Archives: Cybercrime Alerts

A typical Nigerian fraud sent by email from a admin (at) nojami.cf. There is no will or money and the person is attempting toobtain you banking details.

Just ignore and delete. DO NOT reply.

“On behalf of the Trustees and Executor of the estate of Late Mr. Edwin Gabriel, I once again try to notify you as my earlier letter was returned undelivered. I hereby attempt to reach you again by this same email address on the WILL.

I was made to understand that My Late client Mr. Edwin Gabriel met with someone who knows and trust you during his business trip before he died.

You were recommended to him as a very honest person who is above board.

I wish to notify you that late Mr. Edwin Gabriel made you a beneficiary to his WILL. He left the sum of Ten Million Dollars (USD$10,000,000.00) to you in the codicil and last testament to his will.

Being a widely travelled man, he must have been in contact with someone who recommended you to him in the past or simply you were nominated to him by one of his numerous friends abroad who wished you good.

Mr. Edwin Gabriel until his death was a member of the Helicopter Society and the Institute of Electronic & Electrical Engineers. He was a very dedicated Christian who loved to give out.

His great philanthropy earned him numerous awards during his life time. Late Mr. Edwin Gabriel died on the 16th day of February 2015 at the age of 71 years and his WILL is now ready for execution. According to him this money is to support his Charitable activities (May his soul rest with the Lord) and to help the poor and needy.

Please if I reach you as I am hopeful, endeavour to get back to me as soon as possible to enable me conclude my job. I hope to hear from you in no distant date with your address; direct phone number, age and occupation to enable me send you the copies of the will documents on your name.

Please email me on   gregwilford 23 (at) onet.pl

Regards, Greg Wilford (Esq)

Telephone: +27-84024-8848

The Macao Executive Council today presented a proposed cybersecurity law aimed at preventing threats to the computer network and critical infrastructures essential to the city, such as water, electricity, the financial system and telecommunications.

The draft law, which is for debate and vote in the Legislative Assembly, establishes the cyber-security system of the Chinese special administrative region and regulates its functioning, to strengthen the cybersecurity of the main critical infrastructure operators and to ensure “major public interests as well security, and public order, “the agency said in a statement.

In addition to “clearly determining the definitions of computer networks, computer systems and computer data”, as well as “unauthorized acts” and “cybersecurity incidents”, the proposal recommends that critical infrastructure operators include services, bodies and public entities, private transport entities, telecommunications, banks and insurance, health care and water and electricity supply.

The diploma provides for the creation of the “cybersecurity main responsibility” post, which in case of cybersecurity incidents should notify the Cyber ​​Security Incident Alert and Response Center (CARIC), composed of public entities with technical functions and coordinated by the Judiciary Police. This centre is responsible for the management and implementation of emergency response measures.

The permanent commission for cybersecurity (CPC) is a decision-making body of the Government, which is responsible for defining guidelines, general objectives and strategies for cybersecurity, according to the note. Together with cybersecurity oversight agencies, CPC and CARIC make up Macao’s cybersecurity system.

The new proposal, due to enter into force 180 days after its publication, provides for the verification and registration of the identity of users by network operators, in particular telecommunications operators.

The law provides for fines of between 50,000 and 5 million patacas (between 5,300 and 533,000 euros) for infractions, and ancillary sanctions are still applicable.

More than 80% of those who participated in the public consultation on the cybersecurity law, which took place at the end of 2017, consider the creation of a computer network security system as a matter of urgency.

“More than 87% of the opinions, both from the sectors and the public, consider that it is necessary and urgent to establish a system of protection of cybersecurity” in the territory, according to the final report published last Thursday by the Government of Macau .

The Executive Council is a body to assist the head of the Government of Macao in decision-making, with the mission of, inter alia, submitting bills to the Legislative Assembly.

July 2018 – Cyber criminals are sending victims their own passwords in an attempt to trick them into believing they have been filmed on their computer watching porn and demanding payment.

As at 13th July there have been over 110 of reports made to Action Fraud UK from concerned victims who have received these scary emails.

Safe Communities Portugal has so far received two such reports from people living in the ALgarve

In a new twist not seen before, the emails contain the victim’s own password in the subject line. Action Fraud has contacted several victims to verify this information, who have confirmed that these passwords are genuine and recent. In other cases these have been old discarded passwords.

The emails demand payment in Bitcoin and claim that the victim has been filmed on their computer watching porn.

Information from Business Adviser dated 25th July 2018  has analysed these threats and states emails are slightly different depending on who’s being attacked, but they all have a few similar features:

The subject line includes a password that you probably have used at some point.

The sender says they have used that password to hack your computer, install malware, and record video of you through your webcam.

They say they will reveal your adult-website habits and send video of you to your contacts unless you send them bitcoin, usually $1,200 or $1,600 worth.

Here’s one example of these scam emails, sent in the past month:

Basically, the attackers don’t actually have video of you or access to your contacts, and they haven’t been able to install malicious code on your computer. In reality, they’re taking a password from a database that’s available online, sending it to you, and hoping you’re scared enough to believe their story and send them bitcoin.

Action Fraud suspects that the fraudsters may have gained victim’s passwords from an old data breach.

