Getting to this point has been a long, dangerous and demoralising road for a country that – with good reason – considers itself to be a paragon of West African democracy. https://bit.ly/3Pyjf3m
It's safer for your followers if you put the original URL (link), not a shortened link. Shortened URLs can redirect to #phishing sites without the person clicking being able to judge the safety of the link before clicking.
A URL in Mastodon counts for 23 characters no matter how long it is.
A nifty looking piece of #phishing#email snuck into my inbox. It’s interesting how folks hijack authoritative tools for their illicit endeavors. Also, Microsoft does mail. They can’t detect this already??? #Google#Microsoft
With news of the latest AT&T #databreach affecting over 70 million people, it is important to stay vigilant against #phishing & suspicious #SMS messages claiming to be from #ATT. 📣
Immer häufiger versuchen Betrüger per E-Mail, SMS, WhatsApp oder Telefon an persönliche Daten wie Passwörter und Kreditkartennummern zu gelangen und diese zu missbrauchen. Wie kann man sich schützen?
Vive l'IA, un de mes contacts a reçu un faux mail de l'ANTAI lui demandant de payer une contravention super bien fait, complètement identique aux vrais, avec zéro faute... Heureusement ils se sont plantés dans le délais pour payer ce qui l'a incité à ne pas cliquer.
J'ai demandé à voir le mail. Le nom de domaine de l'expediteur et du faux site pour payer sont enregistrés en France, chez OVH. Est ce que vous savez si j'ai moyen de contacter directement OVH pour leur signaler ?
Se si riceve una e-mail che chiede di confermare qualcosa o di accedere nuovamente al proprio account, oppure di reimpostare la password o di eseguire altre operazioni simili e se per farlo abbiamo a disposizione solo un codice QR, probabilmente abbiamo a che fare con un tentativo di #phishing
Die Betrugsmasche #Phishing ist mittlerweile recht geläufig. Aber habt ihr schonmal vom sogenannten #Pharming gehört? 🤔
Dabei werdet ihr auf gefälschte Webseiten gelockt, um vertrauliche Informationen von euch zu stehlen. 🎣
Einen einfachen Schutz dagegen gibt es nicht; seid also vorsichtig und haltet eure Antivirensoftware auf dem neuesten Stand. Sie kann helfen, die entsprechende Malware rechtzeitig zu erkennen.
@jricole : Glad to see you on the Fediverse. :) But please use the full URL to better protect people following you!
You're missing the extra protection available here. Short URLs - such as dlvr.it/T3v6qj - are risky (e.g. for #phishing attacks) for people to click on because they don't know where they'll get to until they click [1].
Mastodon solves this problem: a URL counts for 23 characters no matter how long or short it is.
Received a new #phishing or scam email. I've never had an #iCloud account or #Apple product or account. Ever.
"Your iCloud storage has reached its limit. All updates to photos, videos, and iCloud Drive have been halted. Immediate action is required to prevent data loss."
Be careful out there if you do have an iCloud account and get these emails.
Looking at the code of the email, outbound links going to 420round dot com. #infosec
"What makes this situation so ridiculous is that while we're all watching for scammers attempting to imitate legitimate organisations, FedEx is out there imitating scammers!" - @troyhunt
Was mich am Konzept "Push-Nachricht" bis heute u.a. stört: wie habe ich die Möglichkeit bei so einer Nachricht schnell und eindeutig die Herkunft zu verifizieren?
Können nicht andere Apps ebenso gestaltete Nachrichten versenden?
@Vivaldi@jon There seems to be #Phishing campaign targeting #VivaldiWebmail uses. I've just got e-mail from mateja.potocnik2@telemach.net that my account will be suspended and I need to take action. The link (shortened with tinyurl.com) leads to the site hosted on http://mimecastmail.co.za/ which looks like vivaldi.net login page.
Fighting Phishing: Everything You Can Do To Fight Social Engineering and Phishing by Roger R. Grime serves as the ideal defense against phishing for any reader, from large organizations to individuals. Unlike most anti-phishing books, which focus only on one or two strategies, this book discusses all the policies, education, and technical strategies that are essential to a complete phishing defense.
This is one of the most convincing #phishing messages I've seen in a long time.
The email is clean and professional, the web site it links to doesn't get flagged by either #Firefox or #Chrome (I've reported it), and the web site (https:// apple-coin.io/, screenshot included below in case it gets taken down) is REALLY smooth.
Please give any #iPhone+#crypto users in your life a heads-up about this, because it's likely to fool a lot of people.
Please boost for visibility. #infosec#cybersecurity
Cyberangriffe mit Hilfe von E-Mails sind weiterhin eine große Bedrohung für Unternehmen, Organisationen und Bürgerinnen und Bürger. Insbesondere Phishing-Mails sind ein weithin genutztes Angriffsmittel. Wir haben die Technische Richtlinie "E-Mail-Authentifizierung (TR-03182)" veröffentlicht, die E-Mail-Service-Providern eine Richtschnur im Vorgehen gegen Phishing & Spoofing, also das Fälschen des Absendernamens, zur Verfügung stellt.
Liebes BSI,
bei einer Phishing Attacke wäre es doch sinnvoll Absender von zielgerichteten Mails möglichst schnell sperren zu lassen.
Gibt es hierfür eine Zentrale Stelle?