phishing scams
Latest
Phishing scams leveled up, and we didn’t
More than a bit of "I'm smarter than you" politics creates the divide between hacking headlines and what we actually need to worry about. On one side, researchers present findings at conferences hoping someone will raise the alarm and practical things will get done before things get worse. On the other, we have Jeff Bezos and his iPhone.
Fraudster's phoney email tricked prison into releasing him
In the movies, a daring prison escape usually involves a carefully orchestrated plan filled with intricate tunnels, ingenious bribes and chaotic distractions. But for Neil Moore, performing a similar breakout in the real world was so much simpler. With the aid of a smuggled mobile phone, he was able to set up an email address with a domain that closely resembled Her Majesty's Court Service. He then sent a forged letter approving his release to the prison, hoping they wouldn't inspect the document or sender's credentials too closely. Low and behold, the wardens were convinced of its authenticity (despite misspelling "Southwark" Crown Court) and Moore walked free in March 2014.
Guild Wars 2 account phishing, outstanding issues [Updated]
With a game as large as Guild Wars 2, it's inevitable that the unscrupulous would try to compromise accounts. Perhaps the only unexpected part was how quickly the hacking attempts started -- even before launch players were receiving notifications of these attempts. And the problem appears to be escalating as more players are affected. Along with many others, multiple Massively staff received an email (or two) stating that someone had requested a password change, and it definitely wasn't them. In the case of receiving this notification, do as ArenaNet instructs in the email: Nothing. Some folks are also reporting phishing attempts to obtain account information. Never reply to such email, and remember that ArenaNet will never ask for your password. Players can take steps to increase their account security. Since the log-in name is required to be an email address, use an email dedicated to only the GW2 game account and nothing else. Also, make sure you use a unique (and hard to guess) password and never share it. [Update: Reader Ring Bonefield sent us this link to a discussion on Reddit in which ANet employees request that those players using an exclusive email address for GW2 file a support ticket to help the studio investigate the claims. ArenaNet has also published on Reddit a list of outstanding issues relating to security, grouping, forums, trading post, and more.]
AppleCare rep tells Ed Bott Mac malware reports are up
An anonymous AppleCare support representative spoke to ZDNet's Ed Bott over the weekend, telling the reporter that complaints about malware infections on the Mac increased significantly in the first half of May. "This last week over 50% of our calls have been about [malware]," said the AppleCare staffer. "In two days last week I personally took 60 calls that referred to Mac Defender." Earlier this month, a new series of malicious software packages with names like "Mac Defender," "Mac Security" and "Mac Protector" began to assault Apple's computing platform. Websites would alert users their Macs were infected and persuade them to download and install "Mac Defender" to protect their computers from the alleged attack. Rather than eliminate malware, these trojans prompt users to provide credit card information to their authors. It's all a scam. Even so, the scam appears to be quite effective. The AppleCare staffer claims many callers believed the warnings from these malware packages were legitimate or came from Apple, and in the last week, call volume for the computer-maker's support lines was up to five times higher than normal. "I really wish I could say not many people will fall for this, but in this last week, we have had nothing but Mac Defender and similar calls," the AppleCare representative told Bott. It's unclear from Bott's interview how many callers had actually installed the phony "Mac Defender" software and how many were calling to verify the authenticity of an alert on a website claiming their computers were infected. The AppleCare staffer's facts and figures are notably anecdotal. It's difficult, for example, to reconcile a five-fold increase in call volume since the malware attacks began when only half the calls have to do with "Mac Defender." Although the AppleCare staffer's story sounds a lot like a surfer boasting about a tremendous wave, it's important to use common sense when installing software from the internet. Unlike a virus or worm that sneaks onto a computer without authorization, trojans like "Mac Defender" require an administrator to provide his or her password and knowingly install the malicious software. When TUAW first reported these malware attacks, we offered some helpful tips for avoiding these digital con games. Is this AppleCare representative capitalizing on the latest wave of Mac malware hype and exaggerating his or her story for attention? Or is the "Mac Defender" family of trojans really gaining traction among a community of unsuspecting Mac users? Let us know what you think in the comments.
The best of WoW.com: January 14th-20th
This week on WoW.com saw World of Warcraft in the news yet again, when a man from Clearwater, Florida was arrested for fraud after he sold his WoW account and failed to hand over the goods. On the gameplay side of things, Lead Systems Designer Greg Street and Lead Producer J. Allen Brack hit Twitter to answer numerous questions about patch 3.3, Icecrown Citadel, and the upcoming expansion, Cataclysm. For all of this and much more, keep reading to see the best of WoW.com from the last week.
Malware targeting gamers gets some mainstream spotlight
Those vicious and despicable malware authors are targeting gamers, according to BBC. I know, big whoop, right? The news article reports on something many World of Warcraft players have known for years -- that viruses, phishing sites, trojans, and all those dirty tech terms have us gamers smack in the middle of their digital crosshairs. The findings are a result from a study by Microsoft, which tracked the exceptional growth of a family of worms called Taterf. The programs have been around for some time now, snooping around players' computers for login details to various games with in-game currency. World of Warcraft players are juicy targets because of the remarkably large player base and existence of the gold-buying industry which Blizzard has actively warned and fought against. While the findings are nothing new, they only serve to confirm our fears about the growing threats to our accounts. WoW.com has been big about account security for awhile, and it's nice to see the mainstream media begin to show some attention to the matter.
