Tag Archives: email

Scam Alert : Bank Negara Malaysia Scam Email!

Scam Alert : Bank Negara Malaysia Scam Email!

Bank Negara Malaysia is warning the public about an email scam using their board member to scam victims of their money!

Find out what this Bank Negara email scam involves, and make sure you WARN your family and friends!

 

Bank Negara Malaysia Email Scam : Watch Out For It!

You may have received this email purporting to be from Chin Suit Fang, a Bank Negara Malaysia board member, and Chairman of the Board Audit Committee.

It warns you that you have just 48 hours to address an outward payment from your bank account (not necessarily RHB), or Bank Negara Malaysia will freeze your account for investigations.

Bank Negara Malaysia confirmed that this is a fake scam email, even though Chin Suit Fang is really on the Board of Directors for BNM, and that’s really her photo.

 

Bank Negara Malaysia Email Scam : Why It’s Fake

For those who want to learn more how to spot such email scams, and specifically why this Bank Negara Malaysia email is a scam, here are the details :

Tip #1 : Check The Email Address

If you check the email address, you will see that it’s from BNM.gov.my@banknegaramalaysia.onmicrosoft.com.

That is not a valid Bank Negara Malaysia email account, which always ends with @bnm.gov.my.

Tip #2 : Do You Really Have That Much Money?

It is impossible for Bank Negara Malaysia to question you over such a large transfer when you don’t have that much money in the bank in the first place!

Tip #3 : Did You Really Transfer That Much Money?

If you really have that much money, did you really transfer so much out?

First thing to do is NOT to respond to the email, or click on any link.

No, the first thing you should do is check your bank account. If there has been no such transfer, the email is evidently false.

Tip #4 : Bank Transfers Are Generally Limited To RM50K A Day

Unless you performed the transfer over-the-counter at the bank, and submitted a Bank Negara Malaysia declaration form, it is simply impossible to transfer more than RM50,000 a day.

Online transfers are limited to just RM50,000 a day, and in some cases, to just RM20,000 a day.

Tip #5 : Bank Negara Malaysia Directors Will Not Email You 

Even if you are in the habit of transferring half a million ringgit to other people (call me please?), Bank Negara Malaysia will not email you to ask you about it.

If they require you to submit documents, you can be assured that it will be by an official letter.

Even if you are a famous personality or a politically significant person, no Bank Negera Malaysia director is going to write you an email.

Do you really think it is the job of a BNM director to write demand letters?

Tip #6 : Why Would They Include Their Personal Picture?

Why on Earth would any person include their personal picture in an official email?

Heck, do YOU even include a picture of yourself in your emails to your family and friends? Of course, not!

The only reason why scammers do this is to trick you into believing that this is really an email from a Bank Negara Malaysia director.

Tip #7 : Look At The Horrendous Grammar

The email isn’t even well-written, with bad grammar and odd capitalisation of various words.

Is this the kind of email a Bank Negara Malaysia director would pen? Seriously?

No, this is the kind of English that is written by someone with a poor command of the English language.

 

Recommended Reading

Go Back To > Fact Checks | Home

 

Support Tech ARP!

If you like our work, you can help support our work by visiting our sponsors, participating in the Tech ARP Forums, or even donating to our fund. Any help you can render is greatly appreciated!


COVID-19 Email Scams + Malware Are Spreading!

As the COVID-19 coronavirus spreads across the world, so are COVID-19 email scams and malware!

Tatyana Shcherbakova tells us what she and her team discovered!

 

Warning : COVID-19 Email Scams Are Spreading!

As the COVID-19 coronavirus spreads, fake information is being created and distributed at a very high rate, confusing people all over the world.

Cybercriminals are taking advantage of the confusion, creating various email scams, with some realistic ones pretending to be from the WHO.

Tatyana Shcherbakova, a senior web content analyst, details how her team looked at the COVID-19 email scams, and came across the realistic ones from WHO…

 

WHO Is Warning You? These Are COVID-19 Email Scams!

At first, we found emails offering products such as masks, and then the topic became more commonly used in Nigerian spam emails. We also found scam emails with phishing links and malicious attachments.

One of the latest spam campaigns mimics the World Health Organization (WHO), showing how cybercriminals recognize and are capitalizing on the important role WHO has in providing trustworthy information about the coronavirus.

Users receive emails allegedly from WHO, which supposedly offer information about safety measures to be taken to avoid a COVID-19 infection.

Once a user clicks on the link embedded in the email, they are redirected to a phishing website and prompted to share personal information, which ends up in the hands of cybercriminals.

