Bnpositive's Blog

You are here: Home / Archives for malware

malware

By Leave a Comment

How to Spot Malicious Emails in Your Inbox

Malicious Email Example

Just a quick and hopefully helpful blog post to help you know what to look for in emails that you believe are suspicious and maybe malicious in nature.

For this email it states that it's from USPS.com and regarding delivery a package where they're suggesting money may be due upon receipt or before they will finalize getting the package to you.

  1. The "Friendly Name" of the email address says "USPS" but if you look at the actual email address you'll notice the actual email address is palmbeachpools@ns1007092.ip-92-204-136.us via palmbeachpools.com. Doesn't really look like an email address that would be coming from the USPS right? There's your first clue. Also, it says "via palmbeachpools.com", which is stating what email server sent the email.

    Now I'm sure the owners of palmbeachpools.com are upstanding citizens in their community, but pretty certain they're not letting the USPS.com use their email servers as a business decision or gesture of good will.

  2. Looking at the general content of the email, things look like they could be legitimate. However, if you hover over the button link in the email they're wanting you to click on, you'll see they're directing you to that palmbeachpools.com website again and into a suspicious looking directory that's probably been hacked on their server and contains code that will do the malicious things they've designed this email to instigate.

As a general warning, don't click on things in emails received that you're not expecting to receive. Even if it appears to have come from a legitimate source. Do a couple of quick checks on things like this and make sure there's nothing that looks suspicious. I personally never click on an attachment in an email that I didn't specifically ask to have sent to me by someone that I'm expecting, so that's a pretty good tip too if you're prone to fall for this kind of stuff.

By Leave a Comment

5 Smart Tips for Safe Online Shopping in 2021

Laptop Credit Card - Online Shopping

Online shopping is fast becoming the new norm. Thanks to the freedom, convenience, and ease it offers, you're probably thinking of doing it yourself. However, one of the biggest concerns most online shoppers have is security. How secure are your financial details on shopping websites?

Here are a few tips that can help you stay safe in 2021.

1.     Start with trusted sites

There are millions of online retail sites today. Most of them are legitimate, but some contain links to spam and malicious content. You, therefore, need to be extra careful when searching for a shopping website.

First, start with the popular and well-known sites like Amazon.com or Ebay.com. You're less likely to be scammed on these sites since you've probably used them before. You can also try your favorite retail stores if they're online, but ensure you know the right web addresses.

Be on the lookout for the popular domain misspelling scams, for instance, a hacker may use Amazon.net instead of Amazon.com. These tricks have been successful for years because they're not conspicuous at first glance.

2.     Look for HTTPS URL and a padlock icon

Before sharing your credit or debit card information on an online shopping site, here are the two rules you should follow: Ensure the site’s URL starts with HTTPS, and confirm that a locked padlock icon appears slightly left of the URL bar. (Click here for a full list of privacy tips while shopping online)

The (S) in HTTPS stands for secure and shows that the shopping website has integrated a Secure Sockets Layer (SSL) encryption. The locked padlock (sometimes green) indicates that your connection to the website is secure.

Avoid sharing any information on sites with just HTTP and without the padlock.

3.     Don’t shop over public wi-fi

We’ve heard stories about public wi-fi hotspots and cybercriminals countless times. By now, you should know that while shopping using public Wi-Fi seems convenient, it leaves your data in the hands of hackers.

Personal information such as your credit card details, bank details, phone number, and your emails are but a few of the data a hacker can manipulate from the vulnerabilities of unsecure Wi-Fi.

So, instead of exposing yourself to that much risk, always use your data to complete your online shopping transactions. And if you really have to use Wi-Fi, a simple VPN download will go a long way to improving your security.

But still, if you can avoid insecure public Wi-Fi, do yourself a favor and do it.

4.     Keep your software up-to-date

Updating your software is the #1 online security measure every security expert recommends. Whether you're shopping on your phone, laptop, or tablet, ensure that the operating system is up-to-date with the latest updates.

Updating your software fixes any vulnerabilities that cybercriminals may exploit to send malware into your system.

5.     Avoid ‘too good to be true’ offers

In any e-commerce store, if any product pricing appears to be too good to be true, it probably is. Don't trust any seller offering such an offer. This is usually a trap by some sellers to collect your credit card information among other data, so they can sell it.  In other cases, the product might be of very poor quality.

Conclusion

When shopping online, getting scammed isn’t just a far-fetched idea. It happens to millions of people every day. You should therefore be careful with how you go about the process if you want to avoid it. With the tips above, we’re confident that you’ll always be one step ahead of the criminals.

Photo by rupixen.com on Unsplash

 

Other Related Articles

By 3 Comments

Can You See the Red Flags in This PayPal Account Phishing Attempt

PayPal Phishing Email Screenshot
Click Image to Enlarge

It still surprises me the number of people that get taken by these types of spam emails, normally leading to malware installs, identity theft or other annoyances of life in the digital age. For me I hardly ever click on links in an email if I'm not expecting the email from someone already in advance. Even then I take a few quick seconds to scan the email and look for anything that seems fishy to me. Or should that be "phishy"?

Can you spot all the issues with this email I recently received:

  1. Misspelled the name of the company in the sender's name "Paypl service"
  2. Spammy looking email address! - this isn't always a reliable tell-tell sign to watch out, but more often than not it should give you a heads up. In this case the account name (prior to the @ symbol) seems odd, and in this case the server the email is coming from is also pretty sketchy looking
  3. Not always a red-flag (sadly) but there's numerous instances of letters being capitalized in the body of the message that shouldn't be if following standard grammatical rules
  4. Although not an alert all by itself, anything I see a link that's formatted as a button, I know there's opportunity for the things to be hidden, in this case we look at where the link is going to go by hovering over the link with our mouse in the browser and our browser telling us where in the bottom-left-hand corner
  5. Look at that link! //cat.jp.as.criteo.com/ now I'm going to stop right there because it's interesting to note that "Criteo" is a legitimate advertising platform, so these spammers appear to be either absolutely tracking their efforts of success or potentially spoofing this further to obscure their ploy. Taking a further look at the remaining part of the URL you'll see another website address being include after the "?r=" query string. That leads me to believe that link is being redirected even further to help cover their tracks

Here's another quick Public Service Announcement for you, don't just go clicking on links in emails even when they look like they're coming from legitimate sources. 

In this case, if you did indeed have a PayPal account and you were worried about it. Go to their website directly by opening your browser and typing in the URL of the company directly and visiting the site that way. Login to your account and see if there are any warnings or alerts posted there. If the company has a chat feature for support, send them a chat and have them verify if there are or are not any issues with your account that need to be addressed.