URGENT, Scam (10-24-18)

The following is a spear phishing attempt in which the scammer is impersonating the victim’s boss. The scammer is asking for iTunes Gift Cards, and will reimburse the victim afterwords. This is a scam and the scammer will not pay the victim back afterwards.

This can be spotted as a scam because of the email address which it came from (non-VCU) and the suspicious behavior – purchasing iTune’s Gift cards. The victim, in this scam, asked the scammer to call them to verify the scammer’s identity which the scammer dodged and claimed that they were too busy to make a call.

This reeks of a scam and if you received an email like this please delete it. Names have been redacted to protect privacy.
————————————————————————————-
From: Victim’s Boss caitlinbalnton@gmail.com
Date: Wed, Oct 24, 2018 at 10:59 AM
Subject: Re: URGENT
To: Victim@vcu.edu

Victim, I am tied up right now, Can you purchase iTunes gift card 5 pieces – $100 each? I would reimburse you when am through, Let me know also i would prefer to call you but can’t receive or call at the moment with my line.we don’t have phone coverage only wi-fi

Regards

On Wed, Oct 24, 2018 at 10:49 AM Victim’s Boss
caitlinbalnton@gmail.com wrote:

HELLO

Victim,Are you free at the moment?

Regards

Victim’s Boss

Sent from my iPhone

Comments Off on URGENT, Scam (10-24-18)

Great Opportunity to talk at IDF-2019 on July 15-17 at London, UK, Scam (10-30-18)

The following is a scam in which the scammer is claiming to host a conference. Due to the victim’s great work in the field, they have been selected to be a keynote speaker for the conference. This conference is a scam and the email is the scammer trying to obtain more information and eventually money from the victim for conference fee.

You can tell this is a scam because the email is generic – the scammer just states “Your work in on Dentistry”. There are also many fonts in the email which indicates a scam as well. If you have received this email please delete it.

—————————————————————————————
From: Dr. John Wesley (Dental Forum 2019 at London, UK) dentistry@dental-forum.org
Date: Tue, Oct 30, 2018 at 9:55 AM
Subject: Great Opportunity to talk at IDF-2019 on July 15-17 at London, UK
To: victim@vcu.edu

Dear Dr. Victim,

I hope you are doing great. I am the Chair of the International Dental Forum 2019 which is going to be held between July 15-17 at London, UK. I would like to invite you as a Keynote speaker to join our fabulous 2019 Speaker Program.

Furthermore, this is with great pleasure that I would like to extend the invitation to be our keynote speaker and guest of honor at one of our annual conferences. Your work in on Dentistry has left a great imprint in the field. We would like to use our event to bring the spotlight on your achievements.

We have not yet established on which day your talk would be scheduled; should you accept this invitation, there is some flexibility we can use to accommodate your own scheduling preferences (Monday July15 through Wednesday July17).

For More details; [Link Redacted]

Let me know if this is something that would be of interest to you.

Please revert back if you need further information from our side.

Best Regards,
John

Comments Off on Great Opportunity to talk at IDF-2019 on July 15-17 at London, UK, Scam (10-30-18)

Account, your account, is compromised, Scam (10-25-19)

The following is a variant of a extortion scam in which the scammer is claiming to have videos of the victim going to adult websites and will send that video out to all of the victim’s contacts. In order to prevent widespread embarrassment the scammer is asking that the victim pay a fee of 830$ (in bitcoin) so that the scammer will delete that video.

This is a scam, the scammer is hoping that the victim will be too scared of being embarrassed and send the scammer money. Do not send the scammer money and if you have received this email please delete it.
——————————————————————————————————————————————————————————————————————

From: victim@vcu.com victim@vcu.edu
Sent: Wednesday, October 24, 2018 10:55 PM
To: Victim@vcu.edu victim@vcu.edu
Subject: account victim@vcu.edu is compromised

Hello!

I’m a hacker who cracked your email and device a few months ago.
You entered a password on one of the sites you visited, and I intercepted it.

Of course you can will change it, or already changed it.
But it doesn’t matter, my malware updated it every time.

Do not try to contact me or find me, it is impossible, since I sent you an email from your account.

Through your email, I uploaded malicious code to your Operation System.
I saved all of your contacts with friends, colleagues, relatives and a complete history of visits to the Internet resources.
Also I installed a Trojan on your device and long tome spying for you.

You are not my only victim, I usually lock computers and ask for a ransom.
But I was struck by the sites of intimate content that you often visit.

I am in shock of your fantasies! I’ve never seen anything like this!

So, when you had fun on piquant sites (you know what I mean!) I made screenshot with using my program from your camera of yours device.
After that, I combined them to the content of the currently viewed site.

