Tag: scams

Ooohhh…this scam almost got me

Carl Setzer1 Comment
scam alert letting text on black background

I just got this email a few minutes ago, ostensibly from RyanAir:

Man, this one looks pretty legitimate. The things that caught my attention? #1, I haven’t booked any travel with RyanAir.

#2, the email is one I haven’t used in ages, but it is set to auto-forward to me main one. But it’s not one I would’ve used. Perhaps I used it in the past with RyanAir? Nope. Never flown with them.

But what if, maybe, just maybe, it was someone else, some other Carl Setzer, who accidently used this email that was off in some weird capacity. Hmmm…

Oh, well if someone made a mistake, I should click on this link, right? Be nice and help a chap out, right? Knowing how many people want to be nice, I opt to hover over this link, which leads me to the big ol’ red flag

Check out THIS url:

Yep, my friends: classic phishing!

Now, you don’t need to dig around like I did. I did so mostly for the academic exercise. My first impulse was to mark this as phishing immediately, but I just was too curious.

For most folks, just mark as spam and ignore these things. Do NOT click on any of the links!

So, the world of spams & scams is evolving. Be aware and be safe, my friends!

Ah, Yes…Another Scam

Carl SetzerLeave a comment
scam alert letting text on black background

I posted this article to Facebook last week. My son let me know he received one that day. And I won this lottery today!

This one is text based. Watch for these E-Z Pass texts that state you have an unpaid toll. Well, it’s fraudulent. As always, DO NOT CLICK THE LINK! Report it as a scam or junk text, then delete it.

Oh, and it’s more than E-Z Pass, but also SunPass, Peach Pass, EZDriveMA…and I’m sure others. And I expect this list will expand as the scammers find other passes to spoof.

I expect this one will get larger before it fades into the next scam.

Be safe my friends!

An uptick in Facebook & Instagram Spam Messages

Carl Setzer1 Comment
scam alert letting text on black background

Last June I wrote about a scam running through my Facebook accounts. Well, I’ve now seen this a few times over the months. However, starting overnight last night, several of the pages I managed have been inundated with the message. I think I’m up to 7 or 8 on one page alone.

Here’s a screenshot of the message:

Meta Scam message: We have detected that a Facebook page associated with your Instagram account may be violating Meta policies.

Ultimately, it’s a phishing scam. If you click on the link, it’ll either ask you for your credentials or download malware…or both. Dear friends, DO NOT CLICK ON THE LINK!!!!

Part of me takes delight in reporting these…people…for spam and getting their accounts blocked. However, in the end, it’s just a game of whack-a-mole. Clearly, they are able to create new accounts as fast as they get deleted. A part of me wants to kick these folks in the gonads.

Anyway, I wanted share this ASAP and I’m sure there are some people alarmed and, thus, more likely to click on the link. Please be safe out there in cyberspace!

A new (to me) Facebook Phishing Scam

Carl Setzer3 Comments
scam alert letting text on black background

So, one of the accounts I manage got this message today:

A quick search of the message language confirmed to me that it’s a scam. The biggest clue was the “bio.site” link. Very phishy. The clunky sentence “Your Facebook page is scheduled for permanent deletion due to a post that has infringed upon our trademark rights” was another clue.

This article was pretty high up on the Google SERP and is pretty solid on it’s analysis and advice.

If you get one of these, first and foremost: don’t click the link! If you’re at all concerned, reach out to Facebook directly.

So, I filed it as spam and reported this account. My contempt for scammers is rich and deep, so I hope for some consequences. However, I recognize these folks will simply open another account when/if their accounts get locked. It is a rather annoying game of whack-a-mole. One that will probably continue to be a focus of mine for the foreseeable future.

I Received A Phishing Phone Call Today: Beware, My Friends

Carl Setzer

This afternoon my office received a phone call from “800”. I had just finished one project and was reviewing my notes when this popped up. In a good place to deal with random distraction, I opted to grab the call. As the tech-savviest of my office mates, I’m glad I got this one.

Female Robot Voice: “Your Windows license has expired and your account has been compromised…” at which point, I hung up. Now, a malicious part of me thought I should’ve played this up and trolled the phisher, but, no. I do have a ton of real work to do. Stuff that brings money into the company. But I really did want to disturb these creeps.

It’s not the first of these phishing phone calls I’ve received, just the first one like this one. Different verbiage, different delivery mechanism, but, in the end, the same deal.

So, no, this isn’t legit. No, Microsoft isn’t monitoring YOUR computer. Oh, and Windows licenses don’t “expire”. Last but not least, whether it’s a phone call or a pop-up on your browser, your machine probably isn’t compromised. Exception: if the antivirus software YOU installed is telling you this, it might be legit. In that case, along with anything repeatedly popping up on your computer, consult an expert.

And the Google Docs Phishing Scheme Continues

Carl Setzer

I just got this message from my college (taking an AutoCAD class at Edmonds Community College). It’s the Google Docs phishing scam. You get an email from someone you know that has “shared a document on Google Docs with you”.

Rule #1 with this sort of thing: DON’T CLICK THE LINK!

This has been around the interwebs for some time. The very first of these I saw, I called the sender and asked. And I’m sure you know what they said.

Now, if someone says they got one of these from you, it’s possible your account’s been compromised. It’s also possible you’re being spoofed (someone forged your email address in the “from” spot…it’s pretty easy, actually). I recommend immediately changing your password, since it won’t hurt. You should be regularly changing your passwords, anyway (yeah, yeah…I know…).

Anyway, live your digital life with a healthy dose of suspicion. Trust but verify, and any of a number of other security-esque cliches.

Clearly this is starting to grow again. Here are two articles to explore this fun further (both posted today)

Practice safe computing!

 

 

Subject: “<some name you may recognize> has shared a document on Google Docs with you”

Message:

 

“_______ has invited you to view the following document:”

 

 “Open in Docs” <—– DO NOT click on this link!

————————————————————————————————————————————-

Do not open the document! Immediately mark the email as Spam or Delete it. This is a widespread phishing scam targeting Google Apps. If you accidentally opened the Doc, your email account may be compromised, and your email address will continue to send the scam to everyone in your contact list. Several people at EdCC have already been fooled by this scam, so you may receive this email from someone familiar, such as your instructor, staff at EdCC, or other students.

We urge you to change your password and visit your account security page in EdMail to verify the applications that have access to your data in Google Apps.