Alerts

dinamite.jpg

Scam Alert: You CANT make money from home with GOOGLE (It’s a scam). It’s that simple

Dec 31st

Posted by anovelo in Alerts

No comments

dinamite (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/dinamite NULL.jpg) Today’s post concerning the “Make money from home with Google” pop-ups that seem to be more and more common while people are surfing online recently has 2 reasons behind it.  (1) I have been asked by numerous people if its legit (its a SCAM and lets just say way more people than I ever would imaged have asked) and (2) I am running into this ad pop-up daily now, while I’m online and accessing major sites.

Here is a screenshot I took of one of these ad pop-ups that I got while accessing a Major National Newspaper site. You probably have seen this or something similar to this if you spend much of any time online.  Let me say it one more time, before going on with this post “THIS IS A SCAM”. 

(http://houstontribune NULL.net/business/work_from_home/)

scam1B (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/scam1B NULL.jpg)

Not only do you get the ad telling you that Google will pay you to work from home, but when you try and close it you get the following pop ups.

scam2 (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/scam2 NULL.jpg)

“Skeptical…..” Any ad that requires it to tell me that I shouldn’t be skeptical and that my financial security will only cost me $1 should be an instant alarm for everyone to not just walk away but run away as quickly as possible. (IMPORTANT NOTE: AT THIS POINT USE THE X ON THE TOP RIGHT, DO NOT USE THE OK BUTTON TO CLOSE IT)

scam3 (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/scam3 NULL.jpg)

“Are you sure” is the next window you will get, really people, if being told are you sure, then told are your really sure, about anything should be an alarm.  (NOTE: AGAIN USE THE X ON THE TOP RIGHT, DONT CLICK EITHER OK OR CANCEL)

scam4B (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/scam4B NULL.jpg)

news8fakesite (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/news8fakesite NULL.jpg)

Oh and for good measure now you will get another pop-up ad that looks like a legit news site (I appears that it will say either from the “Houston Tribune News” or from “News8News”). The sites are very real looking as they use parts from actual websites (Note the Electronic Cigarette story that comes from News8, but that news 8 is actually WFAA which is an ABC TV station not the fake news8news that has nothing to do with any legit website.)

Part of the problem with these sites are that they are now finding ways to appear long side legit sites, and on top of that they refer to actual stories (like the WFAA story) or claim to be “As seen as” and use major legit news sites (There is a very legit .  Additionally, the problem is that they use very similar names to actual sites, so that the average user gets confused.

ABC News did a story about this issue recently (A few Quotes from the ABC story)

“But the affiliations suggested by the site were questionable at best: It said that customers would earn cash "working from home with Google," even though Google says it does not endorse such work-from-home sites.

It also claimed that it had been featured by television news organizations, including ABC News and CNN.

Both organizations say they haven’t endorsed the site. The site’s only real connection to legitimate news organizations, experts say, seems to be through paid advertisements placed on those organizations’ Web sites.”

The complete ABC news story about this can be found at (LINK) http://abcnews.go.com/Business/work-home-google-scam/story?id=8438110&page=1 (http://abcnews NULL.go NULL.com/Business/work-home-google-scam/story?id=8438110&page=1)

     So just remember a couple of Internet Golden Rules

        – Even if its on the internet, it doesn’t mean that its true

        – Even if it looks like the Tweet, Facebook link, Email, IM, or any other form of online communications looks like it came from someone you know, its possible that it wasn’t sent by them. Always be very careful when clicking on links.

        – No job/job search or anything concerning “financial security” should cost you money to get.  As soon as anyone says “Pay me X amount, and I’ll tell you how to be make money or be debt free”.

An additional resource to see if something is a scam is (LINK) snoops.com (http://snoops NULL.com).  Snoops has more info on this fake work at home scam as well. (LINK: http://www.snopes.com/fraud/employment/google.asp (http://www NULL.snopes NULL.com/fraud/employment/google NULL.asp))

, , ,
adobelq.jpg

Software: Adobe Acrobat and Adobe Reader – Can be used to infect your pc

Dec 22nd

Posted by anovelo in Adobe

No comments

adobe-lq (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2010/01/adobelq NULL.jpg) Adobe has sent out an alert (LINK: http://www.adobe.com/support/security/advisories/apsa09-07.html (http://www NULL.adobe NULL.com/support/security/advisories/apsa09-07 NULL.html)) concerning all versions of Adobe Acrobat and Adobe Acrobat Reader (v9.2 and earlier) advising that Acrobat and Acrobat Reader can be used to “Crash and potentially allow an attacker to take control of the affected system”.  "There are reports that this vulnerability is being actively exploited in the wild”. 

     What does this mean to you-

- As of now if you have either Acrobat Reader or Adobe Acrobat installed, you could get your computer infected by clicking on specifically designed pdf document that you receive via email.  It’s also likely that the email you receive would appear to be from someone you know, who would have opened the email and clicked on the pdf, infecting themselves and forwarding it to everyone in their email lists.

- As of now, the infection rate for this is still considered to be low but as with any other vulnerability that is known and “in the wild” (meaning that bad guys can go online and find out details on how to use this), it is expected that within time, you will see this vulnerability used in more ways by the bad guys.

- “Adobe plans to make available an update to Adobe Reader and Acrobat by January 12, 2010 to resolve the issue”

- In the mean time you have a couple of options

Option #1) Using the recommended steps by Adobe

disabling JavaScript in Adobe Reader and Acrobat using the instructions below:
1. Launch Acrobat or Adobe Reader.
2. Select Edit>Preferences
3. Select the JavaScript Category
4. Uncheck the ‘Enable Acrobat JavaScript’ option
5. Click OK

        Option #2) You can go to Add/Remove Programs (Control Panel –> Add/remove programs or Programs and features depending on your version of Windows) and uninstall Adobe Acrobat or Adobe Acrobat Reader and then install one of the many PDF alternatives.  TechGeekandMore recommends the Foxit Reader (LINK: http://www.foxitsoftware.com/pdf/reader/reader-interstitial.html (http://www NULL.foxitsoftware NULL.com/pdf/reader/reader-interstitial NULL.html)) which is not currently affected by this vulnerability.

- Additionally, it is also recommended as always, to make sure your Anti-Virus, Anti-Malware software is current and updated to protect your pc.

, , ,
microsoft.jpg

Software: Windows Updates – December 2009

Dec 12th

Posted by anovelo in Microsoft

No comments

microsoft (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/microsoft1 NULL.jpg) I know this post is a couple of days late, but i want to make sure that no one missed their December updates.  Microsoft released 6 major updates for December, in addition to a number of smaller updates (Update to Windows Update itself, the Microsoft Malicious Software Removal Tool, among the others).

December 8th

  • Bulletin 1: Critical (Remote Code Execution), Windows
  • Bulletin 2: Important (Remote Code Execution), Windows, Office
  • Bulletin 3: Critical (Remote Code Execution), Office
  • Bulletin 4: Critical (Remote Code Execution), Windows, Internet Explorer
  • Bulletin 5: Important (Denial of Service), Windows
  • Bulletin 6: Important (Remote Code Execution), Windows

    •      As always please make sure that you run Windows update either by going to the Microsoft Update site (http://www.update.microsoft.com (http://www NULL.update NULL.microsoft NULL.com)) or if you are using Windows Vista or Windows 7 from the start menu go to Control Panel –> Windows update –> Check for new updates.

         Remember fixing security holes in your operating system, is like fixing a broken window in your home.  You can lock your house door all you like, but if you don’t fix the window, bad guys will have an easy time getting into your home.

    , ,
    microsoft.jpg

    Software: Microsoft Malicious Software Removal Tool

    Dec 6th

    Posted by anovelo in Microsoft

    No comments

    microsoft (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/microsoft NULL.jpg) I ran into a situation recently with a client who clicked on a link they shouldn’t have, causing their pc to get infected with what is commonly known as nagware/scareware.  This is when your pc pops up messages saying its infected (With official looking screens that make you believe that its part of your operating system) and if you “buy” their product that your machine will be cleaned for you.

         Personal AV fake install message (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/personalavfakeinstallmessage NULL.jpg)

         One of the many tools you can use to check/clean your pc is called the Microsoft Malicious Software Removal Tool.  Every month when Microsoft releases its updates for Windows, they also include this tool, so as long as you have been doing your Windows Updates on a regular basis you should have the latest version of this software installed.

