Please support our effort by making a small donation. Thank you!

x

March 1, 2015

The Daily Scam has made a few design changes to our newsletter as we try to improve the information we bring to you. This issue of TDS newsletter we be the last Sunday/Monday edition, The TDS will now come out on Wednesday morning each week. We will start to establish the changes you’ve asked for and make the TDS newsletter more of what you want to read and the TDS site, a portal you can more easily navigate for the information you need. As always, we invite your feedback! Send us an email how we’re doing and what you like or would like improved to Feedback@thedailyscam.com

THE WEEK IN REVIEW

Rather than offer a laundry list of scam subject lines this week, we want to take a different approach. People can greatly reduce their risk of being scammed even before they open their emails simply by looking closely at the sender’s email address.   You’ll find a detailed article for TDS members on our website titled 7 Tips for Recognizing Scam Emails Before You Open Them.

Here are a few quick tips to reduce your risks…

  1. Learn to recognize 2-letter country codes. If you can see that an email was sent from Russia (.ru), India (.in), European Union (.eu) or Brazil (.br), you are better able to evaluate whether the email is something you want to open. Check out our short video on 2-letter country codes  or look at complete list of 2-letter country on Wikipedia.
  2. Randomized text to create very odd/strange email addresses is a sure sign of spam or a scam
  3. Seeing a Username (the text in front of the “@” symbol) that is a well known business or sales pitch or product is a sure sign of spam or a scam.
  4. Finding a mismatch between the domain from which the email is sent and the purpose/reason/subject of the email. For example, the email may claim to be about your locked bank account with Bank of America, but the email sender’s address is support@bank-support.com. Look at this sample email that invites the recipient to check out Match.com singles in “your area.” The sender’s email address is not Match.com but a completely different domain name. (Remember, the domain name comes after the “@” symbol.)

1-Check out Match-com singles

 

 

Check out these recent sender’s email addresses used in scams this past week and you’ll see what we mean.

urkoxxledj@countywideins.com

TrackRBravo@skillied.net

affordableglassesonline@rotious.eu

MagicMountbySCOSCHE@splicient.net

BeActive@active.comtayc.eu

GarageProtection@deemedy.net

Copperwear_Knee_Comfort@milt.gen.in

Reversetinnitus@bothser.info

GetKeranique@thaf.asia

We continually recommend that Internet users be skeptical about everything they see online. The reason is that it is simply so terribly easy to deceive others. Let’s suppose you received an email from no-replay@fedex.co.uk about a package receipt that Fedex tried to deliver to you. Does it sound legitimate? Fedex is certainly a legitimate delivery service and they have a branch in the United Kingdom and an online presence at “fedex.co.uk.” So it seems legit, right?

Wrong! (We’re sure you saw that coming.) If you Google the full email address you’ll find MANY links that refer to this sender’s email as a scam.

2-Fedex scam email address

 

Google is a great resource to check up on email addresses, unrecognized telephone numbers that call you, or domain names. Use it often! By the way, check out the blast of scams sent in the name of Fedex recently:

 3-Fedex UK email list

 

 

 

 

 

 

 

 

 

 

 

 

Phish Nets: Google Account and Apple ID (again!)

Google is a great resource to check up on email addresses, unrecognized telephone numbers that call you, or domain names. Use it often! By the way, check out the blast of scams sent in the name of Fedex recently:

 

At first we thought that GarageDoorsFortLauderdale.com was a legitimate website that had been hacked. We were very surprised when we looked up the domain in Google…

Google is a great tool to investigate suspicious emails and websites!

Here’s yet another phishing scam disguised to look like an email about your Apple ID. People often forget that an Apple ID must be set up with a credit card, along with a lot of other personal information. Gaining access to your Apple account is like handing someone use of your credit card. It isn’t uncommon for the scammers to charge $500 in Apple gift cards to your account!

6-Verification of your Apple ID

Don’t be misled by the official-sounding domain name “CloudAssistID.info.” This is NOT Apple.com. A lookup using Google  shows no such domain and that this domain, and other similar domains, have been used as phishing sites to capture user’s login information.  Just delete!

 

 

 

 

Your Money: Payment Confirmation and Sad News

We often hear from people who receive bogus email invoices (and even some printed and sent through the US postal service mail!) for goods or services that they never ordered. Some of these look so official or are worded so well that we don’t notice that the email doesn’t contain a single bit of personal information to identify the recipient. Here’s a perfect example:

 

If you look carefully you’ll see that this generic email could be sent to anyone or any business. “Dear user” is the first clue. The email recipient’s curiosity may be his or her undoing though. Double-clicking the attached Word file can cause a computer infection. Here are a few articles detailing recent Word Trojan files used to attack people via email during the last few months:

Evan Apple computers are susceptible to malware threats! (However, there are far fewer threats that target the Apple operating system than Windows computers.) Many Apple computer owners don’t realize this and there do not install anti-spyware/malware software. If you have an Apple computer, we STRONGLY recommend installing software made by Sophos. It is available for free at:

As for sad news, do you remember the explosion of “I got mugged in London” scams a few years ago. The scammers have moved on to other related scams but all involve hacking a friend’s or relative’s email account and sending the scam out in their name. Don’t fall for this junk. If you think there is the slightest possibility that it may be true, CALL your friend or relative first. Otherwise we guarantee that you’ll never see your money again.

 

 

 

A final note about the “Sad News” scam above…. The email was sent from a hacked AOL account. AOL, Yahoo and Hotmail are the most hacked email services on the planet. If you have an account with these services, change your password to something at least 10 characters long. Or better still, open a Gmail account!

 

 

 

 

 

Top Story: Claims Too Good to be True

You would be surprised how many people let their curiosity get the better of them, or believe in the junk that pours into their inbox and click on links they shouldn’t. While some of the emails below are laughable, others are plausible enough that you just might click. For example, are you thinking about a vacation and looking for cheap air tickets?

10-Fly with Southwest Airlines for getaway

 

 

 

 

 


In this next scam, notice that it was sent from an email address in India. See the 2-letter country code “.in” Also, at the bottom of the email were many inches of blank white space, which is very suspicious. When we swiped through it with our mouse we discovered LOTS of white text against the white background. Our readers will know that the text is meant to try to fool anti-spam servers. Just delete!

 

11-Secrets to cheap air travel - India

 

 12-Secrets to cheap air travel - hidden text


FOR YOUR SAFETY: Your Criminal Record is Publicly Available

By now, our readers know that anything meant to shock or amaze you online is spam at best, or a scam or maliciuos at worst. Like this startling email about your criminal record!

This scam email employed another trick meant to engage the recipient’s curiosity by including the recipient’s email address in the sender’s FROM address. Just delete! And don’t worry…. Your criminal record is safe with us.

 

 

 

 

 

 

 



Surf safely!