Category: Scams

Facebook Scam: Enable Video Calls

A new Facebook scam starts with a message saying,

Enable video calls

This scam installs a malicious app in your Facebook account that reads through your profile and spams all of your friends. The malicious app then sends them to an online survey that has nothing to do with Facebook.

Facebook does have a video feature but you don’t need to click on someone’s post and enable a Facebook app to enable it. So why would one of your friends post a link to malware? They probably don’t know, malware has a way of using people’s Facebook accounts to advertise itself.

If you see a message like the one in the post above, let your friend know it’s a scam.

The right way to use Facebook video is by opening up the chat window then clicking on the icon of a video camera,

Twitter Follower Scam

This scam has appeared on Twitter recently. There are a few minor variations but they all seem to work the same. It starts with a Twitter message saying,

I will follow back if you follow me

There’s a link at the end of the message that goes to a web page. On this page are two signup options, one free and a paid one called VIP.

The free one asks for your  Twitter username and password. It then asks prompts Twitter to grant you access to your account. You should not enter these details into any untrusted service.

Once they have your account password they send spam using your Twitter account, sending them to this same web site.

The VIP service is just as bad. It asks for your credit card details and Twitter account details, promising hundreds of Twitter followers. People who fall for this also end up sending spam from their own account, with the added risk of losing money.

Please help stop this scam by letting people know about it.

Computer Technician Phone Call Scam

I received a phone call that began with

Can I speak to the user of the computer?

Then the caller started explaining he’s from Windows. I hung up, frustrated, because it’s a scam. Never believe anything like this from an unsolicited caller. Talking to other people it’s evident the scam involves the caller gaining remote access to your computer, installing spyware, then invoicing you for their time.

Have you received phone calls like this? Care to share your experience?

Update: List of phones numbers these calls have come from:

  • 00496075278802 [UK]
  • 760 429 2887 [USA]
  • 760-429-2887 [USA]

One Million Euro SMS Scam

The following SMS is a scam,

Congratulations! You have won One Million Euro on orange mobile promotion; send your names and Mobile No. via email to; orange [at] citynew [.] com

Please don’t respond to this message. It’s part of a scam. Just delete it.

Updated 15 Oct 2012:

Another couple of SMS’s that are also scams:

Your Mobile# has won 1 MILLION POUNDS in NOKIA/FREELOTTO Ref No:NK672 for claim Email us (NAME/COUNTRY/NUMBER/EMAIL) to nokiaglobal@<removed>

and

Transaction no: 4224 Your mobile number has won 720,000.00 pounds in the ongoing freelotto bonanza for claim email: frlo1214@<removed>

If you have more of these post them in the comments below. Remember that they’re scams, don’t reply to the message.

Facebook Survey Scam

This scam uses Facebook to trick people into completing a survey. It starts with an interesting Facebook message like the ones below,

CLICK HERE to see the status udpate that got a girl expelled from school!!

or

OMG… This GIRL KILLED Herself After HER DAD Posted This ON Her WALL!

or

OMG! Look What this Kid did to his School after being Expelled! After this 11 year old child was expelled from his school he went beserk

Anyone curious enough to click on the link is taken to a page that “looks like” Facebook, but isn’t Facebook. Then two things happen:

  1. You’re asked to “Like” the page, which adds the scam to your own Facebook wall. This is how the scam spreads.
  2. You’re also asked to fill in a survey. This is how the scammer is making money. They’re being paid by a marketing company to fill in these surveys.

And that’s it. There’s no interesting video or article. It’s just a viral scam – it spreads because it sounds interesting.

So if you come across this, don’t click on the links, and let the person who posted it know about the scam.

Thanks to DBM for writing in and letting me know about it. I’m sure that by letting others know about scams we can all help reduce them.

Fake Skype Email

This email claims to be from Skype, offering a new version to download. It’s fake, the link has nothing to do with Skype.

Remember, Skype does not email you and me with links to download. Skype will update itself.

NEW VERSION OF SKYPE 2011 IS RELEASED

Dear Skype Users,

To start New Year 2011 with new features, options and improvements, we’ve just released the new version of Skype Software.

<link removed for security reasons>

New in this version :

* Up to 5-way group video call.
* Redesigned calling experience.
* Improved video snapshots gallery.
* Improved browser plugins performance on some websites.
* Reduced false positives on browser plugin phone number recognition.
* New presence icons.
* Improved handling of calling attempts made when the user has run out of credit.
* Improved access to sharing functionality  

To check and download the latest version , go to :

<link removed for security reasons>

Start downloading the update right now and let us know what you think about it.

We’re working on making Skype better all the time !

