Archives: Cybercrime Alerts

Cybercrime Alerts news and reviews

The following email is being circulated

Do not reply to the email. It is a phishing scam from a cyber criminal who is trying to steal your information. Simply delete.

“Banco Bancaja Madrid Spain

Address: Avenida de la Albufera 111,

28038 Madrid Spain.

Email: banco_bancaja (at) accountant.com

 

Contract Fund Credit From Banco Caja Bank Spain

 

Attention: Valued Fund Beneficiary,

This is to officially notify you personally that we received a credit instruction from the Spanish Government and Central Bank of Spain to credit your account with your full inheritance fund valued US$10.5million from the Spanish Foreign Reserve Account with our Bank Banco Caja Madrid Spain.

However, what we require from you is your full Contact and Banking details where you want your fund to be transferred.

  1. Name:
  2. Address:
  3. Phone:
  4. Mobile:
  5. Fax No.:
  6. Email:
  7. Occupation

 

  1. Bank Name:
  2. Bank Address:
  3. Account Number:
  4. Routing Number:
  5. Swift Code:
  6. Account Name:

To this effect, Be informed that transfer will commence immediately to your Bank Account Details as soon as we hear from you with your Contact and Baking Details.

Oncemore, Banco Caja Spain will not hesitate to credit your Bank Account within 24hours in accordance with Fund Release Order Regulations.

Your immediate response is highly imperative to enable us commence transfer.

Congratulation in advance

Best regards,

Juan Pedro (Chairman)

Banco Caja Bank Madrid Spain”

A bug in Apple’s iOS means that anyone can crash an iPhone by simply sending it a certain string of characters in a message.

It was reported by Action Fraud UK that users on Redditt have found that iPhones can be crashed if they receive a text message containing one specific line of Arabic characters and symbols.

This causes the iPhone to instantly crash, reboot and then power off, leaving the Messages app unusable once the iPhone turns back on. According to reports it can also crash Apple Watch, iPad and Mac too.

Currently there is no way to keep phones from falling victim, although Apple has said:  “We are aware of an iMessage issue caused by a specific series of unicode characters and we will make a fix available in a software update”.

Those worried about being attacked can protect their iPhone from the bug by turning off notifications for text messages, or hiding the previews that show up in banner notifications.

The BBC reported on 26th May 2015 that criminals are increasingly using internet forums to buy and sell data.

They use the information to open bank accounts, obtain credit cards and commit fraud in other people’s names.

Fraud prevention agency Cifas said the number of victims rose by 31% to 32,058 in the first three months of 2015, compared to the same period in 2014.

Identity theft occurs when criminals abuse the personal data or identity details of an innocent victim to impersonate them or to create a fake identity, in order to buy products or services.

One online investigator told BBC News’ Angus Crawford that criminals are heading to online “fraud forums” to swap tips as well as buy and sell credit cards, passports and email addresses.

Forums will typically sell real credit cards with date of birth detail for as little as £5, he said.

Cifas said that more than 80% of identity theft in the first three months of 2015 was attempted or perpetrated online.

The group’s research showed that criminals mainly used people’s identities to set up new credit cards and bank accounts – these accounted for 41% and 27% of all identity theft cases respectively.

The average age for both male and female identity theft victims was 46 years old.

However, Cifas warned that the 21-30 age group continue to be increasingly targeted – with the number of victims in that age bracket up 26% from 2014.

Darren Innes, chief executive of due diligence company C6 Intelligence, told BBC News that the crime can be “traumatic” for victims.

Mr Innes said: “You’re going to be spending an awful lot of time getting the money back.

“You may still be liable and there have been many cases where people have still had to pay bills, even though it has had nothing to do with them in the first place… The mental anguish is quite severe.”

On Tuesday, the Metropolitan Police announced that under new legislationofficers across the UK can now arrest people who supply specialist printing equipment or materials – such as identity card printers, printer ribbons, embossers and hot foil presses.

The Met said organised criminals use printers costing around £1,000 to create convincing passports, driver’s licences and bank cards.

The genuine versions are produced on higher quality printers, under strict controls.

The following email was received on 23rd May 2015. It is a phishing scam. Do not click on the email link provided or pass personally details. Simply delete it. The bottom line is if you have not entered a lottery then there is no way that you are a winner – only a loser if you open it!

“ATTN: WINNING NOTIFICATION

Your email address  attached to ticket#82435197 & Serial#7792/11 drew the lucky numbers: 13-8-47-21-33-9, which subsequently won you the lottery in the 2nd category of the Terrahills lottery promotions You have therefore been approved to claim a total sum of 1,500,000.00 ) in cash credited to  file KPC/9080118308/02/TCA.

