Thursday, July 20, 2017

Cell phone "smishing"


Here's a warning from Fortune (also on NBC Nightly News tonight) about smart phone smishing scams.

I have yet to get one that I recall.  But you should not respond to unexpected SMS financial messages;  you should go into the financial institution's website yourself (just as with email phishing).

And a few of these scams can infect phones with malware. 

Wednesday, July 12, 2017

Verizon contractor leaves 14 million cellular customer records open to compromise, but no evidence of actual misuse so far


Media reports indicate a breach in the data records of up to 14 million international Verizon customers, including pin data, because a company that facilitates customer service calls left certain intermediate data not properly secured.
 
The Verge has a news story here.

But there is no evidence that any data has actually been taken, but it is impossible to prove that it wasn’t.  That’s why strict audit trails and access control and elevation integrity are important to data centers.
 
These kinds of lapses were quite common in the mainframe world until the early 1990s.

Friday, July 07, 2017

Facebook phishing scam based on former Friend who is deceased


 Be careful of a new Facebook scam. I just got an email Friend request from a former Facebook friend who has deceased. The FB email was spoofed but there was no request on my account. This seems like another kind of phishing scam, possibly on deceased persons.
 
Be aware also that misspellings of "Facebook" can take you to phony imitation sites that ask for surveys and then connect you to FB (or go into an endless loop, requiring restart).

I have found that I attract a number of people from poor countries as Friends.  This may be related to my blogging about immigration and asylum issues.  Sometimes there are requests for money, help with employment, medical expenses, or charities (or even coming to the U,S., which will not be legal right now -- immediate ICE detention).  Obviously it is normally very difficult to determine which if any of these requests are genuine.


 

Thursday, July 06, 2017

Milo's first printing sells out, already tempting "Dangerous" phishing scams. Always check your account on Amazon yourself.


Here's a word to the wise.  Milo Yiannopolous's next book "Dangerous" sold out in its first printing (100,000) and my Amazon order wasn't soon enough to be in the first stock.  OK, I ordered Kindle as a stop-gap for $2.99.  But then I get a fake message saying it has shipped, and to click for directions.

So I go to the Amazon site, and see it still hasn't shipped.

So "Dangerous" may have invited some phishing scams already.