         The MS Software Removal Tool is overlooked many times, even by tech’s because MS does not have it install in your start menu and unless you know how to get to it, it isn’t easy to find (Not sure why this is done, MS should make this software easier for users to find, but that’s just my opinion).

         So if you need to run the Software Removal tool, how do you get to it?  Here are some simple steps for the MS SRT.

    1) From your Start Button – Click on Start –> Run –> and type MRT in box and click ok  

    image (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/image10 NULL.png)

     

     

     

     

     

     

     

    2) You will see the Malicious Software Removal Tool Window open. Here is a Key (BIG KEY), make sure that on the top it says the current month (The new version comes out on the 2nd Tuesday of the Month with the standard Updates normally).

    SRT 1 (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/srt1 NULL.jpg)

    If you are in November and the Window says June (Example) then we have 2 things going.

    -> Your Malicious Software Removal Tool is seriously out of date and will probably not be updated to cover all the new versions of Malicious Software.

    -> You probably haven’t been doing your Windows Updates or your updates are not installing properly. In either case you need to address that.

    If your MS Malicious Software Removal Tool is out of date, you can directly download the updated version from the Microsoft Website (32bit Windows LINK:  http://www.microsoft.com/downloads/details.aspx?FamilyID=ad724ae0-e72d-4f54-9ab3-75b8eb148356&displaylang=en (http://www NULL.microsoft NULL.com/downloads/details NULL.aspx?FamilyID=ad724ae0-e72d-4f54-9ab3-75b8eb148356&displaylang=en)) (64bit Windows LINK: http://www.microsoft.com/downloads/details.aspx?FamilyId=585D2BDE-367F-495E-94E7-6349F4EFFC74&displaylang=en (http://www NULL.microsoft NULL.com/downloads/details NULL.aspx?FamilyId=585D2BDE-367F-495E-94E7-6349F4EFFC74&displaylang=en)) or by running your Windows Updates and making sure all updates are selected.

    3) If your Malicious Software Removal Tool is up to date, then just click on Next, where you will get 3 choices.  If your pc is not showing any signs of infection and you are just running this as part of a regular maintenance program, you can select Quick Scan.  If your PC is showing signs of trouble (Infection, slowness, unable to access specific websites), then you will want to run a Full Scan.

    image (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/image11 NULL.png)

    4) Once you select the type of scan you want and click on Next you will see the scanning window.

    image (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/image12 NULL.png)

    5) Once completed, you will either be told your pc is clean or a list of the infections that were found and cleaned will appear.  Just hit finish. If anything was found, then I would recommend rebooting and then running the Malicious Software Removal Tool again after the reboot as many times, infections can reappear on reboot.

    image (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/12/image13 NULL.png)

         Since the MS Malicious Software Removal Tool has a limited number of malware that its designed to clean (It focuses on the most common types) and because it does NOT have a live monitor feature, this software should only be considered an additional tool in the fight against the bad guys (Malware, Spyware, Scareware, Viruses).  This software is not a replacement for an anti-virus product.  If you need an anti-virus product Microsoft offers Microsoft Security Essentials  (LINK: http://www.microsoft.com/security_essentials/ (http://www NULL.microsoft NULL.com/security_essentials/)), in addition to the many offerings both paid and free from other vendors (LINK: http://techgeekandmore.com/2009/11/05/software-what-every-windows-pc-user-should-have-installed-to-secure-their-pc-part-1-anti-virus/ (http://techgeekandmore NULL.com/2009/11/05/software-what-every-windows-pc-user-should-have-installed-to-secure-their-pc-part-1-anti-virus/))

    , , ,
    weboftrust.jpg

    Software: Free add-on for Internet Explorer or Firefox can help prevent you from visiting a fake site that could infect your pc.

    Nov 30th

    Posted by anovelo in Internet Explorer

    No comments

    web of trust (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/11/weboftrust NULL.jpg) There is an add-on for Internet Explorer, Opera and Firefox that may help keep you from visiting a fake site that could infect your pc with malware or worse.  The program called “Web of Trust” (From http://www.mywot.com/ (http://www NULL.mywot NULL.com/)), monitors trends (using their own information as well as information from other security providers) from the bad guys who set up these types of sites and either puts a marker or presents you with a message when a link that you are opening is considered to be either a known “phishing” site (a fake site meant to still your information) or a site that is high risk and could be a “phishing” site.  The add-on does not actually block the sites, which means that you as the user still needs to use common sense while surfing the internet, as you could click on the message and tell it to continue to the site in question. 