Please contact the  agent below to begin your claim process:

Mr. Leon Smith

(email:terrahills (at) workmail.com)”

Here is a long email which is certainly a Nigerian Scam and should be deleted. Often these scams are in the name of military personnel, in order to impress the reader. It is typical in that it aims to obtain a sympathetic response from the reader with the objective of obtaining money. Clearly it is a scam and is NOT from the person it purports to be.

Update: 20th August 2015 – We have been informed from a resident of Cascais that this is also circulating under the name “Captain Ryan Purple”

“I am a captain commanding 2nd Battalion, 3rd Marine Regiment with the United States and Britain Coalition Force in Afghanistan on war against terrorism. Based on the United States legislative and executive decision for withdrawing troops from Afghanistan, i have decided to quit the marine and relocate to your country that’s why I need to invest on it now.

I want you to help me and buy property for my family and as well invest on real estate in your country and that is why I contacted you. On the other hand I want to inform you that I have in my possession the sum of $16.2million (US Dollars) which was recovered from one of our raids on terrorists here in Afghanistan because they keep most of their money at home for evil activities which they normally get through illegal deals on crude oil. Based on the suffering we undergo here some of us do meet such luck. It happened that I went for this raid with the men in my unit and I decided to take it as my share for my stress here in this evil land filled with suicide bombers. I deposited this money with a Red Cross agent informing him that we are making contact for the real owner of the money. It is under my power to approve whoever comes forth for this money.

I wish to use this money on real estate/lands and property investment in your country because i know a lot of money is involved in it, that was the more reason I decided to resign and come over to your country once I move this money out of here through diplomatic courier service which is the safest means,i don’t want to die fighting terrorist all my life.

I need someone I could deal with. If you accept, I will transfer the money to where you will be the beneficiary because I am a uniformed person and i cannot be parading such an amount so I need to present someone as the beneficiary. I am an American and an intelligence officer for that so i have a 100%authentic means of transferring the money through a diplomatic courier service .I just need your acceptance and all is done.

Please if you are interested in this transaction I will give to you the complete details you need for us to carry out this transaction successfully. I decided to find someone that is real and not imaginary and that is why i went to a secured site where I can be sure that the person is real. I believe I can trust you as a lawyer. Where we are now we can only communicate through our military communication facilities which are secured so nobody can monitor our discussions, then I can explain in details to you. I will only reach you through emails, because our calls might be monitored, I just have to be sure whom I am dealing with.

Also I want you to know that am revealing this deal to you with belief that you will never let me down in this business, you are the first and the only person that I am contacting for this deal, so please reply urgently so that I will inform you on the next step to take urgently. If you are interested please reply me immediately so I can contact you for further inquiries. I am writing from a fresh email account so if you are not interested do not reply to this email and please delete this message, if no response after 3days i will then search for someone else. I am doing this on trust, you should understand and you should know that as a trained military expert I will always play safe in case you are the bad type, but I pray you are not. $16.2million is a lot of money which is the dream of anyone.

I wait for your contact details so we can go on. In less than 7days the money should have been noted on your care and I will come over for my money. I will give to you 30% of the sum and 70% is for me. I hope I am being fair on this deal.

I wait to hear back from you.

Capt.John Kelly”

Here is a typical example on a Nigerian scam. Note the manner in which the sender tries to make the receiver feel sorry for the plight the sender is facing. Received 29th April 2015

Am Gillian Bayford and I would like to know if you can handle some huge amount of money (US$7.5 Million ) meant  for charitable organisation. All you have to do is to work for the lord by helping in finding charitable organisation and foster himes and sharing the said fund to them acording to instructions.  My Doctor told me that I would not last for the next six months due to my cancer problem (cancer of the liver and stroke) and with this ailment i cant continue in the work so i would like to know if you will partake in the work and you will be immensely compensated.

I will be awaiting to read from you.

Regards

Mrs. Margaret G. Bayford

An email is currently in circulation asking people to click on a link to verify your profile and accept candidacy for the 2015 Worldwide Branding Registry of Distinguished Professionals and Executives. This is a Phishing attack and by clicking on the link will take you through to a fake website based in Russia. Simply delete the email and DO NOT click on the link or reply.

“Email From: Alvaro Summers <liam.atkin (at) nufc.co.uk>

Dear,

You were recently chosen as a potential candidate to represent 2015 Worldwide Branding Registry of Distinguished Professionals and Executives.
We are pleased to inform you that your candidacy was formally approved May 2nd. Congratulations. The Publishing Committee selects potential candidates based not only upon their current standing, but focusing as well on criteria from executive and professional directories, associations, and trade journals.
Given your background, the Director believes your profile makes a fitting addition to our publication. There is no fee nor obligation to be listed. As we are working off of secondary sources, we must receive verification from you that your profile is accurate. After receiving verification, we will validate your registry listing within seven business days.
Once finalized, your listing will share prominent registry space with thousands of fellow accomplished individuals across the globe, each representing accomplishments within their own geographical area.
To verify your profile and accept the candidacy, please  Visit here

