Friday, November 29, 2013

Dangerous Email that’s Hard to Ignore

It may be tempting but you should take the time to question your Email before you open.
A common way computers are infected or compromised has always been a simple yet well thought out deception. It can happen to anyone and the use of social trickery is nothing new. Understanding the victim is all that’s needed to receive their cooperation. 

If you’re thinking it could never happen to me this refreshed couldn’t hurt. You might want to share the examples here with your friends, family and especially your employees. Social engineering has come a long way since the possibility of seeing Anna Kournikova naked.


Here’s a common example that has been used to infect computers with the crippling Cryptolocker extortion attack.

blog-email-fedex

This one and variations are going to get more popular as Santa starts shipping his presents. In this example the “From” email isn’t even disguised which means these guys were really lazy. Don’t bother replying because the Email address belongs to someone who has already been hacked and was probably shut down by the time you receive your Email.

Any Email “bait” like this will appear to be a legitimate message. The attacker linked to text and a graphic located at FedEx. The simple line of code below is all that’s needed to display the FedEx logo

<img src= “https:// catalog.fedex.com/images/external/gsi/hdr_fedex.jpg">

This Email from fake UPS is also tempting because you certainly wouldn’t want to miss anything. We all love packages.
blog-email-ups


Human Resources Needs You

Here’s one directed at employees designed to be a standard employment request. In this case, it’s to use the company car. It’s very common to see attachments that appear to come from Human Resources.
blog-email-vehicle

The “From” address and even filename has been doctored to make it appear to be from within the company. If the company is large or you’re a new employee downloading and filling in this form may not seem suspicious. It’s not unusual for an attack to be targeted since information on officers and HR managers is easy to find.



You’ve Been Reported

I’ve received a few claiming to be from Dun & Bradstreet trying to scare companies into thinking they need to clear their good name.

blog-email-dnb

It’s also common to see fake Emails from the Better Business Bureau. In the U.K. there’s Companies House which registers and keeps track of companies for the Department for Business, Innovation and Skills.

blog-email-companies


Question Every Email

These phishing expeditions are common and effective in all countries. I generally question every Email even when it comes from someone I know. How many times have you received Email from friends saying they’ve been hacked? If you have any doubts just contact the sender or an official with the company sending the message. My bank has always thanked me for calling. They love to impress customers with their knowledge of security trends.


Curiosity Killed Your Job
It’s not unusual to receive messages which appear to be meant for someone else. More than a few attacks succeed because of human curiosity.

blog-email-linked

 


Speaking of curiosity, I’ll end with a newer version of a classic bait and steal scheme.

blog-email-intuit

I’ve worked for companies where discussion of salaries could be cause for immediate termination. An ancient method for infiltrating a company involved dropping an infected floppy disks labeled something like “Employee Salaries” in public places. This “Baiting” is still used but relies on DVD’s, USB Flash drive or SD cards labeled as personal or secure data. Visitors often have access to rest rooms in secure areas. What they leave on top of a towel rack could be more dangerous than high explosives.


I’m sure what I’ve discussed isn’t anything new but you may know someone who would benefit from this lesson. Share these examples along with  a healthy dose of paranoia.  The data you save may be your own.


In the News:
The Windows Club shares how you monitor changes to ANY registry value in Real-time.

Tuesday, August 6, 2013

WinPatrol PLUS For Everyone Just $2

About once a year I go crazy and try to introduce WinPatrol PLUS to the folks who have never heard of WinPatrol or have never experienced this small powerful app. For over 15 years WinPatrol has been recommended by friends and family but I never invested in any kind of expensive PR campaign.

USA Today put it best when it said, “WinPatrol may be one of the best kept secrets in computer protection.”

This recommendation came from Pulitzer Prize author Byron Acohido author of Zero Day Threat:...

No More Secrets 
The best kept secret will now be available at such a low price everyone will get the word out and we’re sure to see a world wide increase in the use of WinPatrol PLUS. History has shown once someone understands what Scotty can do WinPatrol becomes the first program they install and one they never do without. You'll never find an offer like this and it comes without any check boxes trying to trick you into installing unwanted toolbars or download managers.

