Tag: phishing

September 23, 2020

Phishing Tackle Website

Phishing Tackle at https://www.phishingtackle.com/ offer a range of online courses to help keep businesses safe from Phishing scams. These scams are where scammers send out messages (usually by email but can also be by text and phone call) claiming to be a trusted organisation e.g. HMRC, local council, Marks and Spencers, Nat West Bank, The Police and so on. They are after your personal information and especially login and password information and financial details.

Over 90% of data breaches are caused by an end-user clicking on a phishing email and Phishing Tackle say they reduce the risk of people clicking on phishing emails.

Phishing Tackle’s automated online security awareness training, simulated phishing and policy management platform reduces the risk of end-users clicking on phishing emails by over 90% – that’s the claim.

Website resources include:-

A click-prone test
Domain spoof test
Phishing quiz

And lots of information on various types of online scams.

Free Phishing Awareness & Training is available to not-for-profits in some cases.

They also offer a manged service to protect businesses.

The website is a good resource for those looking to protect their business from Phishing scams

If you have any experiences with phishing scams do let me know, by email.

October 10, 2019

Means of Identity Theft

Scams reported to the ACCC (Australian Competition and Consumer Commission) involving identity theft or the loss of personal/banking information have cost Australians at least $16 million in 2018 year and this figure is likely to be just the tip of the iceberg.

Four in 10 Scamwatch reports to ACCC in 2019 involve attempts to gain information or the actual loss of victims’ information.

“If you think scammers might have gained access to your personal information, even in a scam completely unrelated to your finances, immediately contact your bank,” said ACCC Deputy Chair Delia Rickard.

The most common ways scammers obtain personal or banking information are:

phishing emails and text messages which impersonate banks or utility providers seeking your login and password details
fake online quizzes and surveys
fake job advertisements
remote access scams in which the scammer has direct access to everything on your computer
sourcing information about you from social media platforms
direct requests for scans of your driver’s license or passport, often in the course of a dating and romance scam

“No one is really selling an iPhone for $1 or rewarding the completion of a survey with expensive electronic goods or large gift vouchers. They are scams to get your confidential information,” Ms Rickard said.

With the information, scammers can empty their victim’s bank accounts and take out tens of thousands of dollars in bank loans under victims’ names.

Lost personal information also leaves victims more susceptible to future scams as scammers will use the information to seem more convincing in cold calls to perpetrate further scams.

If you have any experiences with identity theft do let me know, by email.

April 5, 2019

The Anti Phishing Club

The website is at http://antiphishing.club/ and twitter handle is @antiphishclub

The Anti-Phishing Club say that their website is dedicated to everyone on the World Wide Web, who wants to enjoy surfing without the harassment and fear caused by individuals committed to stealing information and money.

The Club promises:

To promote awareness of phishing and social engineering activities.
To try to provide the necessary tools and techniques to assist with staying safe online.
To provide extra resources on our links page.

They hope that you will find the information useful and that it will keep you safe online.

The website publishes articles (mostly lists of the top phishing scams), advice on how to spot phishing scams and a links page including information about Virtual Private Networks.

Their twitter feed is used for tips on staying safe online, protecting your privacy online and similar topics.

If you have any experiences with phishing do let me know, by email.

The Anti Phishing Club

March 20, 2019

What is Spear Phishing

Phishing is where the scammer tries to obtain sensitive information such as logins, passwords and payment card details by pretending to be a trustworthy organisation e.g. your bank or local council or a major retailer.

This kind of attack is usually carried out by email or instant messaging and often directs the user to enter confidential information at a fake website, which looks identical to the expected legitimate site.

When phishing is targeted at specific individuals or companies, then it is called “Spear Phishing”.

How Spear Phishing Works

For example. An email arrives, claiming to be from a trustworthy source and the sender knows your full name, job title and department for example. The scammer has done their homework to get this information about you to give the scam a higher chance of success.

A link in the message takes you to a bogus website made to look like the expected website.

The fake website looks legitimate but only exists to take the users confidential information and pass it to the scammer.

These emails often use clever tactics to get victims’ attention. For example, the FBI has warned of spear phishing scams where the emails appeared to be from the National Centre for Missing and Exploited Children.

Cyber criminals employ individually designed approaches and social engineering techniques to effectively personalise messages and websites. As a result, even high-ranking targets within organisations, like top executives, can find themselves opening emails they thought were safe. That slip-up enables cyber criminals to steal the data they need in order to attack their networks.

How to Protect Yourself

Attackers utilize various social engineering techniques that leverage recent events, work-related issues, and other areas of interest pertaining to the intended target. Don’t publish any private information about yourself.

Training employees to spot misspellings, odd vocabulary, and other indicators of suspicious mails may reduce the chance of people being caught out by these scam attacks.

Do enter your email address and click on the subscribe button on top right to keep up to date with new posts.

February 23, 2019

Time-Wasters Update

Sovereign Weight Alliance have a new weird method for turning your body into a fat burning machine. And the first 350 takers get a discounted weight loss bundle. Maybe the bundle is just a roll of duct tape so you can tape your mouth shut to stop that pesky food getting to your stomach. There’s no end to the scammers promising magic weight loss – but they are all fake. Exercise more and eat a healthier diet to lose weight.

“The Stylish and Discreet Weapon Bad Guys Don’t See Coming – Get 1 Free”, so the email claims. What could it be? A Ferrari? A Shotgun? A guided missile? An Avalanche? Who cares? It’s all just rubbish but presumably some people fall for this. Turns out to be a concealed knife. It is sad that people sell these things.

An email to someone at the radio station who sadly died some years ago insists that he update his Netflix account payment details. Just the usual scammer rubbish.

Trish Goff wants me to review her new design of hair brush. She says she is reaching out to me because I am a beauty enthusiast. The Fightback Ninja has never been accused of being a beauty enthusiast and definitely does not need a hairbrush. It’s all fake of course – she just wants your personal details to sell to other scammers.

“Harper Smith” of autotechranking.online wants to offer SEO services, but his grammar is a bit of a let-down. “Want more clients and customers. We will analysis your website”. You can analysis anything you want but you certainly won’t get any work from us.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

November 10, 2018

Time-Wasters Update

“Fat Melting Elixir”. Drop 37 pounds in 20 days. This is all possible with a soup detox so the email claims. The soup trains your hormones to burn more fat as you get older while eating as much as you want. Sad pathetic lies from a sad pathetic scammer.

An Act Now alert from Nat West. My account has been suspended as it may have been accessed from a previously unrecognised location. I don’t have a Nat West account so it doesn’t bother me.

A confidential fax sent to my email address. Nope – just a fraudster trying to get me to open an attached file. No thanks.

Greg Lawrence says he is an SEO consultant i.e. expert in getting websites to the top of Google searches. He lists a whole set of problems with my website and wants to help me to get to the top of those searches. But his list includes:-

Low online presence for many keywords. True but irrelevant. It’s not worth concentrating on every possible keyword.
Stumpy image optimisation – Don’t know what a stumpy image is and couldn’t care less.
Deprived website – does that mean my website had a deprived upbringing? Or is it a misspelling maybe?
Inappropriate social media campaign – this moron is desperate to put anything down as a problem but simply stringing words together to make meaningless sentences won’t convince anyone with a more brain cells than an amoeba.

The sender is a loser who thinks he can make money from people who know even less than he does.

Good day says Mauro, who thinks my resume is very attractive and has a vacant position in his company that is ideal for me. Apparently, it can be part-time or full-time and pays up to $7,000 per month. There is no company, and no jobs, just a chancer trying to steal from people genuinely looking for job opportunities.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.