Monday, May 31, 2021

UPS Phishing Email with subject RESCHEDULE PROCESS: Please schedule a new delivery

For the record, this is UPS phishing email attempt that is recently going around, with subject "Please note: UPS 2021 | Schedule Confirmation Process | Item no.xxxxxxx"

What to do?  Report them, goto bottom of page. 


From : UPS-Canada® Parcel Delivery<bastosnellson@hotmail.com>
Subject : 
RESCHEDULE PROCESS: Please schedule a new delivery.; - PARCEL/ONLINE-GATEWAY-Number: xxxxx Our reference number: xxx ups.com order ...








PHISHING LINKs;

Click image by mistake
1. https://annekoenig-bestellung.com/annekoenig-bestellung.com/class-wp-sitemaps-info.php

How to tell this is a Phishing email ?

  1. Check email address in full, if it's not from originating company then it's phishing.
  2. Hover over all links in email, if it's not from the  company's website then forget it.
  3. The best way is to 

How to examine Email Message Source ?

Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
Check for suspicious links, anything that does not originate from apple.com.


Report Phishing Email (not as Spam)

  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (down-arrow to top right)->Report Phishing 

Report Phishing

If you have received this email take further 

  1. https://www.google.com/safebrowsing/report_phish/


Report phishing at Microsoft and government agencies

  1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx

Saturday, May 29, 2021

Microsoft Edge version 91 blocks/broke downloads from CodeProject









Latest version of Microsoft Edge version 91 breaks downloading from Codeproject. 

I tried downloading source code to this project C# does Shell, Part 2 - CodeProject to no avail. 

Microsoft Edge

Version 91.0.864.37 (Official build) (64-bit)

You know it really frustrating when you upgrade only discover the upgrade breaks things. Really Microsoft get you act together. 


Wednesday, May 26, 2021

Add a Russian keyboard and get less ransomware

Many ransomware strains emanating from Russia, will not install or infect systems in Russia. So how do they does malware sniff the country and language? 

Countless malware strains will check for the presence of Soviet eastern block languages on the system, and if they’re detected the malware will exit and fail to install.




So below is a simple program that tricks Windows into thinking that Russian language keyboard is 
installed on your system. Download and right-click to add to registry. 

Hack the hackers code; BUT DO NOT USE THIS. I used this and could not login. 

Russian/GoRussian.reg at main · Unit221B/Russian (github.com)

Add the extra keyboard manually using CONTROL PANEL!

Here's a list of hard-coded do-not-install list of countries which are the principal members of the Commonwealth of Independent States (CIS) — former Soviet satellites countries. 



Source : 
Try This One Weird Trick Russian Hackers Hate – Krebs on Security




Thursday, May 13, 2021

Coinbase Phishing Email with subject Re: [e-Newsletter] Automatic Message : We've sent Statement Appointment Information Updates - New Notifications

For the record, this is Coinbase phishing email attempt that is recently going around, with subject "We've sent Statement Appointment Information Updates - New Notifications - {Today Date}  nº:xxxxxxx"

What to do?  Report them, goto bottom of page. 


From : Coinbase Confirm®<mailprimay.excelentnotificationxxxx@odadingoleh.com>
Subject : Re: [e-Newsletter] Automatic Message : We've sent Statement Appointment Information Updates - New Notifications - {Today Date}  nº:xxxxxxx



                 

PHISHING LINKs;

Click image by mistake
1. http://fish.boy.jp/cgi/fish/rank.cgi?mode=link&id=xxxx&url=https://kumahastran.com/xxxxxxxx

How to tell this is a Phishing email ?

  1. Check email address in full, if it's not from originating company then it's phishing.
  2. Hover over all links in email, if it's not from the  company's website then forget it.
  3. The best way is to 

How to examine Email Message Source ?

Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
Check for suspicious links, anything that does not originate from apple.com.


Report Phishing Email (not as Spam)

  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (down-arrow to top right)->Report Phishing 

Report Phishing

If you have received this email take further 

  1. https://www.google.com/safebrowsing/report_phish/


Report phishing at Microsoft and government agencies

  1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx