Author: comptroller

Is Your Brain leaky?

This is a recently popular scam topic which tries to convince everybody they have a leaky brain and ned help in fixing that leak.

Researchers at the University of Southern California  recently discovered leaky brain”

“If you’re over 30 then it’s 99% likely you have a leaky brain”.

That is a made-up statistic as there is no such thing as leaky brain despite some pill pushing scammers trying to make people believe it’s real.

 To make people believe they have such a problem, the emails list common symptoms such as forgetting where your glasses are or losing your wallet or forgetting appointments.

These are a normal part of life and not leaky brains.

There is supposedly lots of science behind this claim, but it’s rubbish – the science referred to is about rats with specific problems and does not apply to humans in any way.

Ignore this rubbish.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

Fightback Ninja Signature

NCSC Early Warning Service

The National Cyber Security Centre (NCSC) has set up an early warning service to help organisations investigate cyber attacks on their network by notifying them of malicious activity that has been detected in information feeds.

Early Warning is a free NCSC service designed to inform your organisation of potential cyber attacks on your network, as soon as possible. The service uses a variety of information feeds from the NCSC, trusted public, commercial and closed sources, which includes several privileged feeds which are not available elsewhere.

https://www.ncsc.gov.uk/information/early-warning-service

Early Warning is open to all UK organisations who hold a static IP address or domain name.

Organisations will receive the following high level types of alerts:

Incident Notifications – This is activity that suggests an active compromise of your system.
For example: A host on your network has most likely been infected with a strain of malware.

Network Abuse Events – This may be indicators that your assets have been associated with malicious or undesirable activity.
For example: A client on your network has been detected scanning the internet.

Vulnerability and Open Port Alerts – These are indications of vulnerable services running on your network, or potentially undesired applications are exposed to the internet.
For example: You have a vulnerable application, or you have an exposed Elasticsearch service.

Early Warning does not conduct any active scanning of your networks itself, however some of the feeds may use scan derived data, for example from commercial feeds.

How Early Warning works

Cyber security researchers will often uncover malicious activity on the internet or discover weaknesses in organisations security controls, and release this information in information feeds. In addition, the NCSC or its partners may uncover information that is indicative of a cyber security compromise on a network. The NCSC will collate this information and use this data to alert your organisation about potential attacks on your network.

Your organisation can then use the information passed on by Early Warning to investigate the issue and implement appropriate mitigation solutions where required. The NCSC’s website provides advice and guidance on how to deal with most cyber security concerns.

Sign up for early warnings – it’s free.

Fightback Ninja Signature

 

Common Travel Scams

Fraudsters stole £6.7 million from 4,700 unsuspecting holidaymakers and other travellers in one year according to ABTA.

The effects are often much more than simply stolen money with almost half (2,245) of victims saying that it also had had a significant impact on their health or financial well-being.

The most common types of travel fraud relate to the sale of airline tickets (47%) and accommodation booking (38%).

These are only the reported figures of course as many people do not report that they’ve been scammed.

The numbers of people reporting travel fraud to the police jumps in the summer and in December. This is a clear indication that fraudsters are targeting the peak holiday periods and the people heading home to visit friends and family.

The visiting friends and family market is particularly attractive to fraudsters offering fake flight tickets and package arrangements. Where destinations were reported by victims, 54% said they had been intending to travel to Africa and 24% to Asia.

The Most Common Travel Booking Frauds

  1. Holiday accommodation – holiday accommodation fraudsters set up fake websites, hack into legitimate accounts and post fake adverts on websites and social media.
  2. Airline tickets – where a customer believes they are booking a flight but receive a fake ticket or they pays for a ticket that never turns up. In 2017, flights to Africa and the Indian sub-continent were particularly targeted.
  3. Sports and religious trips– a popular target for fraud due to limited availability of tickets and consequently higher prices.
  4. Caravanning – Action fraud reported a number of consumers reporting being the victim of fraud relating to mobile home holidays.

