishing site. 

This is a classic case of social engineering to either scam you or damage your computer.  Notice how in this photo when you hover over the “link” to connect, it is directing you to a site other than LinkedIn?  Best bet anytime you receive a message like this is delete delete delete.  Don’t let curiosity get the better of you.

 

LinkedInScam



[KickIt] [Dzone] [Digg] [Reddit] [del.icio.us] [Facebook] [Google] [StumbleUpon] [Twitter]

Tags: , , ,

E-mail | Permalink | Trackback | Post RSSRSS comment feed 0 Comments

Apr082010

Today's Tip: Danger, false security ahead

OSX Logo"Bad data is worse than no data as it induces one to proceed in the wrong direction with a false sense of confidence." Unknown

The last few days I have been involved in some spirited debate with regard to the new iPad. People who have them are generally "in love" with the device. People who write techonolgy reviews for a living, not so much. The inability to multi-task, absence of support for Flash (sorry, no Farmville on your iPad), no USB port or camera for video conference are the common complaints that render the iPad little more than a beautiful and expensive gizmo to show off and establish your status as someone "cool".

Of course this has once again stirred the MAC vs. PC debate. The battle cry of MacNoids everywhere (other than "it's so easy to use") is "I love my Mac because I don't have to worry about Viruses and spyware like on a PC".

I was browsing Facebook today when I came across the gem at the top of this post. There is an antecedent to that maxim, penned by Arthur Conan Doyle, and placed on the lips of Sherlock Holmes: "It is a capital offense to form theories before one has data. Insensibly, one begins to twist facts to suit theories instead of theories to suit facts." Now I'm not here to suggest you should NOT own a MAC, nor am I suggesting one platform is superior to the other (MAC vs PC). What anyone contemplating the purchase of an Apple product NEEDS to know is the data you may have read or heard that "MAC is more secure than PC" is BAD data and you would do well to proceed with caution on BOTH platforms. As the MAC footprint grows, so too do the threats and malware targeting OSX.

Windows 7I repaired two PC's in the past week that were poorly maintained and severely compromised with rogue security software. Some might say this is proof the PC is less secure. That's called "twisting the facts to suit the theory". In each case the problem was not the PC (the hardware), it was not the operating system. The problem was a combination of exposing the system to known dangerous parts of the Internet (P2P networks and torrents) while failing to run regularly updated security software from a reputable provider, failure to properly update the operating system against known vulnerabilities, and failure to recognize social engineering at it's finest (fake security pop ups previously discussed on this site). Of course all three contributing factors are the responsibility of the User or Owner of the computer, but taking personal responsibility is not popular or in fashion with so many people. Easier to blame it on that pesky Bill Gates! If not for the failures noted, there would have been no repairs necessary. Penguin

As I have stated before, anyone who will fall for a phishing scheme, or who can be tricked into installing rogue security software, can be tricked regardless of their preferred computing platform. New vulnerabilites in OSX, Windows, and Linux are discovered every day.

The moral of the story? Don't proceed towards Macintosh with a false sense of security based on the "data" you've read or heard... proceed with an abundance of caution every single time you sit down to see what your Facebook and Myspace friends are up to, irrespective of your preferred computing platform! YOU are resonsible for the health and protection of your computer, not Steve Jobs, not Steve Ballmer, not Linus Torvalds.

[KickIt] [Dzone] [Digg] [Reddit] [del.icio.us] [Facebook] [Google] [StumbleUpon] [Twitter]

Tags: , , ,

E-mail | Permalink | Trackback | Post RSSRSS comment feed 0 Comments