Even with the best precautions, internet security is constantly being threatened by clever phishing emails which try and trap the unsuspecting surfer.

Internet security is vital for everyone, so being on guard against phishing emails is vital.

Take a recent email purporting to be from Adobe which got through a number of spam filters and at first sight looks quite genuine, but there are number of worrying points.

By the way, the author of this article has not tested the web link which was provided, and nor should any reader, so this email might well be genuine!

But let’s have a look at why, even if it was a genuine one, it should be kicked out.

It starts like this:

Dear x,

Adobe is pleased to announce that a new version of Acrobat PDF Reader was released today with new features, options and improvements.

Good start. But note the simple typeface and there was also no logos and picture accompanying the text (one way the spammers get it through the spam filters).

Next comes the call to action. The second paragraph started with an active hyperlink to the supposed Adobe website (removed here and shortened, and please do not use this link by cut and pasting it into your browser bar):

official-adobe-download.org

Firstly, never use an active hyperlink in an email. It’s easier just to click it and go straight through to the website concerned, but resist. If it concerns Adobe and interests you, either look for your own Adobe shortcut, or do a search for their main site. Never click on the link provided, because that is the classic trick.

See how the address is made up: official-adobe-download. That doesn’t smell right. Downloads are retrieved from the official Adobe site, which has a .com address (not a .org address as in the example given) and not from this website which is not even a second tier page, but a main Home Page (why does Adobe need a separate site for downloads)?

The conclusion is that this will link the unsuspecting user to a fake site which will then encourage the user to download not genuine Adobe software, but most probably a Trojan Horse which will then sit on the computer and begin its real purpose (stealing data).

The email then fleshes out the message to make it sound even more genuine. So this sensible list follows:

What’s new in this version :

• Read, search, and share PDF files.
  
• Convert to PDF.
  
• Export and edit PDF files
  
• Add rich media to PDF files
  
• Combine files from multiple applications
  
• Increase productivity and process consistency
  
• Streamline document reviews
  
• Collect data with fillable PDF forms
  
• Protect PDF files and content
  
• Comply with PDF and accessibility standards

All that is camouflage, before the link appears again, just in case you didn’t click it the first time (the classic second call to action).

To get more and upgrade to this version, go to  : official-adobe-download.org

Now more window dressing to finish off the email:

Start downloading the update right now and let us know what you think about it.

We’re working on making Adobe Acrobat Reader better all the time !

Talk soon,

The people at Adobe       

Copyright © 2011 Adobe Systems Incorporated. All rights reserved.

Chatty, relaxed and all the words spelt properly (apart from dubious ‘fillable’ in above list). A nice try and apologies to Adobe if this is genuine (of course, if they did sent it out, they should know better), but this sort of email can trick anyone, unless they follow the rules. Always be sceptical, look for the obvious (not quite right website addresses) and never, ever use an imbedded link in an email.

So, when it comes to internet security, always be a cynic!

Guest Article by Neil Camp 

For those that download internet security software to safeguard themselves against hackers and cyber criminals, it must come as something of a shock to discover that some of the dubious types out there in the ether are quite canny when it comes to the con.

To download internet security software is a great idea, but it won’t always protect against phishers who are becoming ever more adventurous in their ways to part people from their money.

On this occasion, they used the Welsh language to try and mask their methods of deception. An email was sent which claimed to be from the widow of the Kuwaiti ambassador to the Ivory coast. And it was written, of all languages, in Welsh.

But although the choice of language was different, the message had a familiar ring to it, claiming that the widow had a large amount of money which she needed help in transferring to charities around the world. It was a classic phishing email, but what marked this one out was two things: firstly, most such emails are almost always written in English and secondly, there is an increasing tendency to try and use other languages (almost in a way to cover up the bad English which alerts most people to spammers).

But although this trend to use languages other than English to write the email is increasing, it can of course backfire if no homework is done by the spammer themselves. Even those whose spam filters didn’t successfully catch the email, it would appear very odd that the wife of the Kuwaiti ambassador to the Ivory coast would either choose to use such a language to send her message, or have a good enough grasp of it to use it in the first place.

Such basic errors ring immediate alarm bells.

And Welsh is a minority language, even amongst the nation’s peoples itself. The Welsh Language Board reckons that even as far as back as 2001 (when the last census was taken), only just over 20% of Welsh citizens could speak their native tongue.

But computer users, and ones who do download internet security on a regular basis, should always remain on their guard despite the sometimes somewhat ludicrous attempts to trick them out of their money. And although to most people such clumsy attempts are obvious hoaxes, there may be one or two recipients of the phishing email which are taken. And it only takes a very small number of replies to give the spammers hope that it has been worth it.

Guest Article by Neil Camp 

According to the makers of Panda antivirus software there has been a new spate of iTunes phishing emails.

The Panda antivirus software say the phishing attacks are geared towards collecting personal bank details from people’s computers and the popular Apple iTunes service is in the firing line.

The phishing attack centres on emails which are sent to people and masquerade as genuine iTunes receipts for goods not purchased. The email contains a link that the person clicks and asks them to download a malicious and fake PDF reader. If the user agrees to the download, then they are directed to other websites that download all sorts of malware.

Hackers have identified iTunes as a multi-use platform which every day has millions of people loading credit and debit card details, as well as conducting a huge amount of transactions. The potential number of victims is worrying large parts of the computers security industry.

At the heart of the ‘con’ is a genuine attempt by people concerned that they have received an incorrect receipt for a purchase they never made. The natural reaction is to click the link, identify the nature of the receipt and then try and put matters right. Of course, the hackers are in the meantime directing their victims to websites that have nothing whatsoever to do with Apple, but are there to download nefarious malware.

And once the malware has been downloaded – mostly banking trojans in this case – the viruses get to work copying a person’s bank and personal details, which then gives the hackers complete control of various financial transactions. This might range from making purchases, to draining a bank account completely.

The skill of the phishers is to replicate almost perfectly an iTunes email and then release these to millions of unsuspecting computer users.

Security experts remind people that the best way of avoiding such tricks is never to enter a supposed site by way of an email link, unless the source of the email can be completely guaranteed. As always, a suspicious mind is one of the best ways to defeat such tricks.

Luis Corrons, the Technical Director of PandaLabs, creator of Panda antivirus software range of applications, said:
“Phishing is nothing new. What never ceases to surprise us is that the techniques used to trick victims continue to be so simple, although the design and content is often very well worked. It’s often difficult not to fall in the trap. That’s why it’s absolutely crucial that when you use platforms such as iTunes, and you receive these types of notifications, never go to the website through the email, but rather from the platform itself. You can check your account status in real time from the account itself. And in this case you would therefore realize it is an attempt at phishing.”

Guest Article by Neil Camp 

Sunbelt Software, one of the leading suppliers of Windows security software, has warned that the use of network gaming consoles in employee workplaces and waiting areas actually increases the chance of distributed denial of service (DDoS) and phishing attacks.

In a recent survey, Sunbelt Software discovered nearly 40% of those questioned, and these were mostly senior IT officials in major companies, had no idea about the very real threat posed by online console gaming. They were unaware of the many documented cases of threats that relate to such activities and did not appreciate the vulnerability of companies when employees were playing, for example, Xbox Live.

Even basic steps such as keeping a record as to which employees were using consoles at any given time were not being taken. The research revealed 80% of managers said they did not keep these sorts of records, making it impossible to track down, or monitor attacks, or data leaks.

Sunbelt Security pointed out its the online element of console gaming that causes the problems. And most of the risks centred on exposing the IP address which can then be attacked, forcing a closure of the internet connection. Those behind the attacks are usually opportunist criminals, or embittered employees.

But it’s not only the company itself that is facing danger. Online gamers also can be prone to phishing attacks and social engineering scams which are designed to extract such things as passwords, usernames and other bits of valuable data. This is harvested via emails, forum threads and in-game speech.

Chris Boyd, senior threat researcher at Sunbelt Software, said:
“There are benefits to having games consoles in the workplace, as they can boost morale by providing staff with a fun diversion during lunch and other break periods, while consoles in lobby and waiting areas help convey a sense of a modern, fun and tech-savvy organisation.

“However, these benefits must be weighed against the business implications of a threat, such as a DDoS attack, which can harm productivity significantly. In most cases, the most practical option for an organisation is to disconnect consoles from the internet and use them for offline play only.”

The Sunbelt Software survey also revealed which games console was the most popular choice in the workplace. Coming out on top with a commanding 48% was the Nintendo Wii, with the Xbox 360 a close runner-up at 40% and PlayStation 3 with a mere 11%.

Any system which connects to the internet is in danger of contracting a computer virus, however there are currently few viruses which are designed to attack games consoles. If you are concerned about your games console getting a computer virus you can install antivirus software.

Guest Article by Neil Camp

Computer security company BitDefender says Barclays’ customers have been the target of a new phishing attack.

It reported the phishing attack involved a trick email which tried to lure the Barclays customers to a false Barclays website. The email stated Barclays had been acquired by another company as a result of the lending crisis.

To increase the sense of urgency and the need to take swift action, the email used the words, “We temporarily suspend access to your user…”, plus the old chestnut, “…in order to avoid further action…” hinting that failure to do as the email said, would mean a cessation of banking services.

And the message contained a link which directed the readers of the message to the false website. Once on the false website – made to look like an official Barclays web space – the banks’ customers were being asked not only for their very sensitive five digit passcode, but also details of their memorable word. This detail is useful as its used as a password recovery hint for online bank accounts.

Nick Billington, BitDefender UK managing director, warned people to be on the watch for such blatant attacks. He said:
“Banks do not send out this type of message, under any circumstances. Users should approach any unsolicited message seeking personal data with extreme scepticism. If in doubt simply delete the email.

“But the most important thing to remember is not to click links in emails which require logins. It is good practice to always type website addresses in manually.”

How to protect yourself from phising scams

To help people avoid being taken for a ride by such scams, BitDefender reminds everyone of some common sense rules.

Firstly, use an anti-phishing filter, as well as tour other security applications provided by your security suite, before you browse onto your online bank account. Secondly, ensure that the site your bank’s site uses SSL encryption (Secure Socket Layer) and security authentication methods – look for the “https” prefix and the locked padlock.

Thirdly, avoid using a non-secured computer; don’t use any computer but your own and that should have good computer security applications running in the background. Fourthly, along the same lines as the previous point, do not ever use public computers to check your bank details.

And fifthly, if you are using your own laptop say on the road, do not use wireless connections unless they can be secured and encrypted. Wireless signals can be ‘captured’ and sensitive information hijacked; what’s known in the jargon as a drive by attack.

So, online banking is convenient and a useful tool, but always be aware that access to your account is what the cyber-criminals are after.

Guest Article by Neil Camp