This is another phishing scam email that has been reported. This message was received on or about February 17th, 2012. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu
You're receiving this email as a Certified Public Accountant and a member of AICPA.
Having trouble reading this email? View it in your browser.
Cancellation of CPA license due to tax return fraud allegations
Valued accountant officer,
We have been informed of your alleged assistance in tax return fraud for one of your clients. According to AICPA Bylaw Paragraph 765 your Certified Public Accountant license can be terminated in case of the act of filing of a misguided or fraudulent tax return for your client or employer.
Please find the complaint below below and provide your feedback to it within 7 days. The failure to respond within this term will result in cancellation of your CPA license.
Complaint.pdf
The American Institute of Certified Public Accountants.
Email: service@aicpa.org
Tel. 888.xxx.7077
Fax. 800.xxx.5066
Friday, February 17, 2012
Saturday, January 28, 2012
Help Desk Maintenance - Support Helpdesk - Phishing Email Sent to the Fordham Community on 1/28/2012
This is another phishing scam email that has been reported. This message was received on or about January 28th, 2012. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu
From: University Help Desk
To: helpdesk@admin.com
Date: 01/28/2012 11:09 PM
Subject: Help Desk Maintenance - Support Helpdesk
Microsoft Outlook Webmail Email User's
THE Helpdesk is currently upgrading and maintaining database Server from the
old Microsoft Server(No420134x) to the new Microsoft Server(No520193x) kindly
Fill the Microsoft Login information below.
+++++++++++++++++++++
Email:
Domain\Username:
Domain\ Password:
Confirm Password:
+++++++++++++++++++++
Thank You
Helpdesk
From: University Help Desk
To: helpdesk@admin.com
Date: 01/28/2012 11:09 PM
Subject: Help Desk Maintenance - Support Helpdesk
Microsoft Outlook Webmail Email User's
THE Helpdesk is currently upgrading and maintaining database Server from the
old Microsoft Server(No420134x) to the new Microsoft Server(No520193x) kindly
Fill the Microsoft Login information below.
+++++++++++++++++++++
Email:
Domain\Username:
Domain\ Password:
Confirm Password:
+++++++++++++++++++++
Thank You
Helpdesk
Wednesday, January 25, 2012
Wells Fargo Checking Account Update - Phishing Email Sent to the Fordham Community on 1/25/2012
This is another phishing scam email that has been reported. This message was received on or about January 25th, 2012. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.
From: Wells Fargo Online
to: user
An update on your checking account activity
Here is the update you requested for your Wells Fargo checking account XXXXXX9217.
Balance Summary
Ending Balance:
$9,621.17
Available Balance(as of Wed, 24 Jan 2012 14:35:26 +0200 ):
$13,443.33
Deposits
ONLINE TRANSFER REF #IBE1653457 FROM CHECKING XXXXXX3519 ON 01/24/12
$121.00
This information is accurate as of Wed, 24 Jan 2012 14:35:26 +0200. For the most current balance and more account details, open attached report and go to Account Activity Section for this account.
If you have questions, Wells Fargo Online Customer Service is available 24 hours a day, 7 days a week. Call us at 1-800-956-4442 or sign on to send a secure email.
wellsfargo.com Fraud Information Center
Note about balances: Ending balance reflects transactions that have posted to your account and does not reflect pending deposits or withdrawals. The available balance is an indication of funds that are available to you today; however, it may not reflect all transactions that you may have initiated or authorized. Available Balance - This is the amount of money you have in your account that is available for withdrawal. It reflects the latest balance based on transactions posted to your account, including deposited funds, paid checks, withdrawals, and purchases made with your ATM Card or Debit Card. Please note that some transaction activity (such as outstanding checks and some Debit Card purchases) may take several days to post to your account and, therefore, may not be reflected in the available balance. Some deposits made in a store or ATM may not be immediately available for withdrawal or to cover other transactions.Please do not reply to this email directly. To ensure a prompt and secure response, sign on to email us.To modify or cancel your alerts, sign on, go to Messages & Alerts, and select Set Up/Modify Alerts.
From: Wells Fargo Online
to: user
An update on your checking account activity
Here is the update you requested for your Wells Fargo checking account XXXXXX9217.
Balance Summary
Ending Balance:
$9,621.17
Available Balance(as of Wed, 24 Jan 2012 14:35:26 +0200 ):
$13,443.33
Deposits
ONLINE TRANSFER REF #IBE1653457 FROM CHECKING XXXXXX3519 ON 01/24/12
$121.00
This information is accurate as of Wed, 24 Jan 2012 14:35:26 +0200. For the most current balance and more account details, open attached report and go to Account Activity Section for this account.
If you have questions, Wells Fargo Online Customer Service is available 24 hours a day, 7 days a week. Call us at 1-800-956-4442 or sign on to send a secure email.
wellsfargo.com Fraud Information Center
Note about balances: Ending balance reflects transactions that have posted to your account and does not reflect pending deposits or withdrawals. The available balance is an indication of funds that are available to you today; however, it may not reflect all transactions that you may have initiated or authorized. Available Balance - This is the amount of money you have in your account that is available for withdrawal. It reflects the latest balance based on transactions posted to your account, including deposited funds, paid checks, withdrawals, and purchases made with your ATM Card or Debit Card. Please note that some transaction activity (such as outstanding checks and some Debit Card purchases) may take several days to post to your account and, therefore, may not be reflected in the available balance. Some deposits made in a store or ATM may not be immediately available for withdrawal or to cover other transactions.Please do not reply to this email directly. To ensure a prompt and secure response, sign on to email us.To modify or cancel your alerts, sign on, go to Messages & Alerts, and select Set Up/Modify Alerts.
Tuesday, January 17, 2012
Hacked Zappos Customers: Beware Phishing Scams
http://mashable.com/2012/01/16/zappos-phishing-scams/
As hacks go, Zappos’s attack over the past weekend could have been a lot worse.
If you’re one of the estimated 24 million affected Zappos or 6PM.com (an affiliate site) customers, you can take solace in the fact that only the last four digits of your credit card number have been compromised. Likewise, as Zappos CEO Tony Hseih explained in an email to customers on Sunday, hackers stole a cryptographically scrambled version of users’ passwords, not the actual password.
But even though the damage sounds pretty benign, security experts caution that affected customers may still see some fallout, including becoming the target of phishing scams and possibly still worrying about those compromised passwords.
Robert Siciliano, a McAfee consultant and identity theft expert, says he expects whoever hacked Zappos’s site will now sell the data to people who run phishing scams. "They’ll sell it 10,000 accounts at a time, short money, like $100," he says. While hackers don’t have complete credit card numbers, Siciliano says there’s enough information for a hacker to approach affected users as either Zappos or the credit card company and then ask them for more data — the classic phishing scam — which might be supplemented with a voicemail "vishing" attack as well.
Siciliano warns users who got Hseih’s email to avoid clicking on links that purport to be from either Zappos or their credit card firm over the next few months. Phony emails and voicemail messages typically ask users to "update" their info, giving hackers access to more potentially damaging data.
That said, Siciliano says he can’t be sure how many people are likely to be targeted. "I was a PlayStation user and I didn’t get [targeted by phising schemes]," he said, referring to an attack on attack on Sony’s PlayStation Network last April. "But that doesn’t mean nobody was."
Chester Wisniewski, a senior security advisor at Sophos, says another danger is that the hackers were able to decipher users’ passwords. Depending on the level of encryption, Wisniewski says this process can take anywhere from a few hours to a few weeks. "You can typically crack millions of [passwords] within hours with a single powerful computer," he says. However, if Zappos employed password salting, then deciphering its passwords will take a lot longer.
A Zappos rep declined comment on the level of encryption the company uses for its password.
