Covid Travel Certificate Scam

There are numerous Covid scams and some of the scammers have moved off offering magic remedies and fake Covid tests to Covid passports and Travel certificates instead.

The email title is “IMPORTANT OFFICIAL Invitation for your Covid passport – Digital Covid-19 certificate (receipt #190934152220918221)”

Scammers seem to think that ridiculously long random numbers are somehow impressive.

The message contains paragraphs taken from the government website about vaccination certificates, to try to make it look genuine.

The message then claims that use of such a certificate means no need for PCR testing, quarantine or any other travel restriction or leaving or entering the country.

That bit is false of course even for genuine vaccination certificate holders.

The final part of the email is a link to click to accept the invitation and a link to click to reject it.

Both in fact lead to the same fake website designed to collect your personal information and send it to the scammer.

Make sure to use the correct government websites and to ignore such scam messages.

If you have any experiences with these scams do let me know, by email.

October 31, 2021

Stupidest Spam of the Week Dentist Referrals

“Kristian Johre” emailed the radio station using an email address invented by a scammer.

“Hello Anna”

“I’m reaching out as I see you are a dentist in your local area”.

Would anyone confuse a radio station with a dentist?

I think not.

We don’t have an Anna at the station and have nothing to do with dentistry.

Do scammers really send out such messages knowing that only a very tiny percentage of recipients could possibly be dentists?

Yes – when you send out enough millions of these messages you will probably get a few return messages (from people who are too dumb to be dentists).

If he was a dentist he would have an appropriate email address rather than the personal Gmail address he sends from.

He says he wants to partner up with 2 other dental practices in our area, but obviously doesn’t now what area that is or he would have specified it.

Finally he says he can provide us with 30 pre-qualified leads every month.

In these days of pandemic, dentists across the UK are overloaded with patients they haven’t got enough hours in the day to see now due to the rules on long gaps between patients at the surgery. The last thing they would want at the moment is more patients.

You’re a fake.

To enter your email address and click on the subscribe button on top right to keep up to date with new posts.

October 30, 2021

Time-Wasters Update

Dr. Kawamitsu Mamoru says he works for one of the world’s leading Bio pharmaceutical companies – which seems to have no name. He wants to share a profitable business proposal with us. His email address is at postmailbag which is a fake service so he is a fake as well.

A one line email from ‘Peggy Chan’ says “Hello, Peggy here, I have a profitable deal to share with you, reply if you are interested to know more”. It’s just a scammer’s message trying to see if the email addresses on her spam list are real or fake. She does this because the spam lists that scammers buy from other scammers are often mostly made-up email addresses.

Siddarth Sanjay sent in an email claiming that he bought items previously from us. He wanted to repeat the order so he was requesting a pro forma invoice in order to arrange for payment. But his email address of prvcy @ jetro.go.jp doesn’t match his name or company name and he has never bought anything from us, so is just a simple scam message.

Jenifer’s messages says ‘I would like to obtain some quotes of some work we are trying to get done’ but the email gives no details, no company address, no other contact details and her email address doesn’t match her name. An obviously fake message.

There are endless IONOS scam messages – the radio station sometimes gets several dozen per week. This latest one is getting a bit nasty as it claims “Your case number 54109815621299911 has been pending and you must take this seriously as your billing information does not match the card issuer”. It then claims all of our access will be stopped within 24 hours. Just a simple phishing message and we don’t have any accounts with IONOS.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

October 29, 2021

Google Safe Browsing Report

Safe Browsing is a service that Google’s security team built to identify unsafe websites across the web and notify users and website owners of potential harm.

Google’s Safe Browsing technology examines billions of URLs per day looking for unsafe websites.

Google say that approximately two billion devices benefit from Google Safe Browsing technology. When Google has identified a site as potentially harmful, Safe Browsing triggers a warning to users.

Warnings displayed per week

When a user of a Safe Browsing–enabled browser or APP attempts to access unsafe content on the web, they’ll see a warning page explaining that the content that they’re trying to access may be harmful.