This scam looks more realistic than other examples we have seen lately, such as alleged donations from the World Bank or IMF for anyone who needs a loan.

In order to stay safe, we advise users to carefully study the content of the emails they receive and only trust reliable sources.

If you are promised a vaccine for the virus or some magic protective measures, or content of the email is making you worried, it has most likely come from cybercriminals.

This is especially true if the sender suggests clicking on a link and sharing your personal data or opening an attachment.

You should not donate any real money or trust information with promises to help those affected by the virus, even if the email comes from someone who introduces themselves as an employee of a trusted organization.

Finally, double check the email address, as scammers often use free email services or addresses that have no relation to the organization mentioned.

 

Malware Masked As COVID-19 Coronavirus Documents!

They also found malicious files disguised as documents related to the COVID-19 coronavirus. The malicious files were masked under the guise of pdf, mp4 and docx files about the COVID-19 coronavirus.

The names of files imply that they contain video instructions on how to protect yourself from the virus, updates on the threat and even virus detection procedures, which is not actually the case.

In fact, these files contained a range of threats, from Trojans to worms, which are capable of destroying, blocking, modifying or copying data, as well as interfering with the operation of computers or computer networks.

Some malicious files are spread via email. For example, an Excel file distributed via email under the guise of a list of coronavirus victims allegedly sent from the World Health Organization (WHO) was in fact a Trojan-Downloader, which secretly downloads and installs another malicious file.

This second file was a Trojan-Spy designed to gather various data, including passwords, from the infected device and send it to the attacker.

 

COVID-19 Email Scams + Malware : How To Avoid

As governments and businesses are forced by the COVID-19 coronavirus to encourage their employees to work from home, it is critical that they employ these cybersecurity practices to reduce risk of falling for phishing attacks, or malware :

  • Provide a VPN for staff to connect securely to the corporate network
  • All corporate devices – including mobiles and laptops – should be protected with security software
  • The operating system and apps should be updated with the latest patches
  • Restrict the access rights of people connecting to the corporate network
  • Ensure that the staff are aware of the dangers of unsolicited messages

 

Recommended Reading

Go Back To > Cybersecurity | Business | Home

 

Support Tech ARP!

If you like our work, you can help support our work by visiting our sponsors, participating in the Tech ARP Forums, or even donating to our fund. Any help you can render is greatly appreciated!


Yes, Yahoo Mail Is Still Alive… And They Have A New App!

Even though many of us have long ditched Yahoo Mail for Gmail, it still commands a significant number of users. And today, they announced a new Yahoo Mail app to break through Gmail’s dominance.

 

Yes, Yahoo Mail Is Still Alive

Yahoo Mail has been so out of sight, we could be forgiven for thinking that they went extinct or absorbed by another entity, like the once-famous Hotmail.

Yet, Yahoo Mail remains popular amongst the older generation that grew up with it, in spite of Gmail’s dominance.

 

The New Yahoo Mail App

Today on 24 September 2019, Yahoo launched a new version of their Mail app, that they promise will “redefine the way people use their inboxes in an era of Internet and Inbox overload“.

The new Yahoo Mail app will organise the email clutter for you, and empower you to personalise and control your inboxes, so you can focus on what matters most.

The new app will automatically group your messages into Views, such as Travel and Attachments. It will also let you control email overload by introducing an easy, one-tap unsubscribe tool.

Design refresh and deeper customisation

  • It will have a revamped interface that is built with today’s taller mobile screens in mind allows for intuitive one-hand usage with the new navigation bar at the bottom of the screen.
  • The layout will be cleaner, colourful, easier to use, and customisable.
  • Users can also personalise their push notifications to highlight which type of mail they wish to be alerted to (personal vs. promotional) and tailor their inbox with custom colour themes and sounds.
  • There is also a drag and drop interface with fun animations.

Photos and files in one place

  • Now there’s one View that allows easy access and navigation of all mail attachments, including important files, travel documents, event tickets, and photos. The information users need is always at hand.

Industry-leading management of email subscriptions

  • With a View for subscriptions, users can browse the emails they’re subscribed to and unsubscribe from any newsletter with a single tap without leaving the app.

In addition, you can add and use your Gmail and Outlook accounts, making the Yahoo Mail app a multi-purpose inbox for all of your emails.

 

New Yahoo Mail App Availability

The new Yahoo Mail app will start rolling out progressively starting 24 September 2019, on both Android and iOS.

 

Recommended Reading

Go Back To > Software | Business | Mobile | Home

 

Support Tech ARP!

If you like our work, you can help support our work by visiting our sponsors, participating in the Tech ARP Forums, or even donating to our fund. Any help you can render is greatly appreciated!

Malicious Spam Emails Spike In Q1 2016

16 May 2016 – The latest Kaspersky Lab Spam and Phishing Report has discovered that although the quantity of spam emails has been decreasing, they have become more criminalized. At the same time, the level of malicious mailshots has dramatically increased – Kaspersky Lab products prevented 22,890,956 attempts to infect users via emails with malicious attachments in March 2016, twice the number of attempts reported in February 2016.

Since 2012 the level of spam in email traffic has constantly been decreasing. However, the quantity of emails with malicious attachments has increased significantly – in Q1 2016 it was 3.3 times higher than during the same period in 2015. There was also a growing amount of ransomware reported throughout the quarter. This is often propagated through emails with infected attachments – for example Word documents. The main actor on this field in Q1 was the ransomware Trojan Locky, which has been actively distributed via emails in different languages and has targeted at least 114 countries. Locky emails have contained fake information from financial institutions that have deceived users and forced them to open the harmful attachment.

Kaspersky Lab’s findings suggest that spam is becoming more popular for fraudsters to target Internet users, because web browsing is becoming safer. Almost all popular web-browser developers have now implemented security and anti-phishing protection tools, making it harder for cybercriminals to propagate their malware through infected web pages.

According to Kaspersky Lab’s Q1 report on spam and phishing the main findings for the quarter were:

  • In Q1 2016 Kaspersky Lab registered 56.3% of spam in email flow. This is 2.9 percent lower compared to the same period in 2015, when it equaled 59.2%.
  • The largest amount of spam was sent in January (59.6% in overall email traffic). This is explained by the end of the holiday season, when the flow of normal, non-spam, emails is usually low.
  • The USA retained its position as the biggest source of spam, sending 12.43% of unwanted emails. The share of the USA in this rating is slightly decreasing in comparison to Q1 2015, when it was 14.5%.
  • Other large sources of spam included Vietnam (second place with 10.3%) and India (6.16%). This is compared to the same period in 2015, when the second and third places were held by Russia (7.3%) and Ukraine (5.6%). Russia moved to seventh place this quarter with 4.9%.
  • 81.9% of spam emails in Q1 2016 were very small size – up to 2 KB, a 2.8 percentage point increase in comparison to the same quarter in 2015. For spammers, smaller emails are easier to handle in mass mailings.
  • Germany was the country most targeted by malicious mailshots, with a total share of 18.9% of Kaspersky Lab product users in the country targeted this way. Germany was followed by China (9.43%) and Brazil took third place (7.35%). For the same period in 2015, the top three countries were Great Britain (7.8%), Brazil (7.4%) and the USA (7.2%).
[adrotate banner=”5″]

 

Terrorism became the main topic of spam emails in Q1.

During this quarter fraudsters tried to lure users into opening malicious files, gaining their attention with emails about terrorism, a subject which is always in the news. To prevent terrorist attacks many countries have strengthened their security measures and this has therefore become a popular topic for spam emails.

Some spam fraudsters tried to convince recipients that the file attached to their spam email contained a new mobile application, which, after installation, could detect an explosive terrorist device. The email emphasized that the US Department of Defense had discovered this technology and that it was sufficiently simple and accessible. The attachment usually contained an executive file, which was detected as Trojan-Dropper.Win32.Dapato, malware that can steal personal user information, organize DDoS-attacks and install other malicious software.

Well-known Nigerian spammers also used terrorist topics in their emails. According to the Kaspersky Lab report, the quantity of these emails has increased considerably. These spammers previously preferred to send long emails with a detailed story, and links to news to make it more convincing. However, they are now only sending short messages with no detail, asking the recipients to get in touch.

“Unfortunately we are seeing our previous predictions about the criminalization of spam coming true. Fraudsters are using diverse methods to attract user attention, and to make them drop their guard. Spammers are employing a diversity of languages, social engineering methods, different types of malicious attachments, as well as the partial personalization of email text to look more convincing. The fake messages often imitate notifications from well-known organizations and services. This is raising spam to a new dangerous level.” – warns Daria Gudkova, Spam Analysis Expert, Kaspersky Lab.

 

Support Tech ARP!

If you like our work, you can help support our work by visiting our sponsors, participate in the Tech ARP Forums, or even donate to our fund. Any help you can render is greatly appreciated!