Phishing for Your Money: How the Scam Works

Phishing is a known scam to most people, if not all. In a phishing scam, the Internet users are lured with potential monetary or other gains. Moreover, sometimes they are scared with fear of financial losses. For identifying phishing scams many posts have been written.  However, they do not discuss complex multi-party ‘phishing for money scams’, where individuals have lost thousands, corporations have lost millions, and FBI estimates total losses exceeds billions. In this post I explain with illustrations how phishing for your money scam works.


To learn how to identify phishing emails, read our post on `9 ways to identify phishing emails.


Complex Multi-step Process Scammers Use for Phishing for Your Money from Banks Starting with a Simple Phishing Email.
Complex Information Flow in a ‘Phishing for Your Money’ Scam.

Keep Reading

Cybersecurity Tips for Travelers

©  2019 by cybersecurity1hub.com

Cybersecurity risks during travel are usually higher than while your are at home or at your work. This post provides a number of cybersecurity tips for travelers. If you are traveling  international, you need to be extra careful and prepare accordingly. Three steps you ought to take are: Security measures before, during and after your trip. Also, you must protect the device physically; you must connect to the Internet carefully; and you must have software protection.  First, let us consider what cybersecurity measures you should take before you start your trip.

cybersecurity tips for travelers
Secure your device, protect your data, avoid public WiFi and networks for cybersecurity while you are traveling.

Keep Reading

11 Cybersafety Tips for Online Safety

© 2019 by cybersecurity1hub.com

Our life is integrated with cyberspace. Cyberspace use becoming as normal as breathing air. But there is a BIG difference between the air we breathe and cyberspace we use. When we breathe foul air, we know from its smell that something is not right. Unfortunately, danger signs in the cyberspace are not as obvious to us as the foul smell of air. Hence, we need to stay alert to avoid safety hazards larking in the cyberspace. Cybersafety rules must be observed to stay safe in the cyberspace, because predators are relentlessly trying to find ways to steal our money and our personally sensitive information. Below are 11 top tips for online safety.

Cybesapce is infested with hazards and to protect from attacts one must follow rules for cybersafety aks online safety.
Alice has strong cybersafety; she is staying guarded against attracts coming from the Internet. She has strong online safety.

Keep Reading

Teen Online-Safety Tips for Cybersafety

©  2019 by cybersecurity1hub.com

For cybersecurity, teen online-safety rules ought to match with their Internet use profiles. The rules presented below are in addition to 11 tips I have in another post. Keeping an adult in the loop is a very important item in the list of online-safety tips for cybersafety. This not because teens cannot be trusted, but it is for their guidance.  Supervising adults should make it clear  to the teens they are supervising that they are not a gatekeeper, but a mature friend for to help teir development. For examples, some personal information posted online may have longterm implication, but it may not be obvious to a teen.

Cybersafety Rules for Teen Online-Safety
Teen Online-Safety Tips for Cybersafety

Keep Reading

Beware of IRS/Tax Scams, Phishing and Malware

©  2019 by cybersecurity1hub.com

Every New year starts with joys and hope. We hope to get new things. And think about money we will need for them. One source of money is tax refund. Most of us get some EXTRA cash from refund! With that hope of getting refund, we gather all necessary documents for filing tax return.  These documents come from  employer, banks, mutual funds, and so on. They have our PII (personally identifiable information) and PSI (sensitive financial information). Those who are there for IRS/Tax scams, they want them too.

IRS/Tax Scam artists are active in the cyberspace

Guess, in the New Year, who are more active  than us! Malicious cyber-criminals, who are creating tax scams with phishing  methods that have sophisticated and intricate social engineering techniques. They want to steal PII and PSI for getting money from us. They will use phishing, malwares, spyware, keylogger and many other creative tools. The big question to ask: Is my cybersecurity fences are up-to-date for protecting me from phishing, malwares, spyware, and  keylogger so that malicious actors cannot get my PII and PSI?

 

Image result for tax fraud
IRS/Tax scams are common in cyberspace.

Keep Reading

9 Ways to Identify Phishing emails

© 2019 by cybersecurity1hub.com

Phishing emails will not have a subject or heading that says they are a Phishing emails But if you look closely, you can see many tell-tell signs in a phishing email. You may find spoofed email  address and spoofed domain name among others. Moreover, they use social engineering.

