Author: comptroller

January 24, 2019

Dublin’s Tram System Website Ransomed

The website for Dublin’s tram system (Luas) was hacked and the attacker demanded a ransom of just one bitcoin (worth about $4000).

The attacker wasn’t after money but to teach the authorities a lesson for ignoring her advice after warnings about weaknesses in their security.

“You are hacked,” the message read. “Some time ago I wrote that you have serious security holes.

You didn’t reply.

The next time someone talks to you, press the reply button.

You must pay one bitcoin in five days.

“Otherwise I will publish all data and send emails to your users.”

It then listed an address to send the bitcoin. The message was subsequently removed.

The company tweeted: “The Luas website was compromised this morning, and a malicious message was put on the home page. The website has been taken down by the IT company who manage it, and their technicians are working on it.

“We apologises to all Luas customers for the inconvenience,” Luas added on Twitter.

Luas carried 37.6 million people in 2017 and transports 100,000 passengers on average daily.

A ransomware attacker with a soul. Let’s hope the authorities take notice of the security weaknesses and don’t get caught out again.

Do you have an opinion on this matter? Please comment in the box below.

January 21, 2019

The Operator Billing Scam

Many people have reported mysterious mobile phone charges that appeared on their monthly bills. They only realise they’ve been signed up to a service like a gaming or fitness app, at a cost of several pounds a week, when they check their bills. Some of them didn’t notice the payments for months or years.

Phone paid services often use pop ups that appear, for example when the consumer is watching a video on the internet. The consumer will click a button that says something like ‘subscribe now’, then another button that says something like ‘confirm’.

The Phone-Paid Services Authority (PSA) state that a minimum of two clicks are required in order to subscribe to a phone paid service.

Regulations also require that the subscription is confirmed via email or text. Some people say they were sent a text- but thought it was a spam message as they hadn’t signed up to any service.

The scams work through so-called direct carrier billing, a system operated by the four major networks – O2, Vodafone, EE and Three – that allows consumers to purchase goods or services on their mobiles at the click of a button without entering any card details.

The PSA’s own annual review showed that around a third of the 22.5 million people who used the system in the last year had lost trust in the service.

An estimated £220m was paid for services through phone bills last year and the amount is expected to grow by 26 per cent a year.

How to Block These Charges

You can tell your operator that you want a “charge-to-bill bar” placed on your account. You may already have a “premium-rate services” bar but that does not stop these charges.

Mobile operators Three and GiffGaff do not allow customers to bar charge-to-bill so if you are with those providers you should be extra vigilant for pop-ups online that mention signing up to any kind of service and for any signs of charges on your mobile bills.

If you have any experiences with scammers, spammers or time-waster do let me know, by email.

January 20, 2019

Stupidest Scam of the Week – Gun Magnets

“Store your gun safely and securely on any surface with this gun magnet that holds up to 25 lbs.”

This is a serious advert and suggests you can keep your guns anywhere – under your desk, on the side of a bed, in your car, under a table etc.

“The IronClad gun magnet provides gun owners the ability to conceal their weapon and to fast draw it in seconds when needed”.

Maybe people like spies need to have guns hidden under tables, on the side of a bed or in their car, but no-one else.

Apart from law enforcement professionals, having guns available outside of locked containers – ready for fast draw is to invite accidents and death.

Are people really this crazy? Perhaps so. The people selling such devices must know they are contributing to the death rate but presumably don’t care as long as they make money.

That’s very sad.

If you do have guns then keep them securely locked away.

If you’ve enjoyed this post or found it useful then do share – click on the post title then scroll down to the social media share buttons.

January 19, 2019

Time-Wasters Update

The email claims a female scientist has discovered a cure for Herpes but it could be banned and the website selling it taken down at any time. Scammers seem to love these conspiracies – anything new that helps people will be banned by big business so you have to get it now. Maybe it’s an American mind-set as it’s hard to see most other cultures falling for this line. There is no magic cure, just a scammer after your money.

A message from Barrister Jose Pedro Perez-Llorca tells me he has a business proposal for me and I just need to reply to him to get the full details. If he is a barrister and that is his real name then why is his email address susaud @ su.add.gq. He’s just another sad pathetic criminal to be ignored. Bit of a cheek sending his scam message directly to the Fightback Ninja.

There are free Access Visa cards available from “Free Access Visa Card” but their email address is actually diabetesreport.bid so this is just a lazy scammer reusing an email address used in a diabetes scam and now repurposed to catch very stupid people who want free credit cards. Obviously there are no such credit cards. If you do want a credit card go to a reputable bank.

A very short email from “Life is Life” that says “Good morning. I perform the list of positions which is necessary.” And there is a link to click. Cannot even imagine what phrase that was meant to be but no way would I click on the link.

“This Smart scarf was seen on Oprah”. Do me a favour – smart scarf. How dumb an idea is that? The email is from backhurting.bid which is an obvious scammer address.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

January 18, 2019

Neighbourhood Alert

The website is www.neighbourhoodalert.co.uk/

Neighbourhood Alert provides an advanced community messaging system solution for police forces, local authorities and Neighbourhood Watch.

The Neighbourhood Alert message system was initially developed to complement the existing Neighbourhood Watch service in the area and is now used by more than 30 police, fire and rescue, local authority, utility and national organisations throughout the UK.

The Alert database grew to over 500,000 members in June 2017.

It has a database of members who want to receive relevant alerts and there’s now over 50,000 members.

Registered Members 644,772

Registered Businesses 24,902

Businesses Messages Sent Today216,722

The Neighbourhood Alert system is an online, secure community messaging system that allows authorised administrators to log in and send messages to registered people in the community who have chosen to receive them.

There is also a survey tool (Community View),that helps the police to gain a real-time understanding of opinions from any community group you choose, by incorporating Experian’s Mosaic data.

There is also Social Sense which is an integrated solution that enables digital media teams to take control and manage activity across multiple social media accounts.

There is a smart phone APP providing registered users with quick and easy access to the latest alerts, as well as the ability to configure their account settings. It allows you to receive messages based on your location in real time, via push notifications.

If you have any experiences with scammers, spammers or time-waster do let me know, by email.