Top tips to avoid becoming a travel fraud victim

  • Stay safe online: Check the web address is legitimate and has not been altered by slight changes to a domain name – such as going from .co.uk to .org
  • Do your research: Do a thorough online search to check the company’s credentials. If a company is defrauding people there is a good chance that consumers will post details of their experiences, and warnings about the company.
  • Look for the logo: Check whether the company is a member of a recognised trade body such as ABTA. If you have any doubts, you can verify membership of ABTA online, at www.abta.com.
  • Wherever possible, pay by credit card and be wary about paying directly into a private individual’s bank account.
  • Check documentation: You should study terms and conditions and be very wary of any companies that don’t provide any at all. When booking through a Holiday Club or Timeshare, get the contract thoroughly vetted by a solicitor before signing up.
  • Use your instincts: If something sounds too good to be true, it probably is.

Do Share this post on social media – click on the post title then scroll down to the social media share buttons.

Fightback Ninja Signature

Why Has A Large Sum of Money Appeared in My Account?

This is a variation on the standard push payment scams, which is where a scammer phones you, pretending to be from your bank and convinces you to move your money to another account for safety reasons.

This new version is a little more complicated as scammers are finding it increasingly difficult to get people to move their money – because this scam has become well known and the banks try to ensure that any such move is not due to duress of some kind.

John explains below how a large sum of unsolicited money appeared in his account and how the scam works.

One evening I got a notification from my bank that several thousand pounds had been deposited in my account, but I wasn’t expecting any payments.

I logged-in to find that a family member, Susan, had transferred the money. Confused – but with the words ‘scam alert’ quietly running through the back of my mind – I phoned Susan.

At that very moment, she had started calling me. I answered and she said in a panicked voice something along the lines of ‘my bank’s on the phone, they said my account isn’t secure, money has been sent to you, but you need to transfer it to a different safe account – they said you have to do it right now.’

A push payment scam begins

Susan was incredibly stressed and out of breath – and obviously on the receiving end of a push payment scam, though of course she didn’t realise it yet.

I told her to hang up the phone on ‘the bank’ immediately, find her bank card and call the number on the back and explain what was going on to her actual bank.

Meanwhile I called my bank to report the payment as part of a scam and ask them to return it to the sender. By the next day, Susan’s bank had frozen her account and reassured her that the money would be returned. My account had also been frozen.

Susan and I tried to piece together what had happened. We gathered that the scammers had somehow gained access to the account (possibly using malware that can read one’s screen to steal her two-factor code), and had made the transfer to me.

It seems the scammers were not able to add a new payee to the account (as presumably this would require greater scrutiny from the bank), so they picked an already existing payee at random to send the money to.

Then kicked in the tactics of a classic ‘push payment scam’; convince the victim that their account is compromised and that they need to send the money to a ‘new’ and ‘safe’ account, which of course is under the control of the scammers.

Huge emotional pressure

The difference here is that a third-party contact of the victim is involved – making it more likely for the scam to succeed. Why? Having several thousand pounds of somebody else’s money sitting in your account applies great emotional pressure to the third party.

It was hard enough for me to say ‘no’ when Susan had instructed me to forward the money on to a different account – ‘it’s their money after all, who am I to tell them?’ – but I suspected it was a scam.

But how many people who have no idea it’s a scam will simply do as their family member asks? Luckily I did say ‘no’. The money has been returned and both of our accounts unblocked.

I suppose the old ‘if it seems too good to be true…’ rule applies. So if you get a large sum of money randomly deposited in your account, contact your bank and think twice before touching it.

I hope sharing my experience here will help warn others and raise awareness.

Well done John.

If you have any experiences with these scams do let me know, by email.

Fightback Ninja Signature

Stupidest Scam of the Week Raspberries

Another magic way to remove all unwanted belly fat and achieve effortless weight loss without any need to diet.

This one uses raspberries.

Humans have been eating raspberries for a very long time and no-one has ever believed they cause massive almost instantaneous weight loss till this scammer “Coach Travis” came along.

“It can torch unwanted fat overnight”

“Lose 10 pounds in 10 days”

“Lose that weight no matter what your diet is”

To get this magic effect you just have to eat a quarter bowl of raspberries then do the magic ritual.

The scammer of course sells access to that magic ritual that supposedly makes all the difference.

You can just imagine a scammer sitting at her PC enjoying a bowl of raspberries thinking how can I convince people to believe my ridiculous story about raspberries then realising that she couldn’t be bothered and would send out the rubbish message as it was.

Pathetic.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

Fightback Ninja Signature