macys scam

Scam Attn: Your $100 Macys Store Credit MUST be Redeemed

This false Macy’s email contains a link to a website with possible malware:

Macy’s Store Rewards
ATTN: Your Email

You Currently Still Have $100 in Macy’s Bonus Points That MUST be Redeemed by 6/16/2016.

If not claimed, this balance will be lost. (Credit can be used online or in store)

Reward Credit #2371

*Go Here Now to Redeem Your $100 Credit* bad link

**Expiration: 6/16/16

Notice to Appear – Court Order – malware

Malware detected

Dear NAMEUSER,

You have to appear in the Court on the April 14.  You are kindly asked to prepare and bring the documents relating to the case to Court on the specified date.  Note: The case will be heard by the judge in your absence if you do not come.

You can review complete details of the Court Notice in the attachment.

Regards,
Hugh Buckley,
Clerk of Court.

State Court <hugh.buckley@ns89.websitewelcome.com>

SHA256: 8889fcc7dca37f2cc23d7f664605578583f4fbfe102435c1cb58fbe9ce60e5fe
File name: Court_Notification_00000677743.zip
Detection ratio: 12 / 57
Analysis date: 2015-04-11 18:05:09 UTC ( 0 minutes ago )
Antivirus Result Update
Microsoft TrojanDownloader:JS/Nemucod.P 20150411
NANO-Antivirus Trojan.Script.Heuristic-js.iacgm 20150411
AVware Malware.JS.Generic (JS) 20150411
VIPRE Malware.JS.Generic (JS) 20150411
Avast JS:Decode-CAP [Trj] 20150411
ESET-NOD32 JS/TrojanDownloader.Nemucod.AF 20150411
Fortinet JS/Nemucod.AF!tr 20150411
Sophos JS/DwnLdr-MKJ 20150411
McAfee JS/Downloader.gen.d 20150411
McAfee-GW-Edition JS/Downloader.gen.d 20150411
Kaspersky HEUR:Trojan.Script.Generic 20150411
Comodo Heur.Dual.Extensions 20150411
ALYac 20150411
AVG 20150411
Ad-Aware 20150411
AegisLab 20150411
Agnitum 20150409
AhnLab-V3 20150411
Alibaba 20150411
Antiy-AVL 20150411

KINDLY OPEN THE ATTACHED FILE FOR MORE DETAILS – phishing

The attachment may hold malware or phishing.  You should NOT open the attachment.  With any luck this email and others like it are going straight to your SPAM/JUNK folder.

http://www.reserve-bk-india@mit.tc

KINDLY OPEN THE ATTACHED FILE FOR MORE DETAILS

Get your own FREE website, FREE domain & FREE mobile app with Company email.

Attachment:  RESERVE_BANK_OF_INDIA_OFFICIAL_PAYMENT.docx

VirusTotal Report

SHA256: b92fe8419718bf0f37f3f29af46aef1aabc61433a68f81f3fbb8482f3bd85460
File name: RESERVE_BANK_OF_INDIA_OFFICIAL_PAYMENT.docx
Detection ratio: 0 / 57
Analysis date: 2015-04-11 17:48:45 UTC ( 4 minutes ago )

Vacancies available Position available _, (909036976) SCAM

This is a pretty common phishing scam all over the world with different Subject (Position available, Vacancies).  When you get these emails, do not respond, do not give these people your personal information.

From:  Moses Blanchard <anastasia5@belgtts.ru>

Hi ! The mail forwarding corporation is searching shipping/receiving Operator.

No enrollment fee. The average monthly salary is $1500.

Job Duties and responsibilities:

– Must be able to work on flexible schedules – the position is home-based
– Receive and mail incoming mail. Auditing incoming mail for damages.
– Complete all paperwork in a timely and accurate manner.

Qualifications:
– Applicants must be mature – 21 years and older, able to work independently, prioritize the work in an accurate and efficient manner, permanent access to Internet.