If a site identified as harmful appears in Google Search results, there is a warning next to that site in the results.

How Google Notify Website Owners

If your website is identified as being harmful, then Google will notify you through the search console.

That details the steps to recover from an infection and gives examples of the specific code that has been injected into their site.

Further information available at https://transparencyreport.google.com/safe-browsing/search

If you have an opinion on safe browsing, do let me know, by email.

October 28, 2021

Chinese Domain Names

People all across the world access the Internet and websites.

The suffix .cn means a Chinese organisation.

At Brooklands Radio we get email warnings every so often from a scammer, with a message about Chinese companies trying to register our name brooklandsradio with the .cn suffix and they are concerned that we should have these domains rather than anyone else having them.

”It’s Very Urgent. Please transfer this message to your CEO.”

“We are the domain registration service for China. We have received an application from Hukai Ltd. for brooklandsraido as their Internet keyword and the domain names brooklandsradio.cn and brooklandsradio.com.cn, brooklandsradio.net.cn and brooklandsradio.org.cn.”

“But after checking we found this conflicts with your company name or trademark”

And so it goes on.

It’s all fake – they aren’t the domain registration service for China, no-one is seeking to acquire brooklandsradio.cn or similar and if they were it wouldn’t bother us anyway.

It’s just a scam to get us to provide confidential information.

Plus, they send these same messages every few months – can they not guess that this destroys any possible credibility

Do enter your email address and click on the subscribe button on top right to keep up to date with new posts.

October 27, 2021

Social Engineering in Scams

In this context, social engineering means to manipulate someone into doing what you want e.g. to type in login and password on a fake website so the scammer gets that information.

So, ‘social engineering’ is the methods used to trick people into doing what the scammers want.

It could be a phishing email asking you to urgently login in to your internet banking account or to call a support number as your computer has been infected with malware or a request from a company executive to urgently transfer money.

Generally, we prefer to trust people so if someone calls saying they are from your bank and they know your name and account – it’s easy to believe rather than to question everything. Maybe you answer their security questions and that gives them the details they need to access your account. It can be as simple and quick as that.

It may feel discourteous not to trust someone who’s called you, but scammers relay on this to get any with their crimes. If you are unsure then question and if appropriate end the call.

An Example Credit Card Payment Scam

A company selling telecom services receives an email from a possible new customer:

Hello,

This is Bill, I have just moved into the area and I need a new phone line.

Do you accept payment by credit card?

What information do you need in order to quote for the work?

Thanks

Bill

After a reply from the Telecoms Company confirming they do accept credit cards, , Bill’s next email sets up the conditions of the scam.

He claims he’s in hospital waiting on an operation. Lots of description to make it clear he cannot take phone calls or speak to anyone and very much needs help. He describes what he wants fitted in each room and then describes the removal company that is helping him to move while he’s in hospital and they can let the telecoms company in to do a survey if needed.

The purpose of this is to set-up the Telecoms company to accept an over payment by credit card from Bill then pay the removals company, as they cannot accept credit card payment and Bill can’t pay them any other way while in hospital.

This story is complicated and relies on the kindness of the Telecoms company to take the money and pass it on but also on their desire for business.

The telecoms company agrees, takes the credit card payment and then pays the removals company as per the instructions. For example taking £1,000 for their work up front and £2,000 to pay to the removals company.

It all sounds quite safe, but then comes the sting.

The card was stolen but not cancelled straightaway and when the credit card company do cancel it then will claim the £3,000 back from the Telecoms Company who will end up out of pocket for the work they’ve done but also for the £2,000 paid to the removals company which was also fake.

There are countless similar stories designed to get the punter to accept an over payment or to do something for the scammer.

The stories are sometimes rough and have spelling and grammatical mistakes – to elicit sympathy for the scammer and at other times the stories have been polished by repeated use.

NEVER accept an over payment.

Do you have an opinion on this matter? Please comment in the box below.