New Scam – Better Business Bureau

The Better Business Bureau have been targeted as the latest providers of a “trusted source” for email phishing attempts. Not that the BBB are actually doing something wrong, but have been targeted by the spammers as a face for their campaign due to their trustworthiness, and in this case, the concern that happens when you get an email from them saying something is wrong.

With this latest email (I received 2 today, even though I am not in the US) they use the threat of a complaint against your company to get you to click on a link in the email.

Here is a copy of the email

RE: Case # 18558568
2011/12/20

Hello,

The Better Business Bureau has been filed the above-referenced complaint from one of your clients on the subject of their dealings with you.
The detailed information about the consumer’s concern is presented in enclosed document.
Please give attention to this matter and let us know about your opinion.
We encourage you to open the ATTACHED REPORT to reply this complaint.

We look forward to your prompt response.

Sincerely yours,

Louis Gerald

Dispute Counselor
Better Business Bureau

So again, it is a case of being careful when something like this appears in your mailbox. Don’t panic and click the link to see what the issue is, if in doubt hover over the link and it will tell you in the status bar of your email program the real link that it will take you to.

If it looks in any way suspicious, leave it alone.

Malware/Phishing Attempt About declined Payment

I have received an email saying that a payment has been declined, as with many of these things, I have nothing to do with the service or vendor concerned and so I automatically think it is a scam.

In this instance it appears to be a phishing scam by trying to trick you to click on an apparent document link that takes to to a webpage.

Other known reports of this (here) talk of zip files being delivered to entice people to run the included .exe file (similar to the UPS scams)

This appears to a bit cleverer as it takes you to a website rather than the hassle of unzipping and running the executable.

The organisation mentioned does not send out these emails and so you can delete with impunity.

Here is the message:

The ACH transaction (ID: 5061740263570), recently sent from your bank account (by you or any other person), was canceled by the other financial institution.

Canceled transaction

Transaction ID: 5061740263570
Reason for rejection See details in the report below
Transaction Report report_5061740263570.doc (Microsoft Word Document)

ANZ Bank Phishing Target Again

These phishing attempts are usually found by my virus scanner, but this one got through.

Anz Bank

We’d like to inform you that your Secure Messages Center has 1 new message.

Please login to your Online Banking and visit the Secure Message Center section in order to
read the message.

Log On to Online Banking.

(The Message Center contains only important information about your account and online banking.)

Copyright Australia and New Zealand Banking Group Limited ABN 11 005 357 522, 1996-2011.
ANZ’s colour blue is a trade mark of ANZ.

 

The log on link goes to http:// nogueirametalurgica . com . br/www . anz . com/index . php

This is a typical ploy where they hide the link to a hacked website. Here they have placed a site that looks the same as the target (This time ANZ) and hope that you do not look at the link that appears in the URL section of your browser.

Whenever you get a dodgy email, you can often just hover over the link in the email, and the email program will show you the link that you will be taken to.

If it is anything like this, then stay away