Talk soon,

The people at Skype

====================== PROTECT YOUR PASSWORD ===========================
Skype or Skype Staff will NEVER ask you for your password via email. The only place you are asked for your password is when you sign in to the Skype application or our website.

If you see the above email, delete it or mark it as spam.

Fake Acrobat Reader 2011 Emails

The following email claims to be from Adobe and suggests to install a new version of Adobe Acrobat Reader. It’s fake. Adobe does not email people asking them to download and install new versions.

The email says:

ADOBE ACROBAT READER 2011 UPDATE NOTIFICATION

This is to remind that a new version of Adobe Acrobat Reader 2011 with enhanced features for viewing, creating, editing, printing and internet-sharing PDF documents has been released.

To check and download the latest version , go to :

<link removed for security reasons>

Start downloading the update right now and let us know what you think about it.

We’re working on making Adobe Acrobat Reader better all the time !

Thanks and best regards,

Adobe Support

© 2011 Adobe Systems Incorporated. All rights reserved.
Adobe Systems Incorporated |343 Preston Street | Ottawa | ON | K1S 1N4 | Canada |

Remember, if you see this email just delete it, or mark it as spam.

Update: There’s now another version of this email, it too is a scam. The email looks like:

Adobe is pleased to announce that a new version of Acrobat PDF Reader was released today with new features, options and improvements.
<link removed for security>
What’s new in this version :
* Read, search, and share PDF files. * Convert to PDF. * Export and edit PDF files * Add rich media to PDF files * Combine files from multiple applications * Increase productivity and process consistency * Streamline document reviews * Collect data with fillable PDF forms * Protect PDF files and content * Comply with PDF and accessibility standards
To get more and upgrade to this version, go to  :
<link removed for security>
Start downloading the update right now and let us know what you think about it.
We’re working on making Adobe Acrobat Reader better all the time !
Talk soon,
The people at Adobe
Copyright © 2011 Adobe Systems Incorporated. All rights reserved.

Chase.com Scam Email

The following email is a scam, it looks confusing and encourages readers to click on a link. And there are many links in this email, all pointing to a hacker’s virus infected site.

Below is the email, with personal details and all of the malicious links removed:

Dear …,

Thank you for scheduling your recent credit card payment online. Your ($USD) $117.00 payment will post to your credit card account (CREDIT CARD) on 08/06/2010.

Now that you’re making your payment online, are you aware of all the convenient ways you can manage your account online?

Just log on to www.chase.com/creditcards today. Using the "I’d like to…" links for your credit card account, you can access more than a dozen features, including links to:
See statements – Choose to stop receiving paper statements, and see up to six years of your statements online.
See automatic payments – Set up monthly payments to be made automatically.
Transfer a balance – Transfer a balance to your credit card account.
Go to Personalized Alerts – Schedule Alerts to remind you of key account activity.
You can also see past payments you’ve made online by logging on to www.chase.com/creditcards and clicking "See/cancel payments" under "I’d like to …"

If you have questions, please call the Customer Service number on the back of your credit card.

Thanks again for using online payments.

Sincerely,
Cardmember Services

Never trust emails like this, especially if you don’t have an account with the company.

A useful trick to spot these scams is:

  • Identify which company the email claims to be from. In this case, it’s a company called Chase.
  • Place your mouse pointer over a link, but don’t click.
  • Look at the bottom of your screen, you should see the real link it points to. (You need to be using a modern web browser for this to work).
  • If the addresses don’t match then it’s likely a scam.

E.g., the email above talks a lot about chase.com. This is a real company in USA. scam link - do not visit this siteWhen I place my mouse pointer over the link, my browser says it goes somewhere different. The addresses don’t match, this is a scam. See the picture on the right.

Emails That Ask You To Run An Attachment

Any unsolicited email that asks you to open an attachment is bad. If that attachment is a program then you can consider it a scam. Below is an email I received with a link to malware. It’s asking me to download and run an unknown program. The email also says it was sent by me, rather odd. I’ve removed personal details from the email,

A new settings file for the <email address> has just been released

Dear user of the <email address> mailing service!

We are informing you that because of the security upgrade of the mailing service your mailbox <email address> settings were changed. In order to apply the new set of settings please click to this link and open file((If clicking the link in this message does not work, copy and paste it into the address bar of your browser.)

http://<removed>/ settings.exe

Best regards, <email address> Technical Support.

The words in italics and in < > are my changes, to make it easier to read and search, and to avoid linking to the actual malware.

Any email that looks like the above is suspicious. Any attachment (and especially one that ends with .exe) is suspicious, and when it says that I sent it to myself it leaves no doubt that this is a scam that links to malware.

Learning to recognise these scam emails is important. Relying on virus scanners is good but common sense also helps.