Computer Card Fraud and Computer Viruses:

What is "phishing"?

"Phishing" is the term used when spammers, pretending to be your bank or credit card company or mortgage lender, ask everyone on a spamming email list to "update" their personal information.

An example of a phishing expedition email is copied below. Please note that the link given SAYS that it will take you to a sub-page of the USBANK.COM web site. (It does not.) The linked page had already been removed when this particular email arrived but, no doubt, it looked like a US BANK site and used their logo.

The real USBANK.com web site explains that it will never ask for sensitive information like passwords, social security numbers or even account numbers by email. Don't rise to this bait!

US Bank Phishing Email

Credit Card Fraud & Identity Theft

This attempt to harvest valid credit card numbers for fraudulent useage was really very well done.

Visa Credit Card Fraud

The original arrived with the graphics and crosslinks of usa.visa.com/index.html. Even the ATM Locator worked!

So, how did we recognize it as fraud?

  1. It just didn't 'feel' right. How likely is it that Visa would know my email address, but not credit card #? That they would write thousands of credit card holders an email that says "oops, remind us of your credit card number, please"?
  2. The verification form was not secure. It started with "http:" where it should have been "https:" Visa policy is to yank the Merchant Account from any business that receives its credit card numbers in the clear like that.
  3. The data collection form used a blind IP address rather than staying at usa.visa.com/whatever...
  4. On revisting the email about the third time, I noticed that the writing didn't use proper English punctuation or capitalization.
  5. A backward trace on the location of the verification form timed out switching through a Korean host.

Finally, we reported this bit of fraud to Visa and to the F.B.I.

If you have already filled out a 'verification of your credit card information' you should call the number on the back of the card and report it stolen, immediately. It has been stolen, even though it is still in your hand.

Virus masquerading as an MS Patch or Upgrade

This is a virus making the rounds, especially for those with KU connections. If you see the subject line "MS Program Security Section" or something similar which seems to come from Microsoft as a recommended patch, you should delete unread. However, if your anti-virus program is up to date, the attachment will be cleaned and do your computer no harm. Note the authenticity of Microsoft graphics and links!

Masqueraded Virus

Back to top.
 

Important

Viruses hide in File Sharing as well as Email

Internet file-sharing sites, like Kazaa, are known to have the MyDoom virus posted for download under misleading headings, including "Winamp5" and "ICQ2004-final."

Newer worms are using simple and apparently innocent subject lines for email delivery, including "hi", "Hello", "Error" or "Server Report". Messages in the body include: "Mail transaction failed. Partial message is available" and "The message cannot be represented in 7-bit ASCII encoding and has been sent as a binary attachment." Many times the .exe extensions which were the give-away that this could be a virus are masked by ".zip" and even ".txt" extensions.

In some cases, the worms are even able to replicate onto your computer through the Preview screen of Miscrosoft's Outlook mail program - so you can be infected without even opening the suspicious email.

Up-to-date virus protection is more critical than ever.

 

9349 W. 87th St.
Overland Park, KS 66212
Phone: 913/385-1551
Toll-Free: 888-NET2BIZ
(888/638-2249)
FAX: 913/529-4450

Copyright © 1997 - 2008 Net2Business, LLC