Anatomy of a Phishing Scam

 Security, Tech Meme  No Responses »
Jan 222012
 

Today I received an e-mail which made it past Google’s Junk E-mail protection.  It was sent from “Gmail Team” and titled “Google Verification”.  As I’ve had to do site verifications for Analytics and Webmaster tools, I took a look at the e-mail.

Within half a microsecond, I decided to compose this quick “Tech Meme”, breaking down all the tell tale signs of a Phishing attempt.  As far as they go, this one was pretty poor – but could still trip up some unfortunate folks.

Firstly, what is Phishing?

According to Wikipedia:

Phishing is a way of attempting to acquire information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication.

Does my e-mail constitute a Phishing attempt?  Check it out and see what you think.  Here’s the complete message:

image

So let’s break it down:

1. The “From“ Address

Although this e-mail was sent from a “@gmail.com” address (although most official Google E-mail is sent from @google.com), clearly the folks at Google would have a better reply-to email address than “customerservice.verifyinfor”

2. No Branding/Google “look and feel”. 

Although some authentic e-mails from Google are sent in a basic format, even they carry some kind of corporate signature, like the following:

“© 2011 Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043”

Microsoft usually applies style sheets to their emails, most of the major banks do too.  If you receive an e-mail which doesn’t look or feel right (fonts, colours, lack of legalese in the footer), chances are it’s not an authentic e-mail.

3. Nature of the request

There’s just no way that Google (or any other large company) will ever expect end users to fill out details in text like this.  In fact, no big company or financial should ever contact their customers this way and request private information.

Even if they did, it would be horrible to import into their systems, and it would be very hard to validate the input text.

4. Grammar and spelling mistakes. 

Even in this age of decaying English, most big companies tend to proof read their e-mail text.  This email isn’t too bad for a phishing scam, but you likely won’t find these kind of mistakes in legitimate e-mails.image

Lastly, if you read this e-mail and thought “isn’t this information already located at accounts.google.com?” you’d be correct. 

Why would a company re-request this information?  You’ve already supplied your account and password when you logged into your account, your year of birth doesn’t change, and your name wouldn’t change that often either.

There’s a good chance you don’t remember the year you registered (and shouldn’t they be able to look it up?) and place of residency isn’t required.

Finally..

If you get an e-mail like this one from a bank, Microsoft, Apple or Google (or others like them) apply some simple logic before hitting reply.  As always please be careful with your personal information.

Your details should be as protected as your PIN number or bank account details.  Don’t give the information away freely.

R

 Posted by Rob at 8:10 am  Tagged with: Fake Email, Information, Phising

Deploying BizTalk 2010 Assembly Dependencies

 BizTalk Server, Infrastructure, Tips and Tricks  No Responses »
Jan 062012
 

Introduction From time to time, it is natural for us to deploy BizTalk solutions with Assembly dependencies.  Usually this is because we have created helper classes (for mapping, or querying) or perhaps it reuses some common logic shared between application suites. Whatever the reason, it can be very handy to pick up all assemblies when [...]

 Posted by Rob at 7:45 pm  Tagged with: Assembly Dependencies, BizTalk 2010, Deployment, Lessons Learned

Schema Fun with BizTalk Server 2010 (and more!)

 BizTalk Server, Programming, Tips and Tricks  No Responses »
Jan 032012
 

Introduction As I alluded to at the very end of 2011, I’ve been spending more and more time with BizTalk 2010. It’s been a little while since I’ve had to support/build/maintain BizTalk artefacts, but it doesn’t take long to reacquire “the groove”. To gently thrust you into the dark underbelly of the land of BizTalk [...]

 Posted by Rob at 2:29 pm  Tagged with: BizTalk, BizTalk Server 2010, Schema, Transforms, Visual Studio 2010, XML

SQL Server 2012 Release Candidate 0

 Database Magic, Pre-Release, Technology  No Responses »
Jan 012012
 

Introduction In December 2011, Microsoft released an early Release Candidate (RC) of SQL Server 2012 (formerly known as codename Denali). There are a bunch of new things in SQL Server 2012 – here’s a list of just a few: Master Data Services Reporting Services PowerPivot for SharePoint Data Quality Services (and Client) Stronger ties to [...]

 Posted by Rob at 2:20 pm  Tagged with: Guide, Installation, Pre-Release, RC0, SQL Server, SQL Server 2012

Have you met……… BizTalk?

 BizTalk Server, Projects, Technology  No Responses »
Dec 292011
 

Hi Everyone, Well, it’s nearly the end of the year 2011, and hasn’t it been a doozy?  I don’t know about you, but my year has been haywire, to say the least.  I started the year living in China, moved back to Australia, set up in Sydney and then finished the year in Canberra (the [...]

 Posted by Rob at 12:04 pm  Tagged with: BizTalk, BizTalk 2010, Orchestrations, Transforms

Lego Large Hadron Collider: ATLAS detector

 Tech Meme  No Responses »
Dec 252011
 

This is almost too cool for school – a Physicist at a university in Denmark has put together a scale replica of a part of CERN’s Large Hadron Collider – the ATLAS detector. Apparently it took him 81 hours to recreate a 1:50 scale model of the detector, using Lego bricks.  How awesome is that?  [...]

 Posted by Rob at 5:44 pm  Tagged with: Awesome, Lego

Did you forget to enable FILESTREAM during setup?

 Tech Meme  No Responses »
Dec 162011
 

What is FILESTREAM? Much data is unstructured, such as text documents, images, and videos. This unstructured data is often stored outside the database, separate from its structured data. This separation can cause data management complexities. Or, if the data is associated with structured storage, the file streaming capabilities and performance can be limited. FILESTREAM integrates [...]

 Posted by Rob at 6:08 am  Tagged with: FILESTREAM, SQL Server

Redundant UI

 Musings, Tech Meme  No Responses »
Dec 052011
 

I’m introducing a new category now – “Tech Meme” – which is going to be used more frequently for short, pithy articles usually highlighting something absurd, such as the following: I was trying to install Server Virtualization templates for Visio, when I was prompted for PIA assemblies: In a funny style, pressing either button achieves [...]

 Posted by Rob at 11:46 am  Tagged with: wtf

An anatomy of hardware failure

 Infrastructure  No Responses »
Dec 042011
 

It’s been a tough week for me from a hardware and infrastructure perspective. Late Thursday night, I lost one of the two desktop machines I own which still functioned. It had been on its way out for a while in theory, since somehow the CPU fan docking clamps were broken during transit in 2010. I [...]

 Posted by Rob at 10:06 am  Tagged with: DSL, Hardware, servers
 Older Entries

Aussie Wine Guy

Archives

© 2012 Rob Sanders: Sanders Technology Suffusion theme by Sayontan Sinha
WordPress SEO fine-tune by Meta SEO Pack from Poradnik Webmastera