Archive for the ‘Fraud’ Category

Gangs use online scams to target Haiti cash: BBC probe

Thursday, February 18th, 2010

(AFP) – 1 day ago

LONDON — Criminal gangs have defrauded people out of funds intended for Haiti earthquake victims by setting up bogus charities and seeking contributions online, according to a BBC investigation out Tuesday.

Scam emails began appearing online within days of the January 12 earthquake, including some with logos for genuine charities. One for the British Red Cross was traced to a computer in Nigeria, the BBC reported.

Another group, calling itself the M E Foundation, emailed the BBC photos of Haiti projects it said it was involved with — but which turned out to be of disaster relief activities from the 2005 Pakistan earthquake.

British charity SOS Children said the photos were cut and pasted from their website.

“The problem is it’s not just about exploiting a donor or a charity, really they’re exploiting the victims,” said its boss Andrew Cates.

“They’re taking money people want to give to the victims of these natural disasters and they’re stealing it.

“So I don’t feel that they’re robbing me, I feel that they’re taking from the mouths of children we’re trying to help and that is something which is very difficult not to get angry about,” he added.

Another scam email was sent by a charity calling itself Help the World — when the BBC called the mobile number it gave, its reporter was told it focused on repairing schools.

But the London address given turned out to be a jazz and blues bar, it said.

Political leaders and celebrities made passionate appeals for help and themselves donated to the relief effort quickly organized in the wake of a tragedy that has killed at least 217,000 people and left 1.2 million homeless.

The result was an unprecedented deluge of aid from the private sector, the United Nations and non-governmental groups, although part of that relief was not initially getting to those who most needed it.

Despite efforts to coordinate the massive aid effort, tens of thousands remain homeless, sheltering in makeshift camps across the capital as the rainy season approaches.

Post to Twitter

Tags: , , ,
Posted in Fraud | Comments Off

Top 7 tips for safe family surfing

Thursday, February 4th, 2010

Top 7 tips for safe family surfing

1. Exercise caution when you add personal data to your accounts. Keep the critical data to a safe minimum. Do not disclose important information such as social security number, date of birth, home address or phone number, before you know for sure who you are talking to. This way you avoid the so called identity theft, impersonations, fraud, and phishing. Personal data is usually required when creating an account for a social community, e-mail addresses, or for online paying.

2. Online interactions may require the uploading of personal photos. These photos you chose to upload on a site could be used without your consent for advertising campaigns or, worse, for pornographic purposes. The inappropriate use of these photos can have unfortunate effects on you and on the other people present in these images. So, pay great attention to the security and availability of your data on websites. In order to discourage image theft, you might also add a watermark text on your pictures in areas where removal is impossible, or at least difficult.

3. You may also want to use an alternative e-mail address in order to avoid spam (unsolicited messages that advertise various products and flood your e-mail address). It is mandatory that you never use the company’s e-mail address for personal purposes.

4. Pay great attention to the links you visit and do not download any content before you are absolutely sure that it comes from a trustworthy person/source. Malware is mostly found on file sharing websites such as torrent portals, “warez” communities, other services hosting pirated content, and online games. Other links may expose the computer user to hardcore pornography or other types of inappropriate content.

5. Always keep an eye on the children while they are using the computer. Do not allow them to join a Web site before you have examined the site and read the privacy statements. Restrict their access to sites that display inappropriate content (pornography, gore, racism). Educate them not to trust strangers and be skeptical when it comes to sharing critical information about them or concerning the entire family. Make sure they understand the importance of protecting their/your privacy. Limit the time they spend in front of the PC.

6. Use a good anti-malware solution. It will solve most of the problems you can encounter on Web: it can block spam, phishing attempts and prevent malware from infecting your computer, therefore keeping your private data safe. A Parental Control feature provides comprehensive settings for web and application control as well as the ability to filter web, mail and instant messaging traffic for certain keywords. It offers three initial restriction levels based on the age of the specific user which can be customized to fit anyone’s needs.

7. Make sure you update your antimalware, firewall and spam filters as frequently as possible, and that you don’t forget to scan your system often.
Everyone will surely enjoy a safe online experience if the rules above are taken into consideration!

BitDefender, CS Loredana BOTEZATU
Vodcast UK, Matthew HICKS

Post to Twitter

Tags: , , , ,
Posted in Fraud, Security, phishing | 3 Comments »

Beware of Phishing Site

Wednesday, February 3rd, 2010

We are receiving e-mails claiming to be from CIMB Bank.

Here is the message:

Dear CIMB Bank Member,

You have 1 unread Security Message!

Click here to resolve the problem

Sincerely,
CIMB Clicks Internet Banking Security Department Team.

fake CIMB Bank

CIMB Internet Banking Phishing Site

The above page is shown after clicking on the link in the email. By looking at the URL, you can tell that is site is fake. The full URL is partially masked as we do not want to promote the site.

