Archives: Cybercrime Alerts

If you are a business owner based in Europe you should be aware of the following.

The legal framework for the protection of personal data in the European Union was substantially amended in 2016 with the adoption of the General Regulation on Data Protection (RGPD).

The new legal framework brings some changes that will certainly impact the data processing processes that organizations have in place. Failure to comply with the new rules will give rise to fines ranging from 20 million euros to 4% of the annual revenue of the company that does not comply.

Pedro Veiga, coordinator of the National Center for Cybersecurity, believes that the RGPD is “a very important piece in security and trust in the digital world”. The full statement can be read in Portuguese here

The new data protection regulation is already in force, but until May 2018 there is a transition period that allows entities that manage third-party data to be able to adapt to the new standards without suffering sanctions.

The Directive sets limits such as the imposition of a maximum time limit of 72 hours for all parties involved to report security incidents that render vulnerable personal data managed by the victim organization and create the Data Protection Officer, a person responsible for Protection in organizations. Another novelty is the limitation of the ability of companies to request and use personal data, the purpose for which they are intended and with a defined time window.

Beware of fake HMRC emails promising tax rebates currently being sent to UK tax payers both living in the UK and overseas. Several have been received by residents living in Portugal.

Potential victims receive phishing emails and texts that claim to be from HMRC promising tax rebates. They are incredibly convincing and encourage recipients to download an attachment or click a link.

Two things then happen. Either the computer is infected with banking malware that steals data and makes identity fraud possible, or it is infected with ransomware, which locks it up until a fraudster releases it. Of course criminals demand a ransom in order to do so.

Please note that the HMRC does not send emails advising people of tax rebates. If you receive simple delete and DO NOT click on any link and simple delete.

Email is both an excellent communication tool and also a way that companies can inform you about their latest products and services.

However, email is frequently used to deliver unwanted material which is at best, annoying and at worst, malicious – causing considerable harm to your computer and yourself.

The vast majority of email sent every day is unsolicited junk mail. Examples include:

• Advertising, for example online pharmacies, pornography, dating, gambling.
• Get rich quick and work from home schemes.
• Hoax virus warnings.
• Hoax charity appeals.
• Chain emails which encourage you to forward them to multiple contacts (often to bring ‘good luck’).

Email Scams are generally delivered in the form of a spam email (but remember, not all spam emails contain scams). Scams are designed to trick you into disclosing information that will lead to defrauding you or stealing your identity.

Examples of email scams include:

Emails offering financial, physical or emotional benefits, which are in reality linked to a wide variety of frauds.

These include emails posing as being from ‘trusted’ sources such as your bank, HMRC or anywhere else that you have an online account. They ask you to click on a link and then disclose personal information.

Get Safe Online has put together and excellent report on the difference between scams, spams and phishing attacks through emails; how spammers get your email address; how to recognize these and importantly how to prevent this. The article can be downloaded here

Due to the insecure implementation, a majority of Internet-connected embedded devices, including Smart TVs, Refrigerators, Microwaves, Security Cameras, and printers, are routinely being hacked and used as weapons in cyberattacks.

Now, a security researcher is warning of another IoT threat involving Smart TVs that could allow hackers to take complete control of a wide range of Smart TVs at once without having any physical access to any of them.

Deatails of the threat and prevention tips can be downloaded here

Culture Secretary Karen Bradly has announced a new Internet Safety Strategy designed to make Britain the safest place in the world for children to access and use the internet.

Announcing the initiative, Ms Bradley said: “The internet has provided young people with amazing opportunities but has also introduced a host of new dangers which children and parents have never faced before.

Sexting is now a bigger concern for parents than smoking or alcohol abuse, according to a survey conducted by the NSPCC last September.

In the survey, nine out of ten parents said that schools needed to do more to educate children on the dangers of sending revealing images. 78% were either ‘fairly concerned’ or ‘very concerned’ about sexting, compared with 69% about alcohol misuse and 67% about smoking.

Figures also revealed that over 2,000 children had been reported to the police over indecent images. Most were thought to be young people sending the images to boyfriends and girlfriends, though some involved child abuse. Although in most cases the images are meant to be private, many end up being shared, either around peers, often resulting in considerable embarrassment to the subject, sometimes with tragic consequences. Others fall into the hands of paedophiles.

A current rash of emails masquerading as being sent by HSBC distributing malware detection software Rapport, are actually designed to steal recipients’ identities.

This highlights the advice that everybody should follow, to be wary of clicking on links or attachments in unexpected emails, however authentic they may seem.

The warning comes from online security vendor Symantec, whose researchers say that the emails invite recipients to click on a link to visit a website where they can download Rapport, a legitimate program designed to protect online bank accounts from fraud. However, doing so takes users to an illicit website where they are instructed to enter confidential details.

