Thursday, February 9, 2012
 
 

Do I need to update my email settings?

January 21st, 2010 in "Spear" Phishing / Email Scams
Skip to comments (0) ↓
 


We’ve been alerted to a new variation on phishing scams by Angela Boothroyd, of English Language School Studying Online, and the English Language Tips Blog online-english-lessons.eu

Dubbed “Spear Phishing” because it targets individual organisations as opposed to random email lists, this scam email seeks to convince you that your email settings need to be updated, and will point you in the direction of a spoofed Outlook Web Access page, where you will be asked to download a file to update your email settings.

The email may come from an email address at your domain, including (but not limited to)

administration@yourdomain.com
no-reply@yourdomain.com
info@yourdomain.com
support@yourdomain.com

The Email

Dear user of the ********.co.uk mailing service!

We are informing you that because of the security upgrade of the mailing service your mailbox (you@******.co.uk) settings were changed. In order to apply the new set of settings click on the following link:

http:YourDomain.co.uk/owa/service_directory/settingsphp?email=YOU@YOURDOMAIN.co.uk&from=YourDomain.co.uk&fromname=YOU

Best regards, YourDomain.co.uk Technical Support.

Message_ID#1GJBS4F3Y236PTRD8GURMSB9TORCDI8

What’s the Scam?

The file you will be asked to download is nothing to do with your email settings. It’s actually a banking Trojan virus, and will give the scammers full remote access to your PC. Once this access is established, the criminals will be able to get access to your usernames and passwords.

What are the risks?

If scammers gain access to your online banking facilities, they will not only be able to steal your hard earned money and run your overdraft up to it’s limit, but they can also gain access to all of the information that they need to apply for credit in your name, including credit cards, loans and even mortgages. This will leave you both skint, and unable to obtain credit elsewhere and can take months, or even years, to sort out.

What should I do if I’ve downloaded the file already?
Contact your bank immediately and let them know that your account may have been compromised. They will be able to tell you if there has been any unusual activity on your account. DO NOT contact them by email or through your online banking facility, as you may be visiting a spoofed site. Call the customer service number printed on your statements.

You should also check your credit report straight away and report any accounts that you do not recognise.

We now have a great range of PC and Home Security products available in the Scam Detectives Security Supplies online store (powered by Amazon).

 

Tags: , ,

This entry was posted on Thursday, January 21st, 2010 at 10:36 am and is filed under "Spear" Phishing, Email Scams. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Comments

No comments so far.
  • Leave a Reply
     
    Your gravatar
    Your Name
     
     
     

     
     
 
About Scam Detectives

Scam Detectives is brought to you by Clear as Crystal Web Design in association with Our Sponsors

Media Enquiries

Please see our Press page for contact details and press releases

Press »
Tell us your story

Help warn others and stop someone else becoming a victim.

Contact Us »

 
My Zimbio
Top Stories