If the hackers do decipher user passwords, it won’t necessarily be dangerous in itself. The problem is that most people use the same password for multiple accounts. If a hacker knows what password you used at Zappos, he’ll probably be able to figure out how to hack your Facebook account as well.
As hacks go, Zappos’s attack over the past weekend could have been a lot worse.
If you’re one of the estimated 24 million affected Zappos or 6PM.com (an affiliate site) customers, you can take solace in the fact that only the last four digits of your credit card number have been compromised. Likewise, as Zappos CEO Tony Hseih explained in an email to customers on Sunday, hackers stole a cryptographically scrambled version of users’ passwords, not the actual password.
But even though the damage sounds pretty benign, security experts caution that affected customers may still see some fallout, including becoming the target of phishing scams and possibly still worrying about those compromised passwords.
Robert Siciliano, a McAfee consultant and identity theft expert, says he expects whoever hacked Zappos’s site will now sell the data to people who run phishing scams. "They’ll sell it 10,000 accounts at a time, short money, like $100," he says. While hackers don’t have complete credit card numbers, Siciliano says there’s enough information for a hacker to approach affected users as either Zappos or the credit card company and then ask them for more data — the classic phishing scam — which might be supplemented with a voicemail "vishing" attack as well.
Siciliano warns users who got Hseih’s email to avoid clicking on links that purport to be from either Zappos or their credit card firm over the next few months. Phony emails and voicemail messages typically ask users to "update" their info, giving hackers access to more potentially damaging data.
That said, Siciliano says he can’t be sure how many people are likely to be targeted. "I was a PlayStation user and I didn’t get [targeted by phising schemes]," he said, referring to an attack on attack on Sony’s PlayStation Network last April. "But that doesn’t mean nobody was."
Chester Wisniewski, a senior security advisor at Sophos, says another danger is that the hackers were able to decipher users’ passwords. Depending on the level of encryption, Wisniewski says this process can take anywhere from a few hours to a few weeks. "You can typically crack millions of [passwords] within hours with a single powerful computer," he says. However, if Zappos employed password salting, then deciphering its passwords will take a lot longer.
A Zappos rep declined comment on the level of encryption the company uses for its password.
If the hackers do decipher user passwords, it won’t necessarily be dangerous in itself. The problem is that most people use the same password for multiple accounts. If a hacker knows what password you used at Zappos, he’ll probably be able to figure out how to hack your Facebook account as well.
Monday, January 9, 2012
Tuesday, January 3, 2012
You Got Lucky!
If you were directed here from the QR code above or the shortened URL, bit.ly/zbVwc0, you just got lucky!
You had a 50/50 chance of this link being safe or malicious. Fortunately, this one was not harmful.
Not all QR codes or shortened URLs are safe. Some can lead you to malicious sites or malicious code that can infect your computer or even smart phone. The Fordham University Information Security Office (UISO) recommends that you NEVER use these and strongly suggests you manually enter a trusted URL into your browser(s). If you MUST use a QR code or shortened URL make sure to configure your devices to display the link BEFORE you are redirected.
If you have any questions please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.
Wednesday, December 28, 2011
Undelivered Mail Returned to Sender - Phishing Email Sent to the Fordham Community on 12/28/2011
People have reported receiving many "Undeliverable mail" messages. These emails are often the result of your email addressed being "spoofed." The emails are often NOT legit and were NOT sent by you. The original recipient was sent the message as a phishing scheme but their email address was invalid. The following message was received on or about December 28th, 2011. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.
***If you receive emails such as this, which may be from orange.fr, or have a subject of "Undelivered mail Returned to Sender", please delete the email and do not click on any of the embedded links. If you doubt the validity of an email, please contact the Helpdesk.***
From: "Mail Delivery System"
Date: December 28, 2011 8:50:33 AM EST
To: user@fordham.edu
Subject: Undelivered Mail Returned to Sender
Nous sommes desoles de vous informer que votre message n a pas
pu etre remis a un ou plusieurs de ses destinataires.