If interested please reply with details requested below so as to check we have your name and other data correctly.

– Your Full Name:
– Your Country, State:
– Your Contact number:

Please note: If you do not receive a call or email from our manager, your information will be held in our file for future consideration.
Thank you.

1360261088 Congratulations, smishing SCAM

I received a text 1360261088 Congratulations, smishing SCAM

“+1360261088 <Subject: NoSubject>  Congratulations, you are one lucky customer getting a credit applicable to your next month bill, for more details visit //tr.im /ncv2K”

If you receive this message, do NOT click the link.  If your are concerned then you should contact your cell phone provider.

How do I report text message spam?

If you receive spam, follow these steps:

Forward the message to 7726 (which spells “SPAM” on most phone keypads). Please don’t edit the message or add any comments.

  1. We’ll reply to your message with a text message confirming we’ve received it. We’ll also ask you to send us the number of the original sender.
  2. Send us the phone number of the sender.

We’ll use this information to help identify who is sending spam and take appropriate action. There’s no charge to report mobile spam. Messages forwarded to 7726 do not count toward your plan. You can also place your number on the Federal Trade Commission’s Do Not Call list at http://www.donotcall.gov. If you continue to receive spam messages or calls, you may file a complaint with the FTC at the same website.

 

 

smishing_1

phishing scams smishing

phishing scams: T-mobile smishing

Phishing scams: T-mobile also called as Smishing

written by yuri

On march 20, 2015 at 10:58 am, I received a text message saying that I am “one lucky customer”.  The message was sent to many others from +(828)200-0119. I immediately clicked it.  The link took me to what looked like a T-mobile page asking me to log in with my phone number, password and last 4 digits of my social security number.

I thought this was not unusual but it turns out that this was not a legit website.  After hitting log in, it did not sign me in.  It sent me the same text message again so I got a  little confused.  After a few minutes I realized something is seriously wrong.  I thought ”oh my god, this might not be a real website. phishing scamsSo i immediately asked my husband who is an IT guy.  He told me to never click on random links sent via email and never log in to any link that does not look real.  I was devastated knowing that I had almost put our T-mobile account at risk.  I did not know that these types of scams exist.

We changed all my actual T-mobile account information.

We did research on the actual t-mobile website on my laptop to check if there were people who had experienced the same thing. The site shared informations about “smishing” and where to report the incident if you think you got scammed. http://www.t-mobile.com/Company/PrivacyResources.aspx?tp=Abt_Tab_PhishingSMishing&tsp=Abt_Sub_IdentityTheft_SMiShing

You can also report the spam to t-mobile support .https://support.t-mobile.com/docs/DOC-2747

+(828)200-0119. This is the number of the sender. I searched it in google and found out it is from China .phishing scams

 

“congratulations, you are one lucky customer getting credit applicable to your next month bill, for more detail vist https://tr.im/15585

If you get this message or something similar do NOT click the link.  If you do click the link and put in your information, you will need to go to your actual T-Mobile site and change all your password.  Contact T-Mobile and tell them what is going on.

Phishing scams International Monetary Fund IMF

Phishing scams International Monetary Fund IMF submitted by User:

This Phishing attempt is accompanied by attachment: “25299_IMF_Official”

Which does not seem to have any macro malware according to VirusTotal

From: info@armtechindia.com [mailto:info@armtechindia.com]
Sent: Friday, March 20, 2015 2:46 AM
To: rbi_transfer_departmnt@outlook.com
Subject: Outstanding Depts (Released).
Importance: High

 

 

This message and any enclosures are intended only for the addressee. Please
notify the sender by email if you are not the intended recipient. If you are
not the intended recipient, you may not use, copy, disclose, or distribute this
message or its contents or enclosures to any other person and any such actions
may be unlawful. Ball reserves the right to monitor and review all messages
and enclosures sent to or from this email address.