The emails seem very authentic, displaying an ‘@hsbc.com’ sender address and including security advisory information and eco-friendly messaging. They even warn recipients against opening attachments from unknown or non-trustworthy sources.

However, they also have a number of features which reveal them as fake to the security-savvy – but probably not too many average internet users.

In addition, the malware also utilises Windows short-cut to access various control settings in more recent Windows operating systems. This enables it to hide itself on recipients’ computers.

Action Fraud UK have reported on 31^st March that fraudsters are turning to kindness with new phishing emails which encourage the recipient to open an attachment on the false premise that they could have already fallen victim to scammers.

In just three days up to the end of March, Action Fraud received 226 reports from email users who have this email. The phishing email is sent from a fraudster who describes themselves a “law-abiding citizen” and has accidentally received the email recipient’s personal details. Attached to the phishing email is a document which the fraudster claims contains the recipient’s personal details.

The fraudster suggests that the email recipient’s details may have been made available to scammers and they are contacting them to try to rectify the problem. To do so the recipient must open the document.

In reality, the attached document opens the door to malware being downloaded onto the victim’s computer. The malware attempts to obtain sensitive data from victims, such as banking credentials and passwords; this is subsequently used to take money from the victim.

In order to protect yourself from malware, having up-to-date virus protection is essential; however it will not always prevent you from becoming infected.

Action Fraud recommends

• Don’t click on links or open any attachments you receive in unsolicited emails or SMS messages. Remember that fraudsters can ‘spoof’ an email address to make it look like one used by someone you trust. If you are unsure, check the email header to identify the true source of communication.
• Do not enable macros in downloads, enabling the macro will allow the Trojan/malware to be installed onto your device
• Always install software updates as soon as they become available. Whether you are updating the operating system or an application, the update will often include fixes for critical security vulnerabilities.
• Create regular backups of your important files to an external hard drive, memory stick or online storage provider. It’s important that the device you back up to isn’t left connected to your computer as any malware infection could spread to that too.
• If you think your bank details have been compromised, you should immediately contact your bank.

Beware of this email from Help Desk wingslip(at)@aviatorspost.org>regarding the upgrading of your Windows system. It is a scam most likely aimed at obtaining your personal details.

Do not reply and simply delete.

“Help Desk

Scheduled Maintenance & Upgrade

Your account is in the process of being upgraded to the newest Windows-based servers and an enhanced online email interface inline with internet infrastructure Maintenance. The new servers will provide better anti-spam and anti-virus functions, along with IMAP Support for mobile devices to enhance your usage.

To ensure that your account is not disrupted but active during and after this upgrade, you are required to kindly confirm your account by stating the details below:

* Domain\user name:

* Password:

This will prompt the upgrade of your account.

Failure to acknowledge the receipt of this notification, might result to a temporary deactivation of your account from our database. Your account shall remain active upon your confirmation of your login details.

During this maintenance window, there may be periods of interruption to email services.  This will include sending and receiving email in Outlook, on webmail, and on mobile devices. Also, if you leave your Mailbox open during the maintenance period, you may be prompted to close and reopen.

We appreciate your patience as this maintenance is performed and we do apologize for any inconveniences caused.

Sincerely,

Customer Care Team

***This message is intended for the use of the individual or entity to which it is addressed, and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited”.

Beware this Phishing attack from an email address:  dagmar (at) 20073211.onlinehome-server.info>

Do not reply, simply delete.

“Hello,
I tried to reach you last week; unfortunately, I was unable to get through. I got your full information through our secured database. I have gone through your business profile and decided to reach you.

My name is Ms Dagmar Tietsch, a member of British Bankers Association and Audit Management of NatWest Bank Plc England. I am contacting you for £9.5 Million Pound which has being placed in a dormant account for more than a decade as unclaimed fund.

Last week, the UK Commission Organization has finally decided to share up to £2 Billion Pound worth of cash and assets from all the dormant bank accounts across the nation to charities. For more details, kindly read the recent decision made last week on BBC NEWS, http://www.bbc.co.uk/news/uk-politics-39151754 . You can also find the information on GOOGLE.

With your sincere assistance and co-operation, I want to work this deal with you and have your name fixed in the bank payment schedule scheme for an immediate transfer of the fund as the rightful beneficiary.

It will be shared 60% for me and 40% you. All the logistics towards the success of this transaction has been perfected by me.
As it stands, this process should be completed, at least on or before end of the month, otherwise, we will loose the opportunity.  

Kindly get back to me without delay, this is very urgent.

Regards
Mrs Dagmar Tietsch2

The Tax and Customs Authority is aware that some taxpayers have received e-mail messages requesting the settlement of tax debts.

In these messages you are asked to download a file through the link that is provided: