Archive | Uncategorized RSS feed for this section

Hi Victim, Scam (9-27-2018)

The following is a scam in which the scammer is posing as a high ranking VCU employee. The scammer is asking the victim to send over gift cards for a client. The victim is then expected to send over the gift card information to the scammer.

Some signs that this is a scam are the fact that the email is being sent from an outside account, a non-vcu account. The scammer also does not mention how much is needed. Also it is unusual to pay a vendor with steam gift cards. Another indicator that is a scam is the poor grammar. If you have received this email please ignore and delete it.

—————————————————————————————————————————————————–
From: Director dm4309318@gmail.com
Date: Thu, Sep 27, 2018 at 10:01 AM
Subject: Re: HI VICTIM
To: Victim victim@vcu.edu

Kindly do these for me… It’s very important and urgent to me..I’m in
a meeting and i will not be able to talk to you on phone.I will need
you to please run an errand for me at the store now,I need steam
wallet gift cards to send out to some client, can you confirm if you
can get some? Will want you to make arrangements to get the gift cards
so i can advise certain product and denomination to procure,Take the
picture of the card and send here.Thanks

Comments Off on Hi Victim, Scam (9-27-2018)

PAYMENT PROCESS, Scam (9/24/2018)

The following is a scam in which the scammer is posing as an VCU employee. The scam appears to come from the VCU victim but actually is from another account. This shows once the user forwarded the email.

When you receive an email like this, is to message the person who allegedly sent the email via another means (Phone call/ alternative email/ Instant message) to confirm that they sent this email. If you do not know the person in the email, ignore it. You should also examine all parts of the email carefully – you might noticed something off such as the reply-to address being different than the From: address.

If you have received an email like this please delete it.
———————————————————————————————————

From: VCU Employee/AC/VCU* victim@vcu.edu
Reply-To: VCU Employee prezfash001@yahoo.com
Date: Monday, September 24, 2018 at 10:46 AM
To: Victim* victim@vcu.edu
Subject: PAYMENT PROCESS

Hi Victim,

I need you to process a payment to a vendor. E-mail me back if you will be available today so as to detail you with information.

Regards

VCU Employee.

Sent from my iPad

* Names have been redacted to protect identity of victims/ impersonated people.

Comments Off on PAYMENT PROCESS, Scam (9/24/2018)

Did you attempt to log into my Facebook by accident? Scam (9/17/18)

The following is a scam in which the scammer is trying to trick the victim into logging into a clone Facebook page. If the credentials are entered then the scammer will have control of the victim’s facebook.

You can tell this is a scam based on the email address used and the non-facebook link in the email body. If you have received an email like this please delete it.
————————————————————————————————————————————-
From: PMO sue.collins@richmondrep.us
Date: Thu, Aug 30, 2018 at 8:27 AM
Subject: Did you attempt to log into my facebook by accident?
To: victim@vcu.edu

Was this you …..?

We have detected an unauthorized login attempt. 10 or more incorrect passwords in a row were attempted. Please log int to veify any changes.

162.209.3.163:80/InvalidAttempt

Comments Off on Did you attempt to log into my Facebook by accident? Scam (9/17/18)

Extortion scam (9/5/2018)

The following scam attempts to extort its victim by claiming that the scammer has compromising videos of the victim. Scams like this are becoming widely used by scammers to trick their victims into paying money. If you received an email like this, then please discard it.

______________________________________________

From: ligitame1973@zipmail.com.br <ligitame1973@zipmail.com.br>
Date: Wed, Sep 5, 2018, 8:01 PM
Subject: XXXXXX, We know what you did this summer
To:

Hi, my dear friend.

There is a specific porno website that you have surfed just a while ago.

Keep your cool though! You are not the first one to get into this clusterxxxx, but still there are chances for recovery.

When you have navigated to the web page, your browser downloaded the trojan. It is lame, I know…

The virus documents all that you complete on your computer and saves the cookies of web sites that you navigate to.

But the most principal part is that our trojan switches on your webcam and gets all your connections from your mail. Yes, we’ve got access to your online mail and all of your social media. It is already done! Truth is, I got my hands on a recording, where you are clearly seen without your clothes and xxxxxx xxx.

If you would like this data to remain in secret, and do not want me to share it with your siblings, buds, fellow workers, on mainstream sites and publications, or on the WWW in general, then there is a way out.

Here is the bitcoin address 1JpPvcvgVzy4Y88bYiaQ5YXaqe3NyFpBvh – you must transfer 600 usd sum.

Once I confirm the remittance of BTC, I will erase the specified stuff, and I will not pester you again.

Unless I pick up the specified sum in a period of 24 hrs starting from now, I will hand out your vulgar recordings to your folks, acquaintances, and fellow workers.

Additionally, I will fabricate a meme out of your videos, and will circulate it on social media with your face on it.

Comments Off on Extortion scam (9/5/2018)

2018 Cyber Threat, Scam (9/5/2018)

The following is a sextortion scam in which the scammer is claiming they have footage of the victim view some adult material. This is a common scam in which the scammer hopes the victim will be shamed into sending them money, otherwise the scammer will leak the video to all of the victim’s friends.

The scammer does not have a video of the victim and is hoping the victim will be too embarrassed and just send over money to save themselves. The best course of action is to ignore and delete the email.

———————————————————————————————————————
From: cchoi1951@zipmail.com.br
Date: Wed, Sep 5, 2018 at 1:02 PM
Subject: Victim, 2018 Cyber Threat
To: victim@vcu.edu

Good day, mate.

There is a certain erotic web page that you have checked out just a while ago.

Kick back though! You are not the first one to get into this tricky situation, but still you can recover from it.

When you have visited the website, your browser saved the trojan. It is disheartening, I know…

The trojan records every little thing that you perform on your PC and saves the cookies of web pages that you browse.

But the most chief part is that our malware activates your webcam and gets all your friends list from your email. Yes, we’ve got access to your email and all of your social profiles. There is no way out! As a matter of fact, I got hold of a video, where you are clearly seen naked and masturbating.

If you wish this video to remain classified, and do not want me to share it with your relatives, friends, fellow workers, on known websites and posts, or on the World Wide Web in general, then there is a chance that we can work it out.

Here is my bitcoin address [Redacted] – you have to pay 700 dollars amount.

Once I check the remittance of bitcoin, I will wipe out the mentioned data, and I will not extort you ever again.

Unless I get the designated sum within 24 hours starting from the moment you read these lines, I will deliver your vulgar videos to your family, companions, and colleagues.

Furthermore, I will compose a meme out of your recordings, and will populate it on social networks with your face on it.

Comments Off on 2018 Cyber Threat, Scam (9/5/2018)

[Empty Subject], Scam 9/4/2018

The following is a scam in which the scammer is attempting to establish communication with the victim. Once the victim reaches back out to the scammer, the scammer will request information from the victim which will be used to impersonate the victim down the line.

If you see this email or one like it, please delete the email.
———————————————————————————————

From: Danny tate [dantate190@gmail.com]
Date: Tue, Sep 4, 2018 at 7:27 AM
Subject:
To: victim@vcu.edu


Hii…

Comments Off on [Empty Subject], Scam 9/4/2018

Windows Security Service, Scam (8-29-18)

The following is a scam in which the scammer is posing as Microsoft Tech support. In this scam, the scammer states that they caught an unusual connection to the victim’s account. The scammer would then pose as Tech support to assist the user in recovering their account. In process of “recovering” the account, the scammers will either take money as a payment for services or steal user information so that the account could actually be hacked down the line.

You can tell this is a scam based on the email address used, it is not from Microsoft and even misspell’s “suport”. You can also tell this is a scam based on the many errors in the text, it has a ton of grammatical errors that a non-native English speaker would make. ‘

If you have received this email please delete it.
—————————————————————————————————————————————————————–

From: Microsoft Support mssuport74675@gmail.com
Sent: Wednesday, August 29, 2018 9:37 AM
To: Victim@vcu.edu
Subject: [EXTERNAL] Windows Security Service

Comments Off on Windows Security Service, Scam (8-29-18)

Extortion scam 8-27-2018

The following scam attempts to extort money from its victims by claiming that the scammer has compromising footage of its victims captured through a hacked web cam. The scammers will typically request the victims to pay a certain amount of money to the scammer via bitcoin or the scammers will release the compromising footage. Please be aware that these emails are new forms of extortion scams aimed to scare the victim into paying a ransom to the scammer. In reality, the scammer does not have any footage of the victim. To ensure your online privacy, it is always advisable to keep a good computer hygiene, avoid unknown and unsafe websites, and use a webcam cover over your webcams to add another layer of privacy. If you received this scam, then please delete it.

______________________________________________________

From: Kennedy Howard <crg@www.smt-all.com”@cpanel03wh.bkk1.cloud.z.com>

To:

Subject: I don’t know whenever you going to like it or not, but you should read it for sure

 

Hi there <Victim name>,

Scam Message

Scam Message

Comments Off on Extortion scam 8-27-2018

Payment scam (8/24/18)

The following scam attempts to trick the victim into contacting the scammer in order to make a payment. These targeted scams are usually sent to a few people in the environment in hopes of stealing money from the organization. In this case, the scammer spoofed the email address of the senior administrator in VCU and pretended to issue a payment request. The sense of urgency is a tell tale sign of the scam. If you receive these types of messages, it is best to confirm with the requester via phone or an alternative communication mechanism before processing any payments.

_________________________________________________

From: XXXXXX XXXXX<xxxxxxxxx@vcu.edu>
Date: Fri, Aug 24, 2018 at 11:25 AM
Subject: Needed Urgently.
To:

Hello YYYYYY,

I need you to take care of an urgent payment, let me know your availability so i can forward the details to initiate the payment to reach the recipient’s account today.

Thanks,

XXXXXX XXXXXX
A VCU Senior Administrator (Actual title redacted)

Sent from my iPhone

Comments Off on Payment scam (8/24/18)

US F. G. G. Fund Program!!!!!, Scam 8-20-18

The following is a scam in which the scammer is claiming the victim has won some money, in this case $25,000. In this scam, the scammer will ask for personal information to confirm the victim’s identity. After obtaining this information, the scammer will use it to impersonate the victim.

Some signs that this is a scam are the lack of business email, the address used is a gmail account. The email does not have sufficient information about who or what the F.G.G program is. There are also grammar errors throughout the entire email which are clear signs that this is a non- native English speaker writing the email.

If you have received this email please delete it.
————————————————————————————————————————————————————————

From: Linda Blair [lindablair3232@gmail.com]
Date: Fri, Aug 10, 2018 at 11:06 AM
Subject: Re: US F. G. G Fund Program!!!!!
To: Victim victim@vcu.edu>

Hello Victim, your profile name appeared and still available on the beneficiary list here and your money is still available for claiming. We are very happy to inform you that your name appear on the beneficiary list of CHARITY FUNDS commission help promotional and we are giving you the total sum of $25,000 USD (Twenty five thousand united state dollars)
Your name was selected by federal government and i’m a charity funds commission manager that is in charge of all beneficiary screen name that they
pick as a winner of the Program ballot. The promotion was made to make all people in the state benefit from the gain.

Thanks

F. G. G FUND PROGRAM

Comments Off on US F. G. G. Fund Program!!!!!, Scam 8-20-18