Even if you're using a pirated version of WinPatrol PLUS you can afford $2.00 USD to support its future. Over 30,000 have downloaded our newest  version and the more users we have the more effective our new Community Shield data will be to protect you.

one_time_fee For a limited time upgrading to WinPatrol PLUS can be as low as $2.00 USD.  In countries where the US dollar isn’t valuable this will be an even better bargain.  Due to the extremely low price a 50 cent surcharge will be included on bank credit card orders. This charge will not be applied to PayPal orders or other purchase options. This sale will end August 10th.

scotty2011-256


WinPatrol helps you understand what's running in your computer and allows you to prevent unwanted changes. It's small, works with other programs and won't slow you down.  WinPatrol was the first program to use a  behavioral approach to detect new infiltrations and Zero-Day attacks.
WinPatrol continues to add unique features that aren’t found in Anti-Virus programs yet works and plays well with others.  It remains the smallest, fastest system monitor of its kind and complements your favorite security suite. Our future really depends on your appreciation of toolbar free software that helps your computer run the way it should.

Click Image for normal size

winpatrol-startup 
Startup Programs – Beyond MSConfig

winpatrol-active Active Tasks – Multiple Selection Allows Mass Killing

winpatrol-registry WinPatrol Monitors Any Registry Location You Want
Let WinPatrol warn you or tell it to keep your value safe.

Upgrade your computer now for just $2

Saturday, May 25, 2013

Honor Those Who Served Before It’s Too Late

Reposted from BitsFromBill.com

This weekend I won’t be cooking hamburgers or driving to the beach. Instead, I’ll be spending time reflecting on the true meaning of Memorial Day and encouraging your contribution to a special 501(c)3 called the Honor Flight Network.

 vietnamwall
Vietnam Veterans Memorial - National Park Service

In honor of those who have served, past and present, I've drastically reduced the cost of a WinPatrol PLUS license. My wish is that any extra funds you might have spent upgrading will be donated to my favorite service for veterans. In 2008 WinPatrol's Memorial Day promotion raised over $1000 that was donated to a local chapter of the Honor Flight Network. 

“Honor Flight recognizes American veterans for your sacrifices and achievements by flying you to Washington, DC to see YOUR memorial at no cost. Top priority is given to WW II and terminally ill veterans from all wars. Honor Flights have been expanded in some locations to include Korean and Vietnam veterans. In order for Honor Flight to achieve its goal, guardians fly with the veterans on every flight providing assistance and helping veterans have a safe, memorable and rewarding experience. For further information, please contact us a (937) 521-2400 or visit us at www.honorflight.org

I will also be thinking of the families who have sacrificed more than anyone knows. While I personally honor all our friends around the world who served their country, my focus this weekend is on our World War II vets who are leaving us at a rate of 800 a day.

To bring more attention to this cause I am reducing the $29.95 upgrade price to WinPatrol PLUS to as little as $5.00. While you have your credit card is handy I ask you give to the Honor Flight Network making someone's dream come true.  Family Pack licenses are available for $9.99.


Even if you already have PLUS or have no interest in WinPatrol you'll find a donation to Honor Flight Network very rewarding. Your small gift can bring real pleasure and honor to some one with limited time and opportunity.

worldwarii
Even though I lived outside D.C. for many years it was before the National World War II Memorial was built. After the donation to our local chapter I had planned to accompany my father who served on the island of Saipan. Like many, my dad lied about his age to enlist at 15 but passed away before he was able to visit this tribute to his generation.

The trip to our nations capital is a special day thanks to Southwest Airline discounts and local motorcycle groups who serve as an honor guard escorting our veterans to and from the airport. Men and women who experience this tribute have told me it’s like having a personal ticker tape parade down 5th Avenue. 

d-day

If you to think about how much you spend on Christmas, Passover, birthdays, Valentine’s Day, Weddings, Mother’s Day it’s not unreasonable to make a meaningful donation on Memorial Day. I promise you’ll feel much better than putting a ribbon decal on your car.