Attempt to get information 25299_IMF_Official:

The International Monetary Fund (IMF) has come to notice that you are among the unsettled Fund Transactions long time ago. The (IMF) have directed all individual/Organizations who for one reason or the other did not receive their Transaction Fund in their home of origin or bank account, Your Amount is now available with The Foreign Exchange Department Reserve Bank of India New Delhi.

To channel your reports, please kindly send to us:

1, Your Full Names:

2, Sex:

3, Date of Birth:

4, Contact Mobile Numbers:

5, Your Email address:

6, Your Full House Address:

And reconfirm us with your batch No.”2277’’ to the below Email ID: rbiforeignexchange@workmail.com

Contact Persons: Mr. Michael Morrison

Mrs. Pinto Mishra

(Transfer Officer)

Email: rbiforeignexchange@workmail.com

Thanks

Frank VIC

IMF USA

Telus phishing mail

From elamb.org – reader

I received a suspicious email last February 20,2015.

This was the email address  : Shannon Micah <micahe4@telus.com> .
 Content:
We are a  specialized agency in (Global) Customer  Service  Research.
We are starting a big research project in the USA.There is no charge to join us and this project takes place every month. You will get Usd 2OO per each assignment.
Payment check will be a certain amount that you will be required to cash your bank, deduct your wages then have the rest used for evaluation.- DESCRIPTI0NS_______
* You will be assigned to visit a shop.
* You will then finish an on-line questionnaire to share with us your customer experience.- REQUIREMENTS_______
* 19 Years old or above.
* Can speak the local language well.
* Can read and write English.Give me your i.n.f.o for register.FullN.a.m.e,,,,,,,,,,,,,,,,,,,,,
Phys. A.d.d.r.e.s.s,,,,,,,,,,,,,,,,,,,,,
G`E`n`DeR&Ag’E,,,,,,,,,,,,,,,,,,,,
O-c-c-u-p-p-a-t-i-o-n_
Z.i.p&C.i.t.y_
P.h.o.n.e_
STATE_,,,,,,,,,,,,,,,,,,,,====MSeVALUAT0r======

sinoevent webmail.html Phishing Site

According to Avira, BitDefender and CLEAN MX “http: //sinoevent.asia/webs/webmail.html” is a possible phishing site:
URL Scanner Result
Avira Phishing site
BitDefender Phishing site
CLEAN MX Phishing site
WARNING!
Email! Administrator

Email! Administrator's profile photo
no_reply@web-security.net
Dear Email User,We are undertaking some essential, but extensive maintenance to improve all personal and business email services. During this general maintenance period, all users of active personal and business emails are required to update the email registration data or have the email account automatically suspended indefinitely. We are contacting you because this email was listed for this exercise.To certify that you sincerely own or operate this email address, you are required to sign in with the full email address and valid password for immediate file update before you should further use this email on the internet.

email administrator
Please click on the link below to access this request.http://sinoevent.asia/webs/webmail.html If clicking the link above does not work, copy and paste the url in a new browser window instead.

 Thanks
Email! Admin Team

Copyright © 2014. All rights reserved. Copyright/IP Policy | Terms of Service.

scam paypal-customerfeedback.com

scam paypal – customerfeedback.com

**SCAM PayPal**

If you received on email with a paypal-customerfeedback.com link, its a scam.  Do not follow the link, do not respond:

As part of PayPal’s commitment to excellence, we invite you to share your experience about your interaction with our email customer support on May 19, 2014.
We place great value on your time, so this survey should take less than 5 minutes to complete. All feedback in addition to other information collected will be used in accordance with PayPal’s Privacy Policy. Survey answers may be tied back to respondents. In the survey, you will have the opportunity to opt out from being contacted regarding feedback.
Please visit the following website to complete the survey. Simply click on the web address below (or copy and paste the link into your browser):
https://www.paypal-customerfeedback.com/?cdxs4fym3t332f5&lng=en_US
We appreciate your participation and look forward to hearing from you.
John McCabe
Senior Vice President
Customer Service and Operations

1 2 3