dcsimg
February 11, 2019

Sextortion Bitcoin scam makes unwelcome return

Heads up: a particularly nasty sextortion Bitcoin scam from at least the middle of 2018 is making the rounds once again. The scam involves making use of old breach dumps, then emailing someone from the list and reminding them of their old password. When something lands in your mailbox with “Hey, remember this?” it’s a surefire way to focus the reader’s attention. Pressure is then applied to … [Read more...]

Filed Under: cybercrime, email, fake, pressure, scam, sextortion, Social engineering, spam, threat
September 25, 2018

100 channels and nothing on, except TV Licensing phishes

We’ve seen a lot of people referencing fake TV Licensing emails they’ve received over the last few days. The majority so far appear to be fake refund notices, asking potential victims to log in to a phony TV License website and provide payment details for refunds. It’s definitely keeping customer support busy: Click to enlarge Many of the URLs we’ve looked at are down now, but not all, so … [Read more...]

Filed Under: cybercrime, email, fake, fraud, phish, phishing, scam, Social engineering, tv license
September 10, 2018

A week in security (September 3 – 9)

Last week on Malwarebytes Labs, we looked at spyware going mainstream, how the popular game Fortnite sparks security concerns for Android users, and how certain Mac App Store apps are stealing user data. Other cybersecurity news: Microsoft announced Windows 7 Extended Security Updates in a blog post titled “Helping customers shift to a modern desktop.” (Source: Microsoft) “Five … [Read more...]

Filed Under: a week in security, Android, Brighton Police, fake, Fire Eye, five eyes, fortnite, Mac App Store, mastercard, Mega.nz, protonmail, security cameras, Security world, spyware, Talos, TechCrunch, tesla, WannaCry, Week in security
August 17, 2018

Liar, liar, pants on fire! Barclays phish claims cards explode

We feel compelled to relay the dire warning from this Barclays snail-mail letter, which we acquired through social media, therefore it must be true. Warning: Barclays debit cards may catch fire! The letter reads as follows: Dear costumer, Many of our bank costumers have reported that their debit cards have caught fire while they are in wallets and purses, and so as a precushion we are issuing an … [Read more...]

Filed Under: barclays, credit card, cybercrime, fail, fake, LOL, phish, quality control, scam, snail mail, snail mail phish, Social engineering
March 23, 2018

“Celebrating Stephen Hawking” with a 419 scam

The recently departed Stephen Hawking is apparently back from the dead, now a target for scammers wanting to extract some quick cash from the unwary in the form of a vaguely surreal 419 scam. The whole thing begins with an email from, er, Stephen Hawking titled “Celebrating Stephen Hawking.” Click to enlarge The body text is a slightly mangled swipe job from this AP article over on … [Read more...]

Filed Under: 419, cybercrime, fake, mail, quiz, scam, Social engineering, spam, Stephen Hawking, Stephen Hawking scam
February 23, 2018

Deepfakes FakeApp tool (briefly) includes cryptominer

A few weeks ago, we took a look at a forum dedicated to Deepfake clips where the site was pushing Coinhive mining scripts in the website’s HTML code. As it turns out, there’s been another mining blow-out in the form of one of the apps used to make the fakes. That’s right—a tool designed to push CPU/GPU hard in order to create movie files also wanted you to push the GPU that much … [Read more...]

Filed Under: coin mining, coinhive, crypto, deepfake, deepfakes, fake, fakeapp, miner, mining, Security world, Technology
December 22, 2017

Facebook phishers want you to “Connect with Facebook”

As we edge toward Christmas, scammers are throwing their own party—in the form of Facebook phishing pages linked to and from bogus landing pages hosted on sites(dot)google(dot)com URLs. These landing pages, adorned with very large and very fake “Login with Facebook” buttons, may be extra convincing to the unwary, due to a combination of the trusted Google name and the fact that the … [Read more...]

Filed Under: cybercrime, facebook, Facebook phishers, fake, Google, phish, phishing, Social engineering
December 13, 2017

There’s a hole in my bucket: Bitcoin scams aim to exploit volatile market

Bitcoin! Black gold! Texas tea! Only one of these is currently worth ridiculous amounts of money (and technically numbers two and three are the same thing). Whether you’re in possession of lots of Bitcoins, or in full bandwagon panic “must buy 20 graphics cards before the bubble bursts” mode, you should be aware that lots of awful people want in on your precious haul. Indeed, the … [Read more...]

Filed Under: bitcoin, BitCoin Scam, btc, coin, cryptocurrency, cybercrime, fake, faucet, miner, miners, mining, phish, phishing, scam, Social engineering, support scammer
December 1, 2017

PayPal phish asks to verify transactions—don’t do it

There’s a number of fake PayPal emails going around right now claiming that a recent transaction can’t be verified. If your response to this is, “What transaction?” read on. If your response to this is, “Oh no, not my recent transaction!” you should still read on. Why? Because scammers have both eyes and at least one virtual hand on your cash, assuming you … [Read more...]

Filed Under: cybercrime, email, fake, mail, PayPal, phish, phishing, scam, Social engineering