This scam installs a malicious app in your Facebook account that reads through your profile and spams all of your friends. The malicious app then sends them to an online survey that has nothing to do with Facebook.
Facebook does have a video feature but you don’t need to click on someone’s post and enable a Facebook app to enable it. So why would one of your friends post a link to malware? They probably don’t know, malware has a way of using people’s Facebook accounts to advertise itself.
If you see a message like the one in the post above, let your friend know it’s a scam.
The right way to use Facebook video is by opening up the chat window then clicking on the icon of a video camera,
This scam has appeared on Twitter recently. There are a few minor variations but they all seem to work the same. It starts with a Twitter message saying,
I will follow back if you follow me
There’s a link at the end of the message that goes to a web page. On this page are two signup options, one free and a paid one called VIP.
The free one asks for your Twitter username and password. It then asks prompts Twitter to grant you access to your account. You should not enter these details into any untrusted service.
Once they have your account password they send spam using your Twitter account, sending them to this same web site.
The VIP service is just as bad. It asks for your credit card details and Twitter account details, promising hundreds of Twitter followers. People who fall for this also end up sending spam from their own account, with the added risk of losing money.
Please help stop this scam by letting people know about it.
Then the caller started explaining he’s from Windows. I hung up, frustrated, because it’s a scam. Never believe anything like this from an unsolicited caller. Talking to other people it’s evident the scam involves the caller gaining remote access to your computer, installing spyware, then invoicing you for their time.
Have you received phone calls like this? Care to share your experience?
Update: List of phones numbers these calls have come from:
This email claims to be from Skype, offering a new version to download. It’s fake, the link has nothing to do with Skype.
Remember, Skype does not email you and me with links to download. Skype will update itself.
NEW VERSION OF SKYPE 2011 IS RELEASED
Dear Skype Users,
To start New Year 2011 with new features, options and improvements, we’ve just released the new version of Skype Software.
<link removed for security reasons>
New in this version :
* Up to 5-way group video call. * Redesigned calling experience. * Improved video snapshots gallery. * Improved browser plugins performance on some websites. * Reduced false positives on browser plugin phone number recognition. * New presence icons. * Improved handling of calling attempts made when the user has run out of credit. * Improved access to sharing functionality
To check and download the latest version , go to :
<link removed for security reasons>
Start downloading the update right now and let us know what you think about it.
We’re working on making Skype better all the time !
The people at Skype
====================== PROTECT YOUR PASSWORD =========================== Skype or Skype Staff will NEVER ask you for your password via email. The only place you are asked for your password is when you sign in to the Skype application or our website.
If you see the above email, delete it or mark it as spam.
The following email is a scam, it looks confusing and encourages readers to click on a link. And there are many links in this email, all pointing to a hacker’s virus infected site.
Below is the email, with personal details and all of the malicious links removed:
Thank you for scheduling your recent credit card payment online. Your ($USD) $117.00 payment will post to your credit card account (CREDIT CARD) on 08/06/2010.
Now that you’re making your payment online, are you aware of all the convenient ways you can manage your account online?
Just log on to www.chase.com/creditcards today. Using the "I’d like to…" links for your credit card account, you can access more than a dozen features, including links to: See statements – Choose to stop receiving paper statements, and see up to six years of your statements online. See automatic payments – Set up monthly payments to be made automatically. Transfer a balance – Transfer a balance to your credit card account. Go to Personalized Alerts – Schedule Alerts to remind you of key account activity. You can also see past payments you’ve made online by logging on to www.chase.com/creditcards and clicking "See/cancel payments" under "I’d like to …"
If you have questions, please call the Customer Service number on the back of your credit card.
Thanks again for using online payments.
Sincerely, Cardmember Services
Never trust emails like this, especially if you don’t have an account with the company.
A useful trick to spot these scams is:
Identify which company the email claims to be from. In this case, it’s a company called Chase.
Place your mouse pointer over a link, but don’t click.
Look at the bottom of your screen, you should see the real link it points to. (You need to be using a modern web browser for this to work).
If the addresses don’t match then it’s likely a scam.
E.g., the email above talks a lot about chase.com. This is a real company in USA. When I place my mouse pointer over the link, my browser says it goes somewhere different. The addresses don’t match, this is a scam. See the picture on the right.
Any unsolicited email that asks you to open an attachment is bad. If that attachment is a program then you can consider it a scam. Below is an email I received with a link to malware. It’s asking me to download and run an unknown program. The email also says it was sent by me, rather odd. I’ve removed personal details from the email,
A new settings file for the <email address> has just been released
Dear user of the <email address> mailing service!
We are informing you that because of the security upgrade of the mailing service your mailbox <email address> settings were changed. In order to apply the new set of settings please click to this link and open file((If clicking the link in this message does not work, copy and paste it into the address bar of your browser.)
Best regards, <email address> Technical Support.
The words in italics and in < > are my changes, to make it easier to read and search, and to avoid linking to the actual malware.
Any email that looks like the above is suspicious. Any attachment (and especially one that ends with .exe) is suspicious, and when it says that I sent it to myself it leaves no doubt that this is a scam that links to malware.
Learning to recognise these scam emails is important. Relying on virus scanners is good but common sense also helps.