         The add-on which is easy to install, will show the following type of notice on searches (Green as safe sites, Red as sites that would be recommended you avoid)

    image (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/11/image21 NULL.png) Panda WOT google search

         In addition when visiting sites that could put you at risk you will see the following message

    image (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/11/image22 NULL.png)

         As already noted above, this is only an alert, this add-on with all of the browsers will still allow you to “Click here to continue to the page anyways”. That means that this program does not replace common sense, it is a tool to help you better chose but ultimately its still up to the user to use their own common sense. 

         Since I like giving real world examples to explain, here is how I explain Web of Trust.  Consider WOT like your house or car alarm. When you leave your house, you set your alarm, but because you set the alarm doesn’t mean you don’t lock your doors (At least I hope it doesn’t).  Consider your common sense as the looking of your door, if you don’t do it, your still at risk. 

    Internet Explorer Add-On (LINK: http://www.mywot.com/en/download/ie (http://www NULL.mywot NULL.com/en/download/ie))

    Firefox Add-On (LINK: http://www.mywot.com/en/download/ff (http://www NULL.mywot NULL.com/en/download/ff))

    Opera Add-On (LINK: http://files.myopera.com/PH%60/UserJs/wot.js (http://files NULL.myopera NULL.com/PH%60/UserJs/wot NULL.js))

    , ,
    computervirus.jpg

    Alert: Doing a search for DoorBuster sales could get you infected

    Nov 30th

    Posted by anovelo in Black Friday 2009

    No comments

    computer virus (http://www NULL.rj-diamond NULL.com/alex/wp-content/uploads/2009/11/computervirus1 NULL.jpg) It seems that the bad guys are at it again, and this time they are using the holiday shopping season to try and trick people into infecting their pc’s.  Panda Labs released a post on their Panda Labs site (LINK:http://pandalabs.pandasecurity.com/archive/Black_2800_hat_2900_-Friday.aspx (http://pandalabs NULL.pandasecurity NULL.com/archive/Black_2800_hat_2900_-Friday NULL.aspx)) concerning the fact that if you go online and run a search that many of the links showing on search engines  have been compromised and the results actually lead to fake sites that are just there to infect your pc. 

    From the Panda Labs post here is an example they show with results that will do nothing but infect your pc.

    Google Search:

    (http://www NULL.flickr NULL.com/photos/lithium-/4120742406/sizes/o/)

         If you happen to access one of these fake sites you will get infected with an old favorite, the fake antivirus notices that wont go away until you give the bad guys your credit card information (One of the many others names you may have heard of this is AntiVirus2009 LINK:http://techgeekandmore.com/2009/10/19/rogueware-with-new-ranson-technology/ (http://techgeekandmore NULL.com/2009/10/19/rogueware-with-new-ranson-technology/)), since they will claim your infected until you but their product. At the moment you do, in a miracle your pc is clean, but a good chance that so would your bank account or credit card since you would have handed the bad guys your information.

    In case if you do click on a bad link, you will see the screen just like it shows in the example below (or a slight variation). What you will need to do is follow the information from the recent post “What to do if you get a virus or malware” (LINK: http://techgeekandmore.com/2009/11/23/how-to-what-to-do-if-you-get-a-virus-or-malware-via-a-pop-up-message/ (http://techgeekandmore NULL.com/2009/11/23/how-to-what-to-do-if-you-get-a-virus-or-malware-via-a-pop-up-message/)) to attempt to clean your pc.

    Fake Antivirus Page:

    Black Friday - Rogueware Page (http://www NULL.flickr NULL.com/photos/lithium-/4120742422/sizes/o/)

         As always take precautions and use common sense when going to links including those that come up on search engine sites (Like Google, Bing, Yahoo).  If your trying to get to the site of a major site, but the link showing says pleaseclickme.cm/SoIcanmesswithyou (This is just an example), then you may really want to think about it before clicking on the link.

    **Images for this post are from the Panda Labs Post.  Presented for the benefit of TGM readers.

    ,
    « First...34567...Last »