Stupidest Spam of the Week St Ethelberga

St. Ethelberga was a medieval church in Bishopsgate, central London but it was damaged by an IRA bomb in 1993.

It was rebuilt and restored and re-opened as The Centre for Reconciliation and Peace.

Some scammers are using the name of St. Ethelberga’s for their criminal activities, trying to cash in on the reputation for integrity.

The emails claim to be from St. Ethelberga’s Centre for Reconciliation and Peace and even give a website address which is correct for the centre.

However the email address of the sender and the separate email address to reply to are both Gmail addresses – not St. Ethelberga’s.

The scam is the basic 419 Advance Fee scam with a common twist in that the sender is claiming that you have not been sent the correct compensation for having been scammed previously.

“we have decided to step into the process of your fund transfer to enable your funds to be transferred within the soonest possible time without needing to pay all the huge sums of monies that are being demanded from you by the remitting bank, you are to get back to us immediately.”

It doesn’t say how much money I am owed but I have to reply with my full details including copy of identification document etc.

Just a typical scammer looking for confidential details to sell to identity thieves.

Do not trust such messages, even if they appear to be from a well known organisation.

To enter your email address and click on the subscribe button on top right to keep up to date with new posts.

February 20, 2021

Time-Wasters Update

An email claiming to be from eBAY tells me that my eBAY registration has been suspended because my credit card company has refused a request by eBAY to verify my registration. It’s a long message with sections clearly copied from genuine eBAY emails. The message sender is faked to be my email address and this is a trick only used by scammers trying to get their scams and spam through the email provider’s checks. An obvious simple phishing email to be ignored.

Minmoatathome has sent me an email asking me to read the attached document as it is the new agreement with me. Never heard of any such company or person – not surprising as it is a scam message hoping I will open the attached spreadsheet which is no doubt full of malware. No thanks.

A message from Santander bank tells me my account has an unauthorised transaction so is now limited, plus they have encountered difficulties in verifying my details so the account is also now disabled. Good job it’s from a scammer and not from Santander, but then I don’t have a Santander account anyway.

Team Support tell me off for not paying an invoice for $84,224 on time and I will be penalised if I don’t pay immediately. I just have to open the attached remittance for details. Companies used to be caught out by these sorts of emails demanding payment, but nowadays it would be surprising if even one in a million fell for this scam. No thanks.

Fake product testing scams are very common. This latest one claims to offer Phillips products to test and you get to keep the products for free. This is a simple phishing scam and the fact that the link to click is actually to bonovak.com makes this obvious. More than 99% of these kinds of offers are fake.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

February 19, 2021

Money Mail Fightback

The Daily Mail newspaper Money Mail department (also called the Consumer Champion) does a lot of good helping people to get their money back after being defrauded.

They claim that during 2020 they have managed to ‘claw back’ more than a million pounds for their readers, including for one victim of an investment scam who was conned out of £190,000.

That total also includes many women who realised their state pension was being underpaid.

The newspaper does a great job in championing people trapped by bureaucracy, badly trained customer service staff, insurance companies that stick rigidly to the small print, organisations that don’t care and retailers who wont accept faulty goods back.

If you’ve been conned in some way or let down by organisations then possibly Money Mail can help, however they have limited resources and can only take on a limited number of cases compared to the large numbers of people who do get conned in some way.

One of their key tasks is actually advising people on how to make a complaint and to make it politely and with full information as often, people’s response to aggressive complaining is to be aggressive back which is not what you want.

It is important to follow the rules on making complaints of any kind as you are far more likely to get a good response.

The Money Mail pages online are a useful resource for advice, warnings and also recommendations such as deals of the week.

Well done Money Mail.

If you have any experiences with these scams do let me know, by email.

February 18, 2021

Coronavirus Vaccine Payment Scam

The Coronavirus vaccine is being rolled out across the United Kingdom and many other countries and it will save a lot of lives.

Some scammers see this as an opportunity to take advantage of people’s fear, to steal from them.

The most common scam is where they contact people and offer the vaccine but take a payment in cash or by card. Once they have your card details, they may empty your account.

In the UK, all Covid-19 vaccinations are carried out by the NHS and there is never any charge for this. Even if the premises is a private company e.g. ASDA supermarket pharmacy – there is no charge.

You may be contacted by the NHS, your employer, a GP surgery or pharmacy local to you, to receive your vaccine.

– The NHS will never ask you for your bank account or card details.

– NHS staff do not arrive on your doorstep offering vaccines for payment.

– The NHS do not ask people to prove their identity by means of driving licence, passport etc.

Take care.

If you have any experiences with these scams do let me know, by email.

February 17, 2021

Zeus Malware

Zeus Virus or Zeus Trojan malware (also called Zbot) is a form of malicious software that targets computers running Microsoft Windows, although some versions have been created for other devices and operating systems. It is most commonly used for trying to steal financial data.

It was first detected in 2007 and has infected millions of computers across the world.

The creator of Zeus malware published source code in 2011, which made it possible for many other criminals to create their own versions.

How Zeus Works

Step1. It creates a botnet – this is a network of infected computers that are secretly controlled by a Zeus command server.

Step 2. The controlled computers then send information to the command server which can collate that for the criminals or can carry out various types of attacks on those computers.

Step 3. Zeus can also steal banking credentials from the machines it infects, by means of keylogging and other methods.

Zeus infects computers typically be means of

Spam emails
Social media campaigns
Drive-by website downloads

How to Protect Against Zeus Malware

The means of protection are basically the same as against malware generally, including:

Up to date anti-virus and anti-malware
Regular backups of all important information and data
Use of strong passwords
All software updated as specified by the supplier
Consider the use of two factor authentication where appropriate

If you have any experiences with these scams do let me know, by email.