2072 replies to this topic

[AplusWebMaster]

FYI...

Fake 'Scan' SPAM - Necurs botnet traffic
- https://myonlinesecu...ter-ransomware/
29 Dec 2017 - "... Necurs botnet... several hundred I have received in the last hour have been quarantined on my mail server. The next in the never ending series of malware downloaders is an email with the subject of 'Scan' pretending to come from random names and email address. The name in the email body matches the alleged sender...

Screenshot: https://myonlinesecu...29_10-17-04.png

Scan_0041.7z: Extracts to: -6dt874p53077.js - Current Virus total detections 14/59*. Hybrid Analysis**...
This particular js has these 3 urls embedded in it (there will be dozens of other Urls that download the payload in different js files). It uses the first url & only moves to the next if the first does not respond
(VirusTotal 9/66[3])...
    http ://damynghedunglinh .com/YoepHGds?
    http ://3dpvietnam .com/YoepHGds?
    http ://emergency-help .com.au/YoepHGds? ...
The basic rule is NEVER open any attachment to an email, unless you are expecting it..."
* https://www.virustot...sis/1514542049/
Scan_005416.js

** https://www.hybrid-a...vironmentId=100
DNS Requests
198.143.137.42
Contacted Hosts
198.143.137.42

3] https://www.virustot...sis/1514542104/
YoepHGds.exe

damynghedunglinh .com: 198.143.137.42: https://www.virustot...42/information/
> https://www.virustot...ba43c/analysis/
___

Apple 'Batterygate'
>> https://www.cnbc.com...-full-text.html
Dec 29, 2017  - 14 Hours Ago
"Apple apologizes for iPhone slowdowns and offers $29 battery replacements..."
Video 1:55
>> https://www.reuters....s-idUSKBN1EM20N
Dec 28, 2017 - "... Apple Inc (AAPL.O) is slashing prices for battery replacements and will change its software to show users whether their phone battery is good..."

> https://www.apple.co...nd-performance/
Dec 28, 2017 - "A Message to Our Customers about iPhone Batteries and Performance...
    Apple is reducing the price of an out-of-warranty iPhone battery replacement by $50 — from $79 to $29 — for anyone with an iPhone 6 or later whose battery needs to be replaced, starting in late January and available worldwide through December 2018. Details will be provided soon on apple.com.
    Early in 2018, we will issue an iOS software update with new features that give users more visibility into the health of their iPhone’s battery, so they can see for themselves if its condition is affecting performance..."
 

  

Edited by AplusWebMaster, 29 December 2017 - 06:30 AM.

[AplusWebMaster]

FYI...

BoA - phish
- https://myonlinesecu...alert-phishing/
17 Jan 2017 - ".... an aggressive phishing campaign against Bank of America arriving overnight UK time. They all pretend to come from Bank of America < BankofAmerica@ customerloyalty.accounts.com > but are actually coming from various servers. I have posted details of 2 that I received. The emails are identical apart for the subject line. There will almost certainly be other similar subjects that I haven’t seen yet.
The subjects I have seen so far are:
    Bank of America Alert Sign-in to Online Banking Locked
    Bank of America Alert: Unlock Your Account Important Message From Bank Of America ®

Screenshot: https://myonlinesecu...17_04-18-51.png

The link in the email http ://www .valaskabela .sk/new .php -redirects- you to:
  http ://bankofamerica-com-update-work-new2018.hbdhshjdsjkds .co.uk/d983474dae569d3bdffe8735ae43151a/ (random ID /referral string after the co.uk/)...

hbdhshjdsjkds .co.uk: 162.241.225.135: https://www.virustot...35/information/
> https://www.virustot...9a003/analysis/

accounts .com: 204.14.52.151: https://www.virustot...51/information/
> https://www.virustot...0c1df/analysis/

Screenshot2: https://myonlinesecu...17_04-18-01.png

All of these emails use Social engineering tricks to persuade you to open-the-attachments that come with the email..."
 

  

[AplusWebMaster]

FYI...

'IRS' has issued a warrant for my arrest
... Tax fraudsters are aggressive and use threatening phone calls while impersonating IRS agents, and the scams remain a major threat to taxpayers
... Surefire signs of a scam? The IRS will never demand immediate payment or ask for financial information over the phone, threaten to sic law enforcement on you or refuse an appeal
- https://www.cnbc.com...-my-arrest.html
Feb 22, 2018 - "... he asked me to give him my Social Security number so we could verify it with the one in my 'case file.' I questioned how the IRS can demand that I pay taxes without giving me the opportunity to question or appeal the amount they say that I owe. I then asked him for his name and his IRS identification number. I was disconnected...

I contacted the IRS about the unsolicited call from the scammer who left the threatening message. The IRS representative said that, despite warnings, people still readily give out personal data and fall into the traps of these scammers. To that point, the Treasury Inspector General for Tax Administration reports that more than 10,000 victims have collectively paid in excess of $54 million as a result of phone scams since October 2013. So while it may seem obvious, here goes: Never, ever give out personal financial information — such as Social Security numbers or credit card and bank account numbers and passwords — to anyone who calls you, claiming to be from the IRS..."
___

- https://www.us-cert....shing-Campaigns
Feb 21, 2018
 

  

Edited by AplusWebMaster, 26 February 2018 - 03:48 PM.