After running some of the victim’s email addresses through ‘Have i been pwned?’, a website that allows people to check if their account has been compromised in a data breach, Action Fraud found that almost all of the accounts were at risk from data .
Last month, fraudsters were also sending emails demanding payment in Bitcoin, using WannaCry as a hook.

How to protect yourself

• Don’t be rushed or pressured into making a decision: paying only highlights that you’re vulnerable and that you may be targeted again. The police advise that you do not pay criminals.
• Secure it: Change your password immediately and reset it on any other accounts you’ve used the same one for. Always use a strong and separate password. Whenever possible, enable Two-Factor Authentication (2FA).
• Do not email the fraudsters back.
• Cover your webcam when not in use
• If you have paid the money then report this to the local police

Beware this Phishing scam – It is an email from a Russian based email address asking you to provide personal information.

This is a typical threatening message asking you to act quickly. Do not click on the “Cancel Deactivation” tab. Simply delete and do not reply.j

“Email Adminstrator <Svetlana (at) lonmadi.ru>

Dear (xxx)

Thank you, we received your Email account de-activation request and this request will be processed before 24 hrs.

If this request was made accidentally and you have no knowledge of it, you are advised to cancel the request now

CANCEL DEACTIVATION

However, if you do not cancel this request,your account will be shutdown shortly,
and all your email data will be lost permanently.

Thanks.
Email Adminstrator 2018 Team”

Google

It is a phishing email designed to get you to disclose personal information. If received do not click on “LOGIN” or reply. The link takes you to a Russian based domain. The email sender is shown as Lloyds Bank> noreply (at) mail.com

Dear Customer,

This e-mail has been sent to you by Lloyds Bank to inform you that we were unable to process your latest statement of accounts. This is Due to a slight error detected on your account billing information.

For your security, we have temporarily suspended access to your account(s). Such as (Receive payments, Make payments or withdraw funds). Until account verification procedures as been confirm.

This might be due to either of the following reasons:

1. A recent change in your personal information. (eg: billing address, phone)
   2. Submitting incorrect Payment information during online payment process.

Due to this, to ensure that your service is not interrupted, we request you to validate and update your billing information today by following the secure reference button given below.

LOGIN

How does it work?

If we detect either of the reasons above, we may decide that we want to confirm that it’s really you. You must complete all steps otherwise you will not be able to use the online service until we have completed additional security checks.

Yours sincerely,
Lloyds Bank Billing Department”

A report compiled by Action Fraud, which is run by the City of London Police, reveals the scale of reported crime and exposes the common tactics used by fraudsters.

The average amount lost per person was over £1,500, an increase of 25% year on year. These individual losses are substantial, but this form of fraud also has other severe effects with almost half (2,245) of victims saying that it also had a significant impact on their health or financial wellbeing. Most worryingly of all, 575 people said the impact on them was so severe that they had to receive medical treatment or were at risk of bankruptcy.

The most common types of fraud relate to the sale of airline tickets (47%) and accommodation booking (38%).

4,700 people told Action Fraud that they had been the victim of a travel related fraud in 2017. The three campaign partners believe that the actual figure is much higher, with many victims not realising that they should always report the fraud to Action Fraud.

In common with previous years, the numbers of people reporting travel fraud jumps in the summer and in December. This is a very clear indication that fraudsters are targeting the peak holiday periods and people who are going home to visit friends and family. Fraudsters know that demand will be high and availability low, so good value bookings will be harder to find with customers on the lookout for reasonable prices.

Here is a typical Nigerian Phishing Scam received on 27th March 2018 . Off course there is no money and all the fraudster wants to do is to obtain your person details. Once the fraudster has these then it is a relatively simple measure of developing your profile take money from your bank accounts or other fraudulent activity in your name.

DO NOT REPLY – simply delete.

It likely originates in China given the email address used.

From – Central Bank of Nigeria <sales (at) twd-chn.com>

Subject:  Contact Him for Your card 123!!

Attention: Beneficiary

This is to officially inform you that your email is short listed by the Central Bank Compensation Award Committee setup to compensate the huge losses of the victims of the internet scam/fraud; you are also warned to disengage from future pursuit of unlearned transaction.

However, your Compensation Payment via ATM CARD value at US$5.3M has been accredited and approved in your favor; all that is required of you to redeem your funds is to contact the payment officer  with the official fee of US$90 being for duty stamp/courier/shipment charges.

Contact us as soon as possible through this (email: george.dav321@gmail.com)

You are hereby advice to re-confirm the below information once again to the payment officer for further proceedings/next line of action.

1. Full Name:
2. Home address:
3. Direct/personal cell number
4. Copy of any valid identification:
5. Your occupation

Below is the payment officer detail:

NAME: George Davis

E-MAIL:george.dav321@gmail.com

Yours truly,

Mr John Mba

Secretary

New statistics released ahead of Valentine’s Day prove that the UK is continuing to lose huge amounts of money to romance fraud – with victims conned out of £41 million in 2017 alone. This is according to figures from The City of London Police, whose remit covers online fraud nationwide, working with Get Safe Online and its partners.

