Monthly Archives March 2017

Phishing with your email contacts as the bait

  A new phishing scam that involves the use of a person’s email contacts, has been observed via Google’s Gmail service.This phishing scam centers around the appearance of an email being sent by a familiar email contact.The catch is that the “familiar” contact’s account has been compromised and is being used maliciously. Within the email is a PDF attachment that appears to be legitimate. The malicious actor crafts the email around familiar context that would seemingly come from the user’s contact and uses that information to create a subject that is more likely to evoke the recipient’s trust. This cunning
Read More

Get your two-step (verification) on

  Two step verification or Two-factor authentication (2FA), is an additional layer of protection beyond your password.  It decreases the risk of a hacker accessing your online accounts by combining your password (something you know) with a second factor such as a cell phone or tablet (something you own). Thankfully, a majority of the world’s commonly accessed websites have made 2FA readily available. It is highly recommended to use this feature but it’s up to you to activate it within your online account settings. With the recent breach that involved Yahoo and now McDonalds, turning on Two-factor authentication has never
Read More

Google Chrome “Font wasn’t found” Malware Scam” – that’s cool, I don’t need that font anyway.

  Recently a Google Chrome scam has been observed that can infect a computer with crafty malware. This scam called “Font wasn’t found” involves malware that changes website text into missing objects in order to appear as if the font is missing from the website.This fake font update is hosted on compromised websites that contain outdated security patches or plugins. Upon visiting a compromised site, a “HoeflerText font wasn’t found” popup message appears intending to trick the user into downloading a font file, disguised as a browser update. Compromised websites are hotspots for hosting malware that waits for unsuspecting website
Read More