Phishing

Similar Messages

• Got a pop-up to download latest version, but when I went to confirm, one of the choices for type of user "Business Developer" was misspelled- a sign of phishing

  A .exe popped up to "update to latest version". I wanted to confirm this was from Mozilla so I went into contact, and planned on sending a message. Two things I noticed:
  1) There was not a text box for me to write out a message with my inquiry.
  2) There was a dropdown for me to select- if I was a User, Advertiser, Business Developer, etc.; however, the word "Business" was misspelled- a typical sign of phishing, and not something that I would think you would not have caught on your browser help tools.
  Needless to say, I discontinued and closed the browser window. One way or another, I thought you would like to have this brought to your attention.
  Best Regards,
  Ron Hunter
  Pacifica, CA

  '''Whenever you get a message / popup that'''
  '''software / files need to be updated;'''
  === <u>'''DO NOT USE ANY OF THE PROVIDED LINKS'''</u>===
  While this may be a legitimate message, it could also be <u>'''''Malware or a Virus'''''</u>.
  Any time you want or need to check for upgrades,
  go to the web site of the <u>'''''True Owner'''''</u> of the program in question.
  For example, to check out Firefox, go to '''''[https://www.mozilla.org Mozilla.org]'''''. {web link}
  You can sent a report to '''The FBI''' via their web site
  '''''[http://www.ic3.gov/complaint/default.aspx Internet Crime Complaint Center (IC3)]''''' {web link}
  You can also report such a site at;
  '''''[http://www.google.com/safebrowsing/report_phish/ Google Report Phishing Page]''''' {web link}
  which is the same when done while on site by going to
  '''''Help > Report Web Forgery'''''
  '''''[http://www.mozilla.org/en-US/legal/fraud-report/ Help us safeguard Mozilla’s trademarks by reporting misuse]''''' {web link}

• My system failed the anti-phishing/malware test. What can I do to fix it? I have Firefox 7 in Ubuntu

  I clicked on a link in an e-mail from Mozilla Firefox <[email protected]> It took me to http://www.mozilla.org/firefox/its-a-trap.html which assured me that I was not protected from phishing. I didn't follow the instruction to download Firefox because I already have Firefox 8 and run it in Ubuntu 10.04 Lucid Lynx.

  Those domains have changed recently from mozilla.com to mozilla.org and the mozilla.org sites are not yet in the phishing protection database.
  You can use the .com versions if you want to test.
  *http://www.mozilla.com/firefox/its-a-trap.html
  *http://www.mozilla.com/firefox/its-an-attack.html
  Bug 693389 - Update urlclassifier DB for Mozilla com->org move

• What do I get "phishing" pop-up screens on a brand new install of Firefox?

  Something has infected my Firefox and I can't get rid of it. About a week or so ago, I started getting pop-up ads every time I go to a link in Firefox. I looked on the help blog and it said to do a "Restore to original settings". That didn't do any good. I still got the popups.
  So I removed Firefox completely from my computer and rebooted it. I just reinstalled Firefox and almost instantly, on the very first link I got a pop-up screen telling me that I need to do a "Windows Player Update. - Recommended Player Update - Important!" and it wants me to click on an install button. It looks like some phishing site to me.
  It won't be so bad, except it happens all the time. Since it's a pop-up, half the time, I can't see my screen.
  This is only happening on Firefox. IE is unaffected.

  Hello,
  Certain Firefox problems can be solved by performing a ''Clean reinstall''. This means you remove Firefox program files and then reinstall Firefox. Please follow these steps:
  '''Note:''' You might want to print these steps or view them in another browser.
  #Download the latest Desktop version of Firefox from http://www.mozilla.org and save the setup file to your computer.
  #After the download finishes, close all Firefox windows (click Exit from the Firefox or File menu).
  #Delete the Firefox installation folder, which is located in one of these locations, by default:
  #*'''Windows:'''
  #**C:\Program Files\Mozilla Firefox
  #**C:\Program Files (x86)\Mozilla Firefox
  #*'''Mac:''' Delete Firefox from the Applications folder.
  #*'''Linux:''' If you installed Firefox with the distro-based package manager, you should use the same way to uninstall it - see [[Installing Firefox on Linux]]. If you downloaded and installed the binary package from the [http://www.mozilla.org/firefox#desktop Firefox download page], simply remove the folder ''firefox'' in your home directory.
  #Now, go ahead and reinstall Firefox:
  ##Double-click the downloaded installation file and go through the steps of the installation wizard.
  ##Once the wizard is finished, choose to directly open Firefox after clicking the Finish button.
  Please report back to see if this helped you!
  Thank you.

• Phishing email?

  Just received an email from BTFon that looks normal, but the return email address is [email protected] Previously emails from BTFon have been [email protected]
  Also all the links within the email start http://email.planning-inc.co.uk/r.emt?h=www.bt.com/btfon&t=
  It has the exepected disclaimer at the bottom
  To ensure future emails from BT are delivered to your inbox and not treated as spam, please add [email protected] to your address book. This email was sent to you at [email protected] because you subscribe to BT service. This domain is owned by BT and operated by planning-inc, an approved BT supplier
  Nominet returns this
  Domain name:
  planning-inc.co.uk
  Registrant:
  Digital Data Analysis
  Registrant type:
  UK Individual
  Registrant's address:
  Liberty House, 222
  Regent Street
  London
  Greater London
  W1B 5TR
  United Kingdom
  Registrar:
  Namesco Limited t/a Namesco Ltd [Tag = NAMESCO]
  URL: http://www.names.co.uk
  Relevant dates:
  Registered on: 26-Aug-2005
  Renewal date: 26-Aug-2013
  Last updated: 02-Jun-2011
  Registration status:
  Registered until renewal date.
  Name servers:
  ns0.syzygy.co.uk 195.26.96.2
  ns1.syzygy.co.uk 217.111.103.99
  Is this legitimate?
  Solved!
  Go to Solution.

  tomsk wrote:
  Just received an email from BTFon that looks normal, but the return email address is [email protected] Previously emails from BTFon have been [email protected]
  Also all the links within the email start http://email.planning-inc.co.uk/r.emt?h=www.bt.com/btfon&t=
  It has the exepected disclaimer at the bottom
  To ensure future emails from BT are delivered to your inbox and not treated as spam, please add [email protected] to your address book. This email was sent to you at [] because you subscribe to BT service. This domain is owned by BT and operated by planning-inc, an approved BT supplier
  Nominet returns this
  Domain name:
  planning-inc.co.uk
  Is this legitimate?
  Hi. Welcome to the forums.
  Please edit your post and remove your email address.
  The email is legitimate. BT tends to use that email.planning-inc.co.uk - despite being informed numerous times to stop doing so due to the inherent phishing nature, and that the html doesn't show that website.
  I have been saying for years (mainly in the btinternet forums) that they should use bt.com domain, and if they want to use tracking - then they can clearly use forwarding through there.
  http://www.andyweb.co.uk/shortcuts
  http://www.andyweb.co.uk/pictures

• Error message that Firefox version 5.0 or later is vulnerable to phishing but I am running Firefox 16.0

  I get a small box that comes up each time I enter Firefox saying that Firefox 5.0 is vulnerable to phishing and other threats. I am not sure where this message comes from. I have Norton software on the my computer. The box further asks me to update my Firefox to a later version. I check my preferences and I am running Firefox 16.0 the newest version.
  I am not sure what to do about this situation.

  See [[/questions/935636]]

• Pop up states i'm being directed to a phishing site and to call "this" number, after I click on OK it just keeps popping up again and will not let me out of an endless loop

  I am in an endless loop on my other iMac computer.  I happened upon a page where it said "phishing site ahead" and then a pop up comes on screen telling me to call a certain number and then I click okay and of course do not call and it will not let me out of this endless loop.  Shut down computer, quit Safari, but when I reopen Safari it still takes me to that same page and will not let me out or use any menu items or toolbar items. Just the same little popup box telling me to call a certain number with an OK button and I can't go anywhere or do anything on Safari. What can I do?

  Also I copied this from my other computer web page:
  Reported Phishing website ahead.  Your network ha been monitored.  Your network has been compromised due to Browser hijacking.The browser hijacking software may redirect you towards phishing websites that try to access your Login Password details.  To fix this browser redirection issue we recommend you ask for instant help.  Help Line 1 877 899 1824.
  Then another smaller popup window pops up
  http://www.pcassists.info
  Security Error
  Call Helpline 1877 899 1824
  So this is what I was talking  about, and the small popup window plus the larger  Window stating "Reported Phishing website ahead" will not go away and I cannot use Safari anymore even after I shut down my computer, disconnected it, and then signed on again and reopened Safari, it still takes me to that page and I cannot get out of it.
  PLEASE HELP!!!!!!!!

• Apple ID security question (I was phished!)

  It appears that I was phished after being prompted to enter my Apple ID and password on what appeared to be a legit link from an email to iCloud.  I successfully changed my Apple ID password, but is there anything else I should do?  I also forwarded the email to abuse@icloud.

  As long as you changed the password quickly then you should be ok, they shouldn't have been able to access your account. But by using the link and entering your id you will have told them that it's an active account, so you may find that you get more similar emails (including possibly emails purporting to be from other companies) to that address, so be careful before clicking on any links in emails and filling in your details.

• Where do I forward an e-mail message that say it's from Apple, but appears to be a phishing scam?

  I received an email with a reply address of [email protected]
  Here is the body of the message:
  "As we strive to secure your account, please be informed to upgrade to our latest security platform *****
  Your privacy and protection is our concern.
  Apple Support"
  However, the embedded link does not go to a secure Apple site.  Attempts to forward the e-mail to Apple get a reply stating that messages are not monitored.  Anyone know where I should send the e-mail?  TIA
  <Edited by Host>

  Here's the Apple paper on the topic. It seems the scammers are hard at work. Your post is the second in a short while reporting a phishing scam.
  https://www.apple.com/legal/more-resources/phishing/

• I clicked on a link from an email that may be spam/phishing.  How can I scan my mac book pro for any viruses?

  I clicked on a link in an email that may be spam/phishing.  How can I scan my mac book pro for viruses?

  You can just download the free ClamXav and scan your entire drive - but as there are no known viruses for OS X (although there is malware - see Thomas Reed's excellent Mac Malware Guide) it's very unlikely that you have a virus.
  The best source against malware is OS X itself and common sense. Don't click on links in suspicious emails and be careful of anything that wants to install something on your computer that is not from a reputable source.
  Clinton

• CBE collections debt, or phishing scam?

  Hello,
  I've been a verizon customer since 2006.  I've kept the same number, but switched plans twice (from family to individual a couple years ago, and from individual to prepaid very recently).  About a month after switching to prepaid, I started getting calls (up to three times a day) from CBE collections group about an outstanding debt from verizon wireless of ~ $35.00.  I've always paid my bills online, using autopay.  When I checked my online account (which I've had for years), my balance was zero.  I've been to both of the local stores, and both told me as far as they could see, my account balance was zero and in good standing.  I've called verizon probably half a dozen times (with hold times up to an hour and multiple dropped calls), and talked to both customer care and financial services.  Everyone has been very confused, and told me my account is in good standing, and I owe verizon nothing, and they didn't know how to help me.  The most recent customer care rep actually told me with certainty that this sounded like a scam to her, and I should block the numbers and report it to the police.
  When I've talked to CBE collections, they've told me they can't give me any kind of verification unless I give them my verizon account payment password (!!!).  However, they assure me that they are 'not a scam'.
  Given my recent plan switch and the fact that CBE collections has a partnership with Verizon, I'm 90% convinced this is actually a legitimate bill that is being handled very badly.  I hope it's in fact a phishing scam-- if it's real, I am extremely angry about how it's been handled. I am very seriously considering changing providers.
  Under the circumstances, I am hesitant to pay CBE without some kind of verification from Verizon.  How do I go about getting a written verification that this is a legitimate debt, when customer care has no information?  If it's not, how do I get a written verification that I can use to challenge any damage that CBE has done to my credit score?

  CBE Group - Debt Collection Solutions
  They are a legit company. But I would not give any account password or social security numbers or verify anything with them.
  They could be zombie debt collectors or collectors that have no right to your Verizon account.
  Go on line and get a free credit report from the three major credit reporting agencies for free once a year.
  Annual Credit Report.com - Home Page
  Good Luck

• Can a phisher gain access to my wifi and my macbook after I gave him access, but then changed my macbook's password and put up a firewall?

  I got a scam call from a phisher, but I didn't know it. I gave them access to my laptop, laptop password my phone number, address, and email address. They had remote control of my computer and they had me download a program called "Clean My Mac." Supposedly, it was cleaning my Macbook, but it was probably downloading other viruses? I finally realized what was going on, and I disconnected the internet and change my laptop password and turned on my firewall. If I reconnect to the internet again, with the information that they have, can they still gain remote access to my computer? Can they get info from my wifi? I am planning on doing a system restore on my computer, but should I get a new Wifi to be safe? I'm just not sure what these guys can do and access. HELP!

  I would:
  - Change ALL the passwords used on the computer. Like you Apple ID PW and bank PWs if you used those on the computer
  - Format your HD and reinstall the OS and restore from a backup made before the problem
  - Reset yur router by pressing the reset button, usually with a paper clip and re-setup the router using a different PW. No reason for a new router.

• Why do I keep getting a pop up box asking me to enter my apple id and password - and the id in the box is not mine? Is it phishing for my password?  How do I get rid of it?

  I keep getting a pop up box on my iPhone asking me to enter my password - and the apple id does not match mine.  I click 'Cancel' but it keeps reappearing and interfering with other apps.  What did I do to get this and what do I do to get rid of it?  Is it someone or something phishing for my password?  The only app I recently downloaded was PF Chang's and I got that directly from the App Store.

  Try signing out and then back in again by going into Settings>Store>Apple ID:>Sign Out>

• HT4484 My email was phished, so I deleted it and changed it completely.  Now all the apps that I downloaded with the old email cannot update because I cannot log into that email.  Mountain Lion is compatible with the new updated iPhoto.  what can I do?

  My email address was phished and I had to delete it completely.  That was the one I used to download all my original apps on my computer.  I have since changed to a new address, but since my apps were under the old one, I cannot update them without logging into the old address.  It no longer exists....so how do I fix this? 
  Some of the apps I don't really care about updating but, I did download the new Mountain Lion and it wants to update my iphots and I can't do it.
  Any help will be appreciated!  Thanks!

  Hi joaroa,
  When you say you deleted your email and changed it completely, those are actually two different things, and it sounds like you are talking about your Apple ID, not just your email, (because you speak of making purchases with it).
  If you changed your Apple ID (preferred, How to change the name you use for your Apple ID), then you would not have another Apple ID and all of your purchases would still be with your only Apple ID, it would just be renamed to your new email address.
  If you instead created a new Apple ID (with a different email address) then of course you have two different Apple IDs and the old one still exists and is probably active. Just because you may not use an email address anymore, that doesn't mean an Apple ID of the same name is inactive, Apple IDs aren't deleted.  If you start purchasing Apps with your new Apple ID, it can really cause confusion because, as you see, you need to be logged into the Apple ID that purchased an App to update it. It would be best to stick with one Apple ID for purchases, probably the one you have spent the most money with.  Remember, unless it's an @mac or @me Apple ID you can rename them rather than creating yet another Apple ID.  Since Apple IDs can't be merged or deleted, creating more can be a messy.
  If you don't remember what the password is for a particular Apple ID, you can visit iforgot.apple.com where you can reset it, the AppleConnect password.  If the Apple ID is no longer a valid email address, you can use the security question method to reset the password instead.
  Unless you have made a lot of purchases with your new Apple ID, I'd recommend moving back into your old one, especially if that has the most or the most expensive apps with it.  If your new Apple ID is the "name/email" you want to use, you could rename the new one to a secondary email, then rename your old Apple ID to your preferred name/email.  Basically, rename the new one to something else which frees up that name (email) to rename your old Apple ID.  Thus your old Apple ID has the new name.  See My Apple ID.  The "Manage your account" link is where you can rename the ID itself.
  Sorry about getting long winded here, but it's important to keep as few Apple IDs as possible, at least when it comes to purchases.  If an Apple ID is undesired, rename it rather than creating a new one. It will be much simpler in the long run.
  Let us know how it goes.
  ivan

• Phishing email from Apple???

  I received this today, below.
  As I don't have an iMac, and have never heard of a 'do it yourself' repair, much less making a claim on one, I have to say - this is disturbing.
  Another red flag is the 'we'll charge your card if you don't reply' bum's rush gambit.
  How do I report phishing to Apple?
  Thoughts?
  We have received your request for a Do-It-Yourself repair for your IMAC (20-INCH EARLY 2008). Your Repair ID is D27160161.
  Part Name Price Tax Rate Tax Total Return Original Part? Non-Return Fee
  Keyboard, Wireless, British £0 £0 £0 Yes £48.00
  Total in GBP £0 0.00% £0 £0 £48.00
  Our initial diagnosis indicates that because your Do-It-Yourself repair will likely be covered by the warranty, an AppleCare Protection Plan, or another Apple repair program, there should be no charge to you. If we have questions or concerns regarding the repair coverage, we will notify you.
  The part(s) should arrive shortly and will come with installation instructions.
  If Apple requires you to return any of the original parts, please note the following:
  1. Non-Return Fee
  The non-return fee shown in the table above has been placed on your credit card as a temporary authorization. You must return the original part so that Apple receives it within ten (10) business days of shipping the replacement part to you. If Apple does not receive it within 10 days or determines that it has been subjected to accidental damage or misuse, Apple will charge your credit card the non-return fee.
  2. Shipping Instructions
  - The replacement part will come with instructions for returning the original to Apple using the packaging provided. Do not include any other items in the package, as they will not be returned to you.
  - If your product is shipped to you via Royal Mail, please seal the original part in the Royal Mail bag supplied. Then take it to a post office and request a "proof of posting" receipt, which you should keep in a safe place.
  - If your product is shipped to you via UPS, please return the packaged original part using the prepaid UPS shipping label and instructions supplied. To arrange collection, please call UPS at 08457 877877.
  Your repair status is available online.
  Apple
  --------

  Perhaps it is valid and you got the email by mistake.

• Subject/Question: "WARNING: SUSPECTED PHISHING SITE" message has just recently come up for me EVERY time I go to a website on Safari. What do I do?

  This has been happening for me just recently, 12/2012... EVERY TIME I CLICK ON A WEBSITE, I get: WARNING: SUSPECTED PHISHING SITE.
  At first, I thought it was valid, but when I saw that it was doing it before EVERY page, I knew that something was wrong. I read through your comments from the past, but saw no indications of what was causing the problem then or how to fix it.
  I have a macbook 10.5.8, & I use Safari. Never had this problem before.
  Can anyone tell me what I need to do?
  I may have changed a few things in System Preferences... and...
  I have copied & pasted the email addresses from my spam to block in Yahoo mail to see if that makes any difference in the number of spam emails that I get. Probably not, as they are constantly changing email addresses, but thought I would try.
  That is all that I know that I have done.
  And now this is constant & annoying & I don't know what websites that I can trust.
  Please help.
  I haven't use this site much. Will I get an email to let me know if anyone responds? Or do I have to try to come back here to check for replies?
  Thanks again!

  Have you tried the Reset Safari... in the pull down menu under Safari?
  Allan