Romance fraud is described as when someone creates a fake identity to enter into a relationship with a victim with the intent to steal either funds or personal information. In 2017, 3557 romance frauds were reported to Action Fraud, averaging 10 reports a day. Cases in Portugal unknown.

Download our guide to Protecting Yourself against Romance Fraud Here.

This amount equates to £11,500 per victim. Those who fall victim to these frauds are almost twice as likely to be women (63% compared with 37% of men).

However, evidence suggests these numbers do not accurately represent the true scale of the problem due to the embarrassment felt by some victims of fraud, which can discourage people from coming forward to report their experience. But reporting is crucial in stopping these fraudsters whose impact extends beyond just taking the money.

Almost half (43%) of victims said that the crime had a ‘significant’ impact on their health or financial wellbeing.

A further 18% had to receive medical treatment as a result of being a victim of a romance scam – or had been left at risk of bankruptcy.

The following is an unusual version of a Nigerian scam, in which the fraudster attempts to explain upfront that this is NOT a hoax.

It cam in as a long email from a Dr Petter Gerry <info (at) synergygroup.az>

Note the poor selling and grammar mistakes a giveaway that this is a fraud. Off course it is, simply ignore and delete. Do not click on any link or reply.

“Greetings,

Before I introduce myself, I wish to inform you that this letter is not a hoax mail and I urge you to treat it with the seriousness it deserves. This letter must come to you as a big surprise, but I believe it is only a day that people meet and become great friends and business partners. This is a personal mail directed to you and I request that it be treated as such. I believe with no doubt in your ability to handle an international business of considerable TRUST, which may form the bedrock of an extensive business partnership in the future.

Seeking your consent in partnership, I assured of your capability and reliability to champion this businees opportunity when i prayed to God or Allah about you.In my department we discovered an abandoned sum of $ 250 million U.S.A dollars ( Two Hundred and Fifty million U.S.A dollars) . In an account that belongs to one of our foreign customer who died along with his entire family in (friday december 26,2007 ) in a plane crash. Since we got information about his death,

PROPOSITION: we have been expecting his next of kin to come over and claim his money because we cannot release it unless somebody applies for it as next of kin or relation to the deceased as indicated in our banking guidelines, but unfortunately we learnt that all his supposed next of kin or relation died alongside with him at the plane crash leaving nobody behind for the claim. It is therefore upon this discovery that I personaly decided to make this businness proposal to you and release the money to you as the next of kin or relation to the deceased for safety and subsequent disbursement since nobody is coming for it and we dont want this money to go into the bank treasury as unclaimed bill.

SHARING ARRANGEMENTS: The Banking law and guideline here stipulates that if such money remained unclamed after ten years, the money will be transfered into the Bank treasury as unclaimed fund. The request of foreigner as next of kin in this business is occasioned by the fact that the customer was a foreigner, and a Nigerian cannot stand as next of kin to a foreigner. We agree that 30 % of this money will be for you as foreign partner, in respect to the provision of a foreign account, 10 % will be set aside for expenses incured during the business and 60 % would be for ;me and my woman colleague. There after I and my family will visit your country for disbursement according to the percentages indicated.

EXECUTION OF THE PROPOSED DEAL: Therefore to enable the immediate transfer of this fund to you as arranged, you must apply first to the bank as relations or next of kin of the deceased through the aid of an attorney.I will not fail to bring to your notice that this transaction is risk free and that you should not entertain any atom of fear as all required for the transfer will be carried out legaly without breaching the laws of both land.

Yours faithfully,

James Walton

jwalton55 (at) yahoo.com

POST SCRITUM: You have to keep everything secret as to enable the transfer to move very smoothly in to the account you will prove to the bank.If however, you are not disposed to

assist,kindly delete/destroy this email in view of the confidentiality of the proposed transaction and interest of personalities involved

The following is a typical lottery scam, this one from a: admin (at) layaa168.top

As with all of these do not respond or click on any links as all the fraudster is trying to do is to get you to divulge your personal details and then extract money from your bank account.

“International Lottery Yearly Draw

2310 Cousteau Court Vista,

CA 92081

USA

This is to inform you that you won a prize money of Five Million,five hundred thousand United states  [$5,500,000,00] for the 2014 International E-mail Draw Awards, organized by International Lottery & Totalizator Systems, Inc(ITSI).

ITSI  collects all the email addresses of people who are active on the Internet , between the millions of people that subscribed to Yahoo, Hotmail, AOL, Walla, Gmail, mail.Cz, American Mail, Mail Russian, Indian Mail, Arabic Mail, Italian mails, and only few from other e-mail providers. Six people are selected each year take advantage of this offer and you are one of the selected winners.

PAYMENT OF PRIZE AND CLAIM

The winners will be paid in accordance with the Settlement Center.

ITSI  awards must be claimed no later than 15 days from the date of notification Draw. Any prize not claimed within this period will be forfeited.

Listed below is your identification number:

REFERENCE NUMBER: ITSI-0171228

These figures, which fall within the America Location file [ALF], you are asked to contact our fiduciary agent in the United States[Mr George Paolo Agent Name: George Paolo

Posted 9th January 2018