Fraudulent Email Claiming to be from the FBI
Fraudulent e-mails containing the subject line "New DHS Report" have been circulating since August 15, 2009. The e-mails claim to be from the Department of Homeland Security (DHS) and the FBI Counterterrorism Division.
The e-mail text contains information about "New Usama Bin Ladin Speech Directed to the People of Europe," and has an attachment titled "audio.exe." The attachment is purportedly an audio speech from Bin Ladin; however, it actually contains malicious software intended to steal information from the recipient's system.
A fraudulent e-mail message claiming to contain a confidential FBI report titled "New Patterns in Al-Qaeda Financing" has been circulating since August 15, 2009. The e-mail has the subject line "Intelligence Bulletin No. 267," and contains an attachment titled "bulletin.exe." This message, or similar messages, may contain files that are harmful to the recipient’s system and may try to steal user credentials.
A fraudulent e-mail, initially appearing around June 16, 2009, claims to contain a confidential FBI report from the FBI "Weapons of Mass Destruction Directorate." The subject line of the email is "RE: Weapons of Mass Destruction Directorate," and contains an attachment "reports.exe". This message and similar messages may contain a file related to the "W32.Waledac" Trojan software, which is designed to steal user authentication credentials or send spam messages.
DO NOT CLICK ON ANY LINKS ASSOCIATED WITH THIS E-MAIL OR SIMILAR E-MAILS, IT IS A HOAX.
The FBI does not send unsolicited e-mails or e-mail official reports. Consumers should not respond to any unsolicited e-mails or click on any embedded links, as they may contain viruses or malware.
Social Networking Scams
The Internet Crime Complaint Centre [IC3] has recently released a report covering how scammers hijack accounts on social networking sites and spread malicious software by using various techniques.
One technique involves the use of spam to promote phishing sites, claiming there has been a violation of the terms of agreement or some other type of issue which needs to be resolved. Other spam entices users to download an application or view a video. Some spam appears to be sent from users' "friends", giving the perception of being legitimate. Once the user responds to the phishing site, downloads the application, or clicks on the video link, their computer, telephone or other digital device becomes infected.
Some of the malicious software installed gives the scammers access to your profile and personal information. These programs will automatically send messages to your "friends" list, instructing them to download the new application too.
Infected users are often unknowingly spreading additional malware by having infected Web sites posted on their Webpage without their knowledge. Friends are then more likely to click on these sites since they appear to be supported by their contacts.
How to Avoid the Social Networking Scams:
• Adjust Web site privacy settings. Some networking sites have provided useful options to assist in adjusting these settings to help protect your identity
• Be selective of your friends. Once selected, your "friends" can access any information marked as "viewable by all friends"
• Disable options and then open them one by one such as texting and photo sharing capabilities. Users should consider how they want to use the social networking site. If it is only to keep in touch with people then perhaps it would be better to turn off the extra options which will not be used
• Be careful what you click on. Just because someone posts a link or video to their "wall" does not mean it is safe
Each social networking site may have different procedures on how to handle a hijacked or infected account; therefore, you may want to reference their help or FAQ page for instructions.
Virus Protection Scams
There is an increasing incidence of 'scareware' surfacing on the Internet. You may have been browsing on Internet sites when you received a pop-up window warning that your computer has an infection or a warning flashing that offers a free scan to see if your computer is infected. You may even receive the equivalent of a 'blue screen of death' which advises your computer has crashed.
These are virus protection scams that may offer to sell you software to remove the infection, or scam your computer and remove it for you. The costs vary but generally fall in the range of $30 -50.
However the scam arises if you
purchase the software as it doesn't work. When you download it, you may even
receive malicious software as part of the download. This software may try to
steal personal information and passwords, or it may install 'ransomware'
that makes some of your data unavailable until you pay a fee to receive the