Posted by: David Harley | July 4, 2016

ESET Ireland’s phishing warning

Urban Schrott – for ESET Ireland – warns of phish attacks targeting users of Irish utilities: Irish Water and Electric Ireland customers targeted in latest online scams.

David Harley

Posted by: David Harley | June 7, 2016

Scamming the would-be scammer

Every so often I find myself dealing with a blog comment by someone claiming to offer a blank ATM card that can be used to hack any ATM to get an unlimited supply of free money. And every time I wonder whether I ought to blog about it, but it’s never seemed a high priority. After all, it’s pretty obvious that if such a thing actually existed, it couldn’t possibly be legal, could it? Even the scammers who offer it tend to admit that it’s illegal – one recent example tells me that it’s nevertheless untraceable, since it also stops the CCTV camera from ‘detecting’ you. It also lays golden eggs and predicts the winner of the Grand National. (I made that last bit up, but it doesn’t seem that much more far-fetched.)


So who cares if people who don’t have a problem with robbing banks get caught out by a scammer? Well, maybe some of the potential victims are desperate rather than intrinsically amoral.

It’s worth noting, maybe, that 419 scammers are often frank about the fraudulent nature of the transaction they’re proposing – without making it clear, of course, that it’s their ‘partner’ in crime who will be scammed, not the government or bank – but attempt to justify it by claiming that the money they’re offering would otherwise be misused by the organization from which it’s stolen. The perpetrators of this scam will sometimes make somewhat similar justifications – ‘because the government cannot help us so we have to help our self’ – and it’s often quite hard to feel much sympathy for a government agency or a bank… Of course, the illegality of the transaction does make it difficult for the victim to report it when they realize they’ve been scammed.

It’s sometimes assumed that this kind of scam is a 419 – I don’t know that this is always the case. They’re usually badly written, but not in the same stilted way that characterize so many 419s. Here’s an example of a blogger who found a scammer who certainly seems to be based in Nigeria, though.

So here’s the bad news (though it’s good news for those whose hard-earned cash helps to keep the banks afloat). There ain’t no such card. If you have a few hundred bucks to spend on something so improbable, there’s a scammer someone who’ll gladly relieve you of it and no doubt will feel quite justified in doing so.

David Harley



Posted by: David Harley | April 12, 2016

Symantec threat report

Extract from a blog article for AVIEN: UK threat prevalence – Symantec

John Leyden for The Register has summarized Symantec’s latest Internet Security Threat Report, and focuses on UK-specific figures for threat prevalence: Spear phishers target gullible Brits more than anyone else – survey; Ransomware, 0days, malware, scams… all are up, says Symantec.

Longer extract added to the tech support scam and ransomware resources pages, but there are a few thoughts in the longer article that didn’t really fit either of those pages.

I haven’t checked out the report directly as it requires registration, and I’m fussy about giving my details away where marketing information is mandatory.

David Harley

Posted by: David Harley | March 24, 2016

Tech Support Scammer, not your ISP

Jérôme Segura has blogged for Malwarebytes about a somewhat innovative tech support scam campaign: Scammers Impersonate ISPs in New Tech Support Campaign.

The scam is pushed by malvertising which

‘detects which Internet Service Provider (ISP) you are using (based on your IP address) and displays a legitimate looking page that urges you to call for immediate assistance.’

Added to the tech support scam resource page at AVIEN.

David Harley

Posted by: David Harley | March 21, 2016

Sonia denounces Rahul, we denounce a virus hoax

At some length… I’ll probably come back to the topic of virus hoaxes. They haven’t disappeared, but tended to migrate from email to social media. Meanwhile, here’s my article for ITSecurity UK.

Virus hoaxes still thrive while ‘Sonia disowns Rahul’

David Harley

Posted by: David Harley | February 20, 2016

Support Scams: Now what do I do?

It suddenly occurs to me that while I usually flag my articles on support scams to readers of this blog, I hadn’t mentioned an article I recently published on the ESET WeLiveSecurity site.

Support scams: What do I do now?

I returned in this case to the theme of what to do if a scammer actually gets a foothold on your system, because I still see a number of blog comments from people worried about the implications of such an intrusion and wondering what action they need to take.

David Harley

Posted by: David Harley | February 2, 2016

Email Scams in Ireland

These days, I don’t even try most of the time to keep track of spam/scam/phish emails, but here are a couple of notable recent examples from my colleagues at ESET Ireland:

What were the main email scams in Ireland in January?

I think it’s safe to assume that there will be similar mails seen in other regions.

David Harley

Posted by: David Harley | January 29, 2016

Facebook Scams

Here are a couple of articles on Facebook scams I thought it was worth flagging:

David Harley

Posted by: David Harley | January 29, 2016

TalkTalk and Wipro still TalkTalking?

[Reblogged from the AVIEN blog]

A slightly opaque story about TalkTalk and arrests at the Indian call centre it’s been using to lighten its support load.

Adding to AVIEN’s Support Scam Resource Page, though it’s not clear exactly what the scam was from TalkTalk’s statements.

David Harley

Posted by: David Harley | January 28, 2016

Crashing Safari: beware of shortened URLs

Already posted to Mac Virus, because of the particularly severe effect on Safari. However, the warning about shortened URLs is true of any system.

David Harley

Mac Virus

Australia’s Stay Smart Online has issued an alert warning of how a Social media prank crashes Apple Safari. The browser freeze is caused by a snippet of looping JavaScript that keeps calling the history.pushState() method in the HTML5 API. The attack – as far as I’m concerned, it’s a Trojan, not a prank, even if its effects are usually inconvenient rather than critical (though they could result in lost data) – does affect other browsers to an extent, but Safari seems to be particularly susceptible (on OS X and on iOS). According to 9To5Mac, it freezes on Macs and may require a system restart to recover, while

“On some iPhones and iPads, the glitch may cause your iOS device to reboot.”

Stay Smart Online observes that:

  1. Current Chrome tabs will stop responding but the web browser will continue to work
  2. Firefox will catch the malicious code and ask if the…

View original post 62 more words

Older Posts »



Get every new post delivered to your Inbox.