Phishing Alert - Phoney Apple Ipod & More

I've talked about phishing in the past, and I'll continue to do so. It's that important. Every day these depraved degenerates (sorry, was that harsh?) come up with new, innovative ways to disguise phishing emails as legitimate ones.

Let's take the new Apple Ipod Phishing Scheme.

An email arrives in your inbox claiming that the popular music player is being shipped via FedEx and that a payment of $479.95 has been received from your e-gold account. The malicious email's subject line usually reads: "Track your Order".

Of course you open it (no, don't!) because you didn't order it and you don't want to pay $479.95 for something you didn't order.

When you open it (I said, please don't!) there is a file attached called OrderInf.zip, which unpacks to OrderInfo.exe. Executing this file infects your computer with a Trojan horse that attempts to download further malicious code from the internet. Guess what else - no Apple Ipod either! :)

We've all gotten the phishing emails from eBay, PayPal, and various banks and credit unions. They're just getting more creative now. If you've posted a resume on Monster.com, you may get an email from Saphire Technologies claiming they found your resume on Monster and please fill out additional information because they're interested in hiring you. You click the link (OK, how many times can I say . . . no, don't!), fill out the form, and POOF - you're our newest victim.

It bears repeating. Please don't click on a link in an email. Go directly to the site (eBay, PayPal, Monster, your bank, etc) and enter your username and password there. Clicking a link in an email is just asking for trouble.

. . .Stephanie

technorati tags: Internet Security, apple ipod, Computers, Computers and Internet, Phishing, Stephanie Trahd
Phishing Alert - Phoney Apple Ipod & More