Olympus UK E-System User Group
Olympus UK E-System User Group

Join our unique resource for Olympus Four Thirds E-System DSLR and Pen and OM-D Micro Four Thirds photographers. Show your images via our free e-group photo gallery. Please read the e-group.uk.net forum terms and conditions before posting for the first time. Above all, welcome!


Go Back   Olympus UK E-System User Group > Out of Focus area > The lounge

The lounge Relax, take a break from photo and camera talk - have a chat about something else for a change. Just keep it clean and polite!

Reply
 
Thread Tools Display Modes
  #1  
Old 11th November 2014
Wally's Avatar
Wally Wally is offline
Full member
 
Join Date: Oct 2010
Location: Land of the Prince Bishops
Posts: 3,789
Thanks: 257
Thanked 1,128 Times in 705 Posts
Likes: 524
Liked 1,469 Times in 734 Posts
Amazon phishing scams

There are two phishing emails currently observed targeting the UK market. Both have similar characteristics, including their mission with their attached malware: to harvest banking login, email and social media credentials.

The first, more prevalent, email mimics the standard Amazon dispatch email that will be familiar to millions of online shoppers, complete with an authentic sounding email heading, including a fake order reference. It has a Word document attached, which curious shoppers wondering what has been ordered on their account will feel tempted to open. The attachment itself contains a macro that, if allowed to run, will install a trojan dropper, which eventually attempts to download keylogging software to catch usernames and passwords of the victims.

The second fake email is subtly different and preys on the target’s concern that they have already been defrauded by pretending to be an order confirmation on some intimidatingly expensive items. These emails look even more accurate to the untrained eye, containing actual graphics from the main site of the item(s) ordered.

This fake email differs from the first by having malicious links to compromised WordPress sites, which then downloads a .scr file (e.g: _invoice1104.pdf.scr). This is another trojan dropper that will download more malware once the victim’s computer is infected.

Currently the malware is logging keystrokes, but the malware distributors could also download and install remote files, should they wish.

These scams are particularly popular during the busy Christmas season.

For tips on what to look out for with suspicious email you can watch the video below:
__________________
It's not what inspires us that is important, it's where the journey takes us.

Wally and his Collie with our Oly bits & bobs

Reply With Quote
The Following 6 Users Say Thank You to Wally For This Useful Post:
Graham_of_Rainham (13th November 2014), Graptolite (12th November 2014), Lee (11th November 2014), martyjward (11th November 2014), Melaka (12th November 2014), OM USer (11th November 2014)
  #2  
Old 11th November 2014
martyjward's Avatar
martyjward martyjward is offline
Full member
 
Join Date: Jul 2014
Location: Essex, UK
Posts: 257
Thanks: 28
Thanked 39 Times in 34 Posts
Likes: 2
Liked 73 Times in 41 Posts
Re: Amazon phishing scams

Thanks for the heads up
__________________
OMD E-M1, 12-40 f2.8 pro, 40-150 f2.8 pro, MC-14, MMF-3 & 70-300 f4-5.6

E-620, 12-40 , 40-150 f4-5.6,

https://www.flickr.com/photos/68406149@N08/
Reply With Quote
  #3  
Old 11th November 2014
Zuiko's Avatar
Zuiko Zuiko is offline
Administrator
 
Join Date: Nov 2007
Location: Dunmow, Essex
Posts: 22,183
Thanks: 1,990
Thanked 3,175 Times in 2,480 Posts
Likes: 3,445
Liked 4,503 Times in 2,140 Posts
Re: Amazon phishing scams

I've just been looking at an Amazon email, which quotes a genuine order and informs me that I am getting a 0.01p refund. There is a link to check the details but, you know, the language used doesn't seem quite right (eg "Greetings Customer") and I've played safe by deleting the message.
__________________
John

"A hundredth of a second here, a hundredth of a second there even if you put them end to end, they still only add up to one, two, perhaps three seconds, snatched from eternity." ~ Robert Doisneau
Reply With Quote
  #4  
Old 12th November 2014
Steambuff Steambuff is offline
Full member
 
Join Date: Aug 2009
Location: UK
Posts: 150
Thanks: 22
Thanked 27 Times in 24 Posts
Likes: 40
Liked 18 Times in 17 Posts
Re: Amazon phishing scams

I got the 1p refund email ... In my case it was genuine.
(I hade pre-ordered the Extended version of the last Hobbit film on Blu-Ray, and the price had dropped 1p since I ordered it)
And yes they did credit my card with 1p

Dave
Reply With Quote
  #5  
Old 12th November 2014
martyjward's Avatar
martyjward martyjward is offline
Full member
 
Join Date: Jul 2014
Location: Essex, UK
Posts: 257
Thanks: 28
Thanked 39 Times in 34 Posts
Likes: 2
Liked 73 Times in 41 Posts
Re: Amazon phishing scams

They do that - they did the same to me when I pre-ordered maleficent.
Reply With Quote
  #6  
Old 13th November 2014
Zuiko's Avatar
Zuiko Zuiko is offline
Administrator
 
Join Date: Nov 2007
Location: Dunmow, Essex
Posts: 22,183
Thanks: 1,990
Thanked 3,175 Times in 2,480 Posts
Likes: 3,445
Liked 4,503 Times in 2,140 Posts
Re: Amazon phishing scams

It just proves how suspicious and untrusting I've become - not a bad thing in this world!
__________________
John

"A hundredth of a second here, a hundredth of a second there even if you put them end to end, they still only add up to one, two, perhaps three seconds, snatched from eternity." ~ Robert Doisneau
Reply With Quote
  #7  
Old 13th November 2014
Melaka's Avatar
Melaka Melaka is offline
Full member
 
Join Date: Nov 2007
Location: Bucks
Posts: 2,399
Thanks: 766
Thanked 233 Times in 159 Posts
Likes: 735
Liked 348 Times in 144 Posts
Send a message via ICQ to Melaka
Re: Amazon phishing scams

Not an Amazon scam this one, but I didn't think it merited a new thread. I've had an email from Bankline inviting me to do the usual. Somewhat unusually it had a help desk number so I phoned it to see what would happen. It turned out to be a Chinese restaurant - I hope they don't get bothered by a lot of other folk.
__________________
David

EM1ii, EM10ii
Reply With Quote
  #8  
Old 13th November 2014
Graham_of_Rainham's Avatar
Graham_of_Rainham Graham_of_Rainham is offline
Administrator
 
Join Date: Nov 2007
Location: Rainham
Posts: 8,185
Thanks: 647
Thanked 945 Times in 733 Posts
Likes: 2,298
Liked 1,602 Times in 925 Posts
Lightbulb Re: Amazon phishing scams

If I get anything that looks remotely suspicious, I use the following process:

Right Mouse Click - Properties - Details (Tag) - Message Source.

I only use the "Message Source" if I want to fully inspect the content.

It does not open the e-mail, so nothing can "run".

Often the header info shows it to originate in strangely named places and the text content reveals a whole load of "interesting" data.

Stay safe folks

__________________
Graham

We often repeat the mistakes we most enjoy...
Reply With Quote
The Following User Says Thank You to Graham_of_Rainham For This Useful Post:
Wee man (13th November 2014)
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
BLN-1 at Amazon uk Ricoh Announcements 0 19th April 2014 10:08 PM
Dangerously Convincing Google Docs Phishing Scam Wally The lounge 2 26th March 2014 09:31 PM
Amazon EM-1 Stephen For sale or wanted small ads 0 5th February 2014 02:14 AM
XZ-2 204.99 at Amazon Shaw Camera conference 0 16th December 2013 01:12 PM
More scams Melaka Software 2 10th February 2011 08:40 PM


All times are GMT. The time now is 02:49 AM.


The Write Technology Ltd, 2007-2019, All rights reservedAd Management plugin by RedTyger