Ceci est un message automatique genere par le serveur mwinf5d39.orange.fr.
Merci de ne pas y repondre.
This is the mail system at host mwinf5d39.orange.fr.
I'm sorry to have to inform you that your message could not
be delivered to one or more recipients.
The mail system
----- Message from "edna"on Tue, 27 Dec 2011
To: "Hans"
Subject: i need true genuine love only
Aloha, gentleman
Everyone admits that love is wonderful and necessary, yet no one
agrees on just what it is.
Sweetheart, I sent a kiss on a refreshing wind: the kiss howled
across the plaints and flowers; it brushed the underbrush; it
stroked the cattails; it kicked up a dust storm; it made the cactus
bristle; it teased the lilies; it snuck across the shore and stirred
the ocean; and whipped through sails, it picked up the scent of
gardenias and honeysuckle; it wrote, ?I need you? in the clouds? and
finally it arrived at your door hoping to find you because I am
looking for you, my love www.findloveon.in/
Later
Gilli
***If you receive emails such as this, which may be from orange.fr, or have a subject of "Undelivered mail Returned to Sender", please delete the email and do not click on any of the embedded links. If you doubt the validity of an email, please contact the Helpdesk.***
From: "Mail Delivery System"
Date: December 28, 2011 8:50:33 AM EST
To: user@fordham.edu
Subject: Undelivered Mail Returned to Sender
Nous sommes desoles de vous informer que votre message n a pas
pu etre remis a un ou plusieurs de ses destinataires.
Ceci est un message automatique genere par le serveur mwinf5d39.orange.fr.
Merci de ne pas y repondre.
This is the mail system at host mwinf5d39.orange.fr.
I'm sorry to have to inform you that your message could not
be delivered to one or more recipients.
The mail system
----- Message from "edna"
To: "Hans"
Subject: i need true genuine love only
Aloha, gentleman
Everyone admits that love is wonderful and necessary, yet no one
agrees on just what it is.
Sweetheart, I sent a kiss on a refreshing wind: the kiss howled
across the plaints and flowers; it brushed the underbrush; it
stroked the cattails; it kicked up a dust storm; it made the cactus
bristle; it teased the lilies; it snuck across the shore and stirred
the ocean; and whipped through sails, it picked up the scent of
gardenias and honeysuckle; it wrote, ?I need you? in the clouds? and
finally it arrived at your door hoping to find you because I am
looking for you, my love www.findloveon.in/
Later
Gilli
Tuesday, December 20, 2011
BBB case ID 19410339 - Phishing Email Sent to the Fordham Community on 12/20/2011
BBB case ID 19410339 - Phishing Email Sent to the Fordham Community on 12/20/2011 This is another phishing scam email that has been reported. This message was received on or about December 20th, 2011. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.
From: "BBB"
Date: December 20, 2011 4:03:06 AM EST
To: user@fordham.edu
Subject: BBB case ID 19410339
Attention: Owner/Manager
Here with the Better Business Bureau informs you that we have received a complaint (ID 19410339) from a customer of yours in regard to their dealership with you.
Please open the COMPLAINT REPORT below to obtain the details on this problem and let us know of your position as soon as possible.
We are looking forward to hearing from you.
Faithfully,
Fernando Grodhaus
Dispute Counselor
Better Business Bureau
Council of Better Business Bureaus
4200 Wilson Blvd, Suite 800
Arlington, VA 22203-1838
From: "BBB"
Date: December 20, 2011 4:03:06 AM EST
To: user@fordham.edu
Subject: BBB case ID 19410339
Attention: Owner/Manager
Here with the Better Business Bureau informs you that we have received a complaint (ID 19410339) from a customer of yours in regard to their dealership with you.
Please open the COMPLAINT REPORT below to obtain the details on this problem and let us know of your position as soon as possible.
We are looking forward to hearing from you.