You know that phishing is a big problem.  They attempt to obtain personally sensitive information (PSI) such as banking and credit card details, and password etc., usually for malicious reasons, by disguising as a legitimate entity or business. Let us review some tell-tell signs.

If you want to test your ability to identify phishing emails, then click here to take a quiz.

Phishing and Social Engineering
For Phishing, emails are used creatively.

Social Engineering

Suppose part of an email you received from your bank says, “… on Sunday at 6:00 AM money was withdrawn from you account. If you didn’t make the withdrawal, you MUST take security measure now.”

If you didn’t do a withdrawal, the fear of loss of money from bank and unauthorized activity in your bank account are likely to make you act swiftly.

Keep Reading

Malware Types

Do you know what a `zombie computer’ is? Many malware (malicious software) may turn a computer into a zombie that appears too slow to the user(s) of the computer, because they are using computer’s processor, memory, and other resources. Moreover,  they can steal personally identifiable information (PII) and  personally sensitive information (PSI)  stored in the computer.  We have a post on information types.

The diagram below shows a classification malwares. A brief introduction to each are provided next.

calssification of malware
Types of malware: traditional and advance

 

The reader should be warned that this classification is not universality accepted and it is possible to regroup them. Also, the description and function of each are short for brevity. If you think your computer (or digital device) is infected with one or more malwares, you may need professional help.

Discussion here is for a general introduction.
Keep Reading

Information Security: An Overview

On September 8th 2017 FTC (Federal Trade Commission) reported that the Equifax data breach exposed sensitive personal information. This is just another BIG data breach that has affected information security of hundreds of millions of people. Before we move forward, a good question is: security of which information? Of course, security concerns are for information that are somewhere in the cyberspace and that may be exploited by cyber-criminals to jeopardize our life, living, and assets.

Information Security is for Protecting Sensitive Information

Not all personal information are equally valuable to cyber-criminals. Security of PII (Personally Indefinable Information) and PSI (Personally Sensitive Information) are of critical importance in the context of information security, because of their potential value to cybercriminals. Thus,  cybersecurity professionals are concerned about protection of PII and PSI. But it should be of concern to you and me, because if my PII or PSI is compromised, it may be used now or anytime in the future.

So what are PII and PSI? How are they created? We will address those issues in this section.

Keep Reading

In the News


In the cyberspace, thousands of cybersecurity attacks and numerous security breached are happening every moment; only a fraction of all these breaches are known. Even breaches those are known, common news sources reports only those that are most appealing to common people, and not necessarily those that are most dangerous to the people. Moreover, they hardly recommend any defensive action that one can or should take to protect himself or herself. Here we intend to provide most recent cybersecurity news as well as past big events including big security breaches that directly affected millions of common people and those malware infections that were catastrophic in nature and directly or indirectly affected millions of people. The content will be divided into several categories to find information that interest you most now.


LIKE THIS POST?

Subscribe for free. We hate spam. Your email address will not be sold or shared with anyone else.

Hacker Breached Cybersecurity and Stole 57million records

Uber was hacked about a year back. The hacker stole records of 57 million customers and drivers. According to Uber, no PSI (personally sensitive information) of users were exposed.

Hacker got PSI of Uber drivers

But the Uber drivers were not that fortunate. Their driver-license and other related information were exposed. To most of us, cybersecurity breakdown of companies are becoming common events. Moreover, delay in acknowledging the security breakdown and underreporting the number of people affected from it are not unusual (although people are dismayed). Because, this how typically most of the companies reduce the adverse reaction from the customers.

Hacker was paid $100,000

But what is very strange in Uber’s case is that the company paid $100,000 (should we call it ransom) to the hacker for deleting the hacked data and keeping his silence. The question the cyberspace experts are asking: how do Uber know that the hacker has not kept any data and will not make more money selling in them in the dark web.

I will keep watching statements from my credit card statements more closely than I do. I think those who used Uber in the past they should do the same.


LIKE THIS POST?

Subscribe for free. We hate spam. Your email address will not be sold or shared with anyone else.

  • 1
  • 2