Hacking into and messing with phone systems has always been an interest to criminals. There are many scams to try to either get free phone calls, or to trick you into calling pay services. This one comes directly from AT&T. The basic idea is that the criminal tricks you into forwarding your phone to one of their lines. Here’s how it works:
You may receive an automated message on your telephone that says you have won a prize or money. The message directs you to dial a 2-digit code preceded or followed by the * or # key (such as *79 or 72#), and then an 800 number to claim your prize. When you dial the number, you are not connected to anyone. What this procedure has done, though, is program your telephone to forward your calls to a long distance operator. Con artists can then call your number, be forwarded to the long-distance operator and place calls that are billed to your home telephone number.
Security Tip: Know the numbers used for call forwarding from your local telephone company. If you receive a call that requests a two-digit command followed by # or *, simply hang up. If you receive this message on your answering machine, do not place this call. No legitimate sweepstakes or contest would likely contact you in this manner.
Related Tips: "Watch out for fake phone numbers"
Showing posts with label phishing. Show all posts
Showing posts with label phishing. Show all posts
Wednesday, October 31, 2007
Beware of the latest YouTube Video
One thing you can guarantee is that spammers and other internet criminals will always be using the latest techniques to get you to open an email and download some spyware. Security firm Sophos has recently been discovering SPAM messages that claim to be a link to a YouTube video, but in fact is a link to downloading some nasty spyware on your computer.
If there is one thing we need to emphasize over and over, it is to NEVER click on a link within an email unless you can verify that it is legitimate - even if it apparently comes from a “friend.” Many times your friends have their computers infected with a virus or spyware and without knowing it will forward these messages to you so that they seem legitimate.
So how do you know it is safe to click on an email link? (See our Tips for Not Becoming a Phish) First, if the email is “unsolicited” (meaning that you didn’t ask for it) it has a good chance of being dangerous, even if it is from a friend. Second, if the email is from someone you don’t recognize, and they REALLY want you to click on it, then about 99% of the time is it likely something for the trash bin.
Security Tip: Never click on a link in a email message encouraging you to download a cool anything, unless you can verify the sender of the message and the safety of the link.
If there is one thing we need to emphasize over and over, it is to NEVER click on a link within an email unless you can verify that it is legitimate - even if it apparently comes from a “friend.” Many times your friends have their computers infected with a virus or spyware and without knowing it will forward these messages to you so that they seem legitimate.
So how do you know it is safe to click on an email link? (See our Tips for Not Becoming a Phish) First, if the email is “unsolicited” (meaning that you didn’t ask for it) it has a good chance of being dangerous, even if it is from a friend. Second, if the email is from someone you don’t recognize, and they REALLY want you to click on it, then about 99% of the time is it likely something for the trash bin.
Security Tip: Never click on a link in a email message encouraging you to download a cool anything, unless you can verify the sender of the message and the safety of the link.
Thursday, October 18, 2007
No need to register your cell phone for Do-Not-Call
A number of emails have been circulating that warn you that your cell phone number is about to be released to telemarketers. The email has a number for the Do-Not-Call registry, claims that you must call from the actual cell phone number, and encourages you to forward this to all of your friends.
While the email may be well-meaning, there are several problems to look out for here. First, it is good to be suspicious of any email that tells you you MUST follow a specific procedure that requires giving up personal information. There is a 99% chance that these are "phishing" emails that are tricks to get you to reveal your personal information. Another key to look for is the tell-tale request at the end of the message to "Send this to all your friends." In fact, if I wanted to steal a bunch of cell phone numbers, I couldn't think of a better method than this! Send out a fake email message that looks well-meaning, have everyone call a number and give up some personal information, and BINGO!
Finally this well-meaning email does not have any information that points to the REAL do-not-call registry. A quick check of the FTC web site reveals that there has been an email telling everyong to register their cell phones, and that this is not necessary. In fact, the FTC provides a helpful document called "the truth about cell phones and DO-NOT-CALL."
So in this case, a 5-second validation process allows you to potentially save your personal information once again.
A copy of the email I received is located below:
____________________________________
Subject: Cell phone numbers going public tomorrow
Cell phone numbers going public tomorrow REMINDER....all cell phone numbers are being released to telemarketing companies tomorrow and you will start to receive sale calls....YOU WILL BE CHARGED FOR THESE CALLS. To prevent this, call the following number from your cell phone: 888-382-1222.It is the National DO NOT CALL list.
It will only take a minute of your time It blocks your number for five (5) years. You must call from the cell phone number you want to have blocked. You cannot call from a different phone number.
HELP OTHERS BY PASSING THIS ON TO ALL YOUR FRIENDS. It take about 20 seconds.
While the email may be well-meaning, there are several problems to look out for here. First, it is good to be suspicious of any email that tells you you MUST follow a specific procedure that requires giving up personal information. There is a 99% chance that these are "phishing" emails that are tricks to get you to reveal your personal information. Another key to look for is the tell-tale request at the end of the message to "Send this to all your friends." In fact, if I wanted to steal a bunch of cell phone numbers, I couldn't think of a better method than this! Send out a fake email message that looks well-meaning, have everyone call a number and give up some personal information, and BINGO!
Finally this well-meaning email does not have any information that points to the REAL do-not-call registry. A quick check of the FTC web site reveals that there has been an email telling everyong to register their cell phones, and that this is not necessary. In fact, the FTC provides a helpful document called "the truth about cell phones and DO-NOT-CALL."
So in this case, a 5-second validation process allows you to potentially save your personal information once again.
A copy of the email I received is located below:
____________________________________
Subject: Cell phone numbers going public tomorrow
Cell phone numbers going public tomorrow REMINDER....all cell phone numbers are being released to telemarketing companies tomorrow and you will start to receive sale calls....YOU WILL BE CHARGED FOR THESE CALLS. To prevent this, call the following number from your cell phone: 888-382-1222.It is the National DO NOT CALL list.
It will only take a minute of your time It blocks your number for five (5) years. You must call from the cell phone number you want to have blocked. You cannot call from a different phone number.
HELP OTHERS BY PASSING THIS ON TO ALL YOUR FRIENDS. It take about 20 seconds.
Subscribe to:
Posts (Atom)
Posts