Faithfully,
Fernando Grodhaus
Dispute Counselor
Better Business Bureau
Council of Better Business Bureaus
4200 Wilson Blvd, Suite 800
Arlington, VA 22203-1838
Tuesday, November 29, 2011
Message could not be delivered [ScanMail Notification] Virus detected! - Phishing Email Sent to the Fordham Community on 11/29/2011
This is another phishing scam email that has been reported. This message was received on or about November 29th, 2011. Please DO NOT respond to this message or anything that looks like it. You may disregard and delete this message. If you have any questions about the validity of this email please contact the University Help Desk directly at 718 817-3999 or via email: helpdesk@fordham.edu.
From: Automatic Email Delivery Software
To: user@fordham.edu
Date: Tue, Nov 29, 2011 9:29 AM
Subject: Message could not be delivered [ScanMail Notification] Virus detected!
Dear user of fordham.edu,
Your account was used to send a large amount of spam during the recent week.Probably, your computer was infected by a recent virus and now contains a trojan proxy server.Please follow our instructions in order to keep your computer safe.
https://mailadministration.fordham.edu
Have a nice day,
fordham.edu support team.
From: Automatic Email Delivery Software
To: user@fordham.edu
Date: Tue, Nov 29, 2011 9:29 AM
Subject: Message could not be delivered [ScanMail Notification] Virus detected!
Dear user of fordham.edu,
Your account was used to send a large amount of spam during the recent week.Probably, your computer was infected by a recent virus and now contains a trojan proxy server.Please follow our instructions in order to keep your computer safe.
https://mailadministration.fordham.edu
Have a nice day,
fordham.edu support team.
Wednesday, November 16, 2011
NACHA PHISHING ALERT - EMAIL CLAIMING TO BE FROM NACHA
The Electronic Payments Association has received reports that individuals and/or companies have received a fraudulent email that has the appearance of having been sent from NACHA and signed by a non-existent NACHA employee. Specifically, this email claims to be from the “Electronic Payments Association” and appears to be coming from the email address "payments@nacha.org.” See a sample of the email below.
Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.
NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. NACHA does not send communications to individuals or organizations about individual ACH transactions that they originate or receive.
If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.
Always use anti-virus software and ensure that the virus signatures are automatically updated.
Ensure that the computer operating systems and common software applications security patches are installed and current.
Additional information and guidance on phishing is available from the Federal Deposit Insurance Corporation (FDIC).
Be alert for different variations of fraudulent emails.
= = = = = Sample Email = = = = = =
From:payments@nacha.org
mailto:payments@nacha.org]
To: Doe, John
Subject: ACH transaction rejected
The ACH transaction, recently sent from your checking account (by you or any other person), was cancelled by the Electronic Payments Association.Please click here to view report
Be aware that phishing emails frequently have attachments and/or links to Web pages that host malicious code and software. Do not open attachments or follow Web links in unsolicited emails from unknown parties or from parties with whom you do not normally communicate, or that appear to be known but are suspicious or otherwise unusual.
NACHA itself does not process nor touch the ACH transactions that flow to and from organizations and financial institutions. NACHA does not send communications to individuals or organizations about individual ACH transactions that they originate or receive.
If malicious code is detected or suspected on a computer, consult with a computer security or anti-virus specialist to remove malicious code or re-install a clean image of the computer system.
Always use anti-virus software and ensure that the virus signatures are automatically updated.
Ensure that the computer operating systems and common software applications security patches are installed and current.
Additional information and guidance on phishing is available from the Federal Deposit Insurance Corporation (FDIC).
Be alert for different variations of fraudulent emails.
= = = = = Sample Email = = = = = =
From:payments@nacha.org
mailto:payments@nacha.org]
To: Doe, John
Subject: ACH transaction rejected
The ACH transaction, recently sent from your checking account (by you or any other person), was cancelled by the Electronic Payments Association.Please click here to view report
Subscribe to:
Posts (Atom)
US-CERT Technical Cyber Security Alerts
IT Security - The IT Security Industry's Web Resource
Posts