Unsuspecting bank customers might log into these fake sites, giving away their usernames and passwords easily.

In order to avoid phishing sites, do not click on URLs in emails. Alternatively, install free BitDefender Antiphising tool available at BitDefender Free Tools section. When in doubt, just pick up the telephone and call the bank directly.

Post to Twitter

Tags: , , , ,
Posted in Fraud, phishing | Comments Off

Beware of sites peddling fake antivirus

Friday, January 22nd, 2010

Following the BitDefender report on “Massachusetts Senate Race queries on search engines could install malware”, I decided to make a video of the fake antivirus. While doing some searches in Google.com, a fake antivirus screen will pop-up to display a scanning process. Alot of “viruses” are catched in the scan. Attempts to cancel the scan will end up with a download link.

The site could be hosting information on the senate race in US. Once it has been indexed by Google robots, the site is being redirected to a fake Antivirus site. The link will also contained an affiliate identification number, mainly for commission purposes.

Close the browser to stop the download.

Post to Twitter

Posted in Fraud | Comments Off

Police break up global cybercrime and fraud website

Saturday, January 16th, 2010

LONDON – To the casual observer, there was little to distinguish the Java Bean Internet cafe in Wembley from the hundreds of others dotted around the capital.

But to surveillance officers staking it out, this unremarkable venue was the key to busting a network of cyber criminals.

From the bank of computers inside, a former pizza bar worker ran an international cyber “supermarket” selling stolen credit card and account details costing the banking industry tens of millions.

Renukanth Subramaniam, 33, was revealed on Thursday as the founder and a major “orchestrator” of the secret ­DarkMarket website, where elite fraudsters bought and sold personal data.

The discovery was made after it was infiltrated by the Federal Bureau of Investigation and the United States Secret Service.

Membership was strictly by invitation. But once vetted, its 2,000 vendors and buyers traded everything from card details, obtained through hacking, phishing and ATM skimming devices, to viruses with which buyers could extort money by threatening company websites.

The top English language cybercrime site in the world, it offered online tutorials in account takeovers, credit card deception and money-laundering.

Equipment, including false ATM and pin machines and everything needed to set up a credit card factory, was available.

It even featured breaking-news-style updates on the latest compromised material available, while criminals could buy banner adverts to promote their wares.

So vast was its reach, with members in the United Kingdom, Canada, the US, Russia, Turkey, Germany and France, the UK’s Serious Organised Crime Agency, which helped bust it, said it was “impossible” to put a figure on how much it cost banks worldwide.

Subramaniam, who used the online nickname JiLsi, was remanded in custody at his own request after pleading guilty to conspiracy to defraud and five counts of furnishing false information. The judge warned that it was “inevitable” that he faced a “substantial custodial sentence”.

A Sri Lanka-born British citizen, Subramaniam was a former member of ShadowCrew, DarkMarket’s forerunner, which was uncovered by the US Secret Service in 2004.

DarkMarket’s members never met in real life. The site operated an “escrow” service, with payments and goods exchanged through a third party and an arbitration service resolved disputes. To keep off the radar, the rules were strict: No firearms, drugs or counterfeit currency.

Subramaniam was one of the top administrators. He kept his operating system on memory sticks. But when one was stolen, costing him £100,000 ($227,000) in losses and compromising the site’s security, he was downgraded to reviewer.

Surveillance officers caught him logging on to the website as JiLsi unaware that the fellow criminal MasterSplyntr he was talking to was, in fact, an FBI agent. Considerable money was exchanged, though actual transactions took place away from the site for security reasons.

Described as “a very quiet man”, Subramaniam worked for a pizza company and as a despatch courier.

He is charged alongside John McHugh, 66, known as Devilman, also a site reviewer who has pleaded guilty to conspiracy to defraud and at whose home officers found a credit card-making factory. The two will be sentenced later.

But the battle against cybercrime continues.

“This was one of the top 10 sites in the world but there are more than 100 we know of globally and another 100 we don’t yet know of,” said the investigators. THE GUARDIAN

Post to Twitter

Tags: , ,
Posted in Fraud | Comments Off

Internet scams target Haiti donations

Saturday, January 16th, 2010

Scams are already circulating on the internet attempting to lure those touched by the Haitian earthquake tragedy to send money to cybercriminals instead of those who need it.

One scam, modelled on the advance letter fee fraud, mimics the British Red Cross appeal for donations, starting off with a description of the disaster and the fact “thousands of people there [are] in desperate need of humanitarian assistance.”

The advance letter fee fraud, also known as the 419 scam, or the Nigeran letter scam, usually involves a “request for urgent business transaction,” according the Canadian Anti-Fraud Call Centre.

Source – CBC news

Post to Twitter

Tags: , ,
Posted in Fraud | Comments Off