Our registration deadline for this year’s candidates is May 28th. To ensure you are included, we must receive your verification on or before this date. On behalf of our Committee, I salute your achievement and look forward to welcoming you to our association.
Sincerely,

Benjamin Morisson
Editor in Chief
Worldwide Selection Committee 2015”

On 26th February 2014 the Judicial Police, through the Lisbon and Tagus Valley Board, in close coordination with the Gabinete do Cibercrime da Procuradoria-Geral da República (Cybercrime Office of the Attorney General’s Department), conducted “Operation CARETOS” in various parts of the country in connection with computer crime known as “hacktivism”. 

The operation was conducted by 70 highly specialized staff, aimed at locating and apprehending those responsible for in acts of computer sabotage, computer damage, hacking and unauthorised access where data has been downloaded from the website of various government agencies and some private sector companies.

During the operation 24 house searches were conducted and seven persons, aged between 17 and 40 years were arrested including Rui Cruz the founder of a website called “Tugaleaks” and the other from a group called “Anonymous Portugal” who are suspected responsible for these crimes. The arrests were made in the metropolitan areas of Lisbon and Porto. One of those arrested is a woman. In addition to those arrested another 14 persons have been made “arquidos” (formal suspects.

The investigation began in April last year and has now amassed a large collection of information and supporting materials concerning the activities of those involved.

The group is suspected of attacks and the publication of material concerning the personal details of administrators and emails of Government departments including: the Ministry of Agriculture; Ministry of Health; Education Ministry, Lisbon District Attorney’s office as well as the PSP, GNR, SIS (Secret Service) and National Defence. In the attack against the Ministry of Agriculture some 2700 personal details were believed stolen. It also included the revealing of a list of the details of 300 unmarked vehicles used by the GNR and PSP.

Apart from Government, sites the group are suspected of “hactivism” against banks such as BES, Barclays and BANIF. In these attacks against the banks the content of some 200 emails were revealed.

In a press release the Judicial Police stated that it is continuing its investigations in order to determine the nature and extent of criminal connections of the groups believed involved. The detainees will appear at the courts of initial judicial interrogation and will be at which appropriate reporting/remand condition will be applied.

This email phishing scam was received by a resident here on 28th February 2015. Note the poor grammar and punctuation, which is typical of these scams.. If you receive this do not reply, click on the links or phone the person concerned, as it is aimed at inducing you into providing personal information, which will then be used to take money out of your bank account.

“—–Original Message—–

From: Mr Tony Mehan [mailto:barr.john.mehan01 (at) gmail.com]

Sent: 28 February 2015 10:13

To: undisclosed-recipients:

Subject: Your Attention Is Needed!

Your Attention Is Needed!

We have finally arranged to deliver your ATM CARD worth ( $4.5 M), USD through the national DHL company. We were able to accomplish this through the help of IMF director John Andy and every necessary arrangement has been made successfully with the National DHL Agent Mr King Tony

Contact person: Mr King Tony

Telephone: +228 988 778 03

Email: ‘( kingtony086 (at) gmail.com )

Contact the DHL agent with your delivery information, your phone number, address, city, nearest airport and your receiver’s name. and also be informed that delivery agent will leave to this country as soon as you have proceed with the DHL requirement for your funds deliver, i wait to hear from you soonest, Best Regards Sincerely Mr John Mehan

This email has been checked for viruses by Avast antivirus software.

Website . avast.com

TalkTalk customers are being warned about scammers who managed to steal account numbers, names and personal information from the company’s computers.

Broadband and phone operator TalkTalk emailed customers yesterday to tell them that it suffered a major data breach in which account numbers, addresses and phone numbers have fallen into the hands of fraudsters who have used the data to steal thousands of pounds.

The fraudsters used this personal information to cold call customers, in order to gain access to their computers and bank accounts.

The data breach was uncovered when TalkTalk investigated a sudden rise in complaints from customers about scam calls between October and December 2014 on its forums.

The email stated “Following a detailed investigation, we understand that some customer information, including account numbers, could have been illegally accessed in violation of our security procedures. No financial data was at risk as this is encrypted on our systems”.

“We have been working with an external specialist security company to take urgent and serious steps to prevent this happening again”.

One victim lost over £2,800

One customer, Graeme Smith, told the Guardian that he had fallen victim to one of these scammers and lost £2,815 after fraudsters phoned him and convinced him to install a piece of malware on his computer and pass over bank details. They were subsequently able to transfer cash to their own account.

Customers who have been caught out should contact their bank said TalkTalk, who have also set up a dedicated phone line for customers targeted by the scammers. Victims can call 0800 083 2710 in the UK to get help from the telecoms firm.