There will be laughter when I send these photos to your contacts!
BUT I’m sure you don’t want it.

Therefore, I expect payment from you for my silence.
I think $830 is an acceptable price for it!

Pay with Bitcoin.
My BTC wallet: [Link Redacted]

If you do not know how to do this – enter into Google “how to transfer money to a bitcoin wallet”. It is not difficult.
After receiving the specified amount, all your data will be immediately destroyed automatically. My virus will also remove itself from your operating system.

My Trojan have auto alert, after this email is read, I will be know it!

I give you 2 days (48 hours) to make a payment.
If this does not happen – all your contacts will get crazy shots from your dark secret life!
And so that you do not obstruct, your device will be blocked (also after 48 hours)

Do not be silly!
Police or friends won’t help you for sure …

p.s. I can give you advice for the future. Do not enter your passwords on unsafe sites.

I hope for your prudence.
Farewell.

Comments Off on Account, your account, is compromised, Scam (10-25-19)

Your Account is hacked, scam (10-22-19)

The following is a sextortion scam in which the scammer is pretending to have compromised the victim’s account. The sender address will be the victim’s address (this is actually false, the address is spoofed to appear to come from the victim’s account.)

This scam is a sextortion scam, instead of using an older password they are now spoofing email addresses to appear legitamite. Do not be intimidated. If you see this email please delete it.
———————————————————————————————-
From: victim@vcu.edu
Subject: victim@vcu.edu is hacked
Date: October 22, 2018 at 10:52:31 AM EDT
To: Victim@vcu.edu

Hello!

My nickname in darknet is des53.
I hacked this mailbox more than six months ago. Through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.

Even if you changed the password after that – it does not matter, my virus intercepted all the caching data on your computer
and automatically saved access for me.

I have access to all your accounts, social networks, email, browsing history.
Accordingly, I have the data of all your contacts, files from your computer, photos and videos.

I was most struck by the adult sites that you occasionally visit.
You have a very wild imagination, I tell you!

During your pastime and entertainment there, I took screenshot through the camera of your device, synchronizing with what you are watching.
Oh my god! You were so funny and excited!

I think that you do not want all your contacts to get these files, right?
If you are of the same opinion, then I think that $880 is quite a fair price to destroy the dirt I created.

Send the above amount to my Bitcoin wallet: [Link Redacted]

As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it.

Otherwise, these files and history of visiting sites will get all your contacts from your device.
Also, I’ll send to everyone your contact access to your email and access logs, which I have carefully saved.

Since reading this letter you have 48 hours!
After your reading this message, I’ll receive an automatic notification that you have seen the letter.

I hope I taught you a good lesson.
Visit safe websites only, and don’t enter your passwords anywhere!

Good luck!

Comments Off on Your Account is hacked, scam (10-22-19)

Request from {Tekenya Mitchell}, Scam (10-19-2018)

The following is a scam in which the scammer claims to have a file for the victim. Upon opening the link the victim will see a login page asking for login credentials. This site is a scam, the information entered on this page will be used to compromise the user.

You can tell this is a scam because the email is unsolicited and only has a link without any information about the link. If you where to hover over the link you can also see that the link is suspicious.

If you have received an email like this please delete it.
—————————————————————————————-

From: Tekenya Mitchell tekenyam@councilofcommunityservices.org
Sent: Friday, October 19, 2018 11:59:45 AM
Subject: [EXTERNAL] Request from {Tekenya Mitchell}

Please view the documents i sent to you.You can only view the file with the email

this file was sent to .NO THIRD PARTY EMAILS.

View File [Link Redacted]

Powered by councilofcommunityservices.org

Thanks

Comments Off on Request from {Tekenya Mitchell}, Scam (10-19-2018)

JOB OPPORTTUNITY!!!!! , Scam (10-19-2018)

The following is a job offer scam. The scammer is offering a fake job which will result in the user being tricked into sending money over to the scammer.

Some signs that this is a scam are the spelling errors, the scammer claims their name is Charline-Collar but the sender email says something else. Also the subject line is misspelled.

If you have received this email please delete it and do not respond.
—————————————————————————–

From: Telesa Collar mailto:carribeanjobs000@gmail.com
Sent: Friday, October 19, 2018 5:02 AM
Subject: JOB OPPORTTUNITY!!!!

Good Morning

My name is Charline-Collar,I got your details from the university employment service portal. I have a flexible part time personal assistant job available for you.You’re required to work 3 -6 hrs weekly and get paid $250 weekly….If you are interested in the position open the link below for detailed description and the application form. [Link Redacted]

Regards
Charline Collar

Comments Off on JOB OPPORTTUNITY!!!!! , Scam (10-19-2018)

Urgent: New Payroll Bulletin.., Scam (10/11/18)

The following is a scam in which the scammer is posing as HR. The scammer is stating there is a new payroll system and the victim will need to use the link to sign up to the new payroll system.

Some signs that this is a scam are the fact that this email is not from VCU HR, the email is not even from VCU, the sender is actually using a compromised account from Temple university. The email does not have any VCU branding or material indicating that the email is from VCU. There also has been no announcement of a new Payroll system here at VCU. The link given is also not a VCU link.

If you have received an email like this please ignore and delete it.
————————————————————————————————————————————————————
From: Rhodes, Lori Lori.Rhodes@tuhs.temple.edu
Date: Thu, Oct 11, 2018 at 10:11 AM
Subject: RE: Urgent: New Payroll Bulletin..
To: Victim Victim@vcu.edu

This message was sent securely using ZixCorp.

NEW PAYROLL

Ticket: # HRD

New Payroll Bulletin and Review ; HRM would like you to kindly update your information’s with the secure link below to receive new payroll increment / The new year program schedule for the year 2018 applicable to all Employees on the payroll directory.

Open your Browser to [Link Redacted] to complete payroll

Thank you,

Payroll Admin.

This is an automated e-mail. Please do not reply to this e-mail

Comments Off on Urgent: New Payroll Bulletin.., Scam (10/11/18)

Did you attempt to log into my facebook by accident?, Scam (10-9-18)

The following is a scam in which the scammer is posing as Facebook technical support. The scam asks if the victim attempted to log into the wrong Facebook, the link has a cloned facebook page which will send the info entered back to the scammer.

Some signs that this is a scam are the unofficial email address (not from an @facebook.com address), the various grammar issues and the suspicious link. Notice that the link is an IP address instead of a facebook link.

If you have received this email please delete it.
———————————————————————————————————————————–
From: IT gary.saunders@advanced-tactic.info
Sent: Tuesday, October 9, 2018 9:02:24 AM
To: Victim
Subject: [EXTERNAL] Did you attempt to log into my facebook by accident?

Was this you …..?

We have detected an unauthorized login attempt. 10 or more incorrect passwords in a row were attempted. Please log int to veify any changes.

162.209.3.163:80/InvalidAttempt

Comments Off on Did you attempt to log into my facebook by accident?, Scam (10-9-18)

Respond, Scam (10/5/18)

The following is a payment order scam. The scammer is posing as a fellow employee who is in a time crunch and needs some assistance with payment to a vendor. The scammer is hoping the false sense of urgency is enough to trick the victim to order some gift cards for them.

Some signs that this is scam are the non VCU email, the display name is similar to the actual email, but you can see the actual email address is a non VCU email. There are also some grammatical errors that a non-native english speaker might make. All of these are signs of a scam. If you have received this email please delete it.
————————————————————————————————————
From: FellowEmployee@@vcuhealth.org executiveofficial1@jinkpetscarrier.info
Sent: Friday, October 5, 2018 6:54:29 AM
Subject: [EXTERNAL] Respond

Let me know when you will be available. I need you to get some itune or amazon gift cards. I’m presenting this to some clients. Can you run this for me at your cost? I will refund you later. Let me know so I can provide you with the types and amount needed of each.

I am going into an early meeting with some client with limited phone calls, so just reply my email.

Fellow Employee

Sent from my iPad

Comments Off on Respond, Scam (10/5/18)

EMPLOYMENT OPPORUNITY!!! – Scam, (10-3-18)

The following is a job offer scam. The scammer is posing as an employer with an opportunity for the victim. This is a scam, do not respond to the scammer and delete the email if you have received it.

Some signs that this is a scam are the fact that the scammer are the non- business email used and the many grammatical errors that a non native english speaker would make.

Ignore and delete the email if you have received it.
—————————————————————————————————————————————————–
From: “A |&O HOME DELIVERY” msgkiss01@gmail.com
Date: Wed, 3 Oct 2018 13:51:52
Subject: EMPLOYMENT OPPORTUNITY!!!
To: Victim@vcu.edu




Hello. I am looking for a personal assistant and the payment is $450
weekly and it takes an hour of your time daily from Monday to Friday.*
*Kindly click on the link to fill your details
https://form.myjotform.com/ [Link Redacted] if interested for more
details/information.

Thanks.

A & O HOME DELIVERY

Comments Off on EMPLOYMENT OPPORUNITY!!! – Scam, (10-3-18)