Category: Scams

Consumers warned to be wary for Black Friday fraud – Bank of Ireland

Bank of Ireland is warning consumers to be especially vigilant for fraud as Black Friday and Cyber Monday approach.

Black Friday and Cyber Monday are key online shopping dates for many consumers, which also means fraudsters will be stepping up their activity. Bank of Ireland customers spent 54% more online during Black Friday last year compared to a standard Friday, with clothing (+104%) and electrical goods (+100%) seeing the largest increase.

For those shopping online this Black Friday or Cyber Monday, Bank of Ireland is providing tips to stay safe.

Black Friday / Cyber Monday tips:

 

  • Be careful with links in emails and texts – Fake links can lead to fake websites where you may be asked to share your personal banking details including activation codes.

Do not share your banking details, including your full online banking PIN, or other personal information.

  • Think before you click – make sure you double check website addresses for anything unusual.
  • Use trusted websites – check that the ‘https’ and the lock symbol is displayed. Exercise caution with Pop ups on your social media feed (fraudsters can pay to have their ads in front of you).
  • On a mobile device use trusted apps – it can be difficult to see the full web address on mobile if you are using a web browser so instead stick with trusted apps.
  • Use up to date anti-virus software on your computer – this will help protect it against malware.

Nicola Sadlier, Head of Fraud, Bank of Ireland said: “We are already starting to hear about Black Friday and Cyber Monday deals, but shoppers need to be extra vigilant for fraud. Fraudsters like to inject an element of urgency into their offers or fake adverts, but don’t rush a transaction without checking things properly first. Verify if websites and apps are legitimate and be extremely careful with online adverts, texts or e-mails. Remember, if something sounds too good to be true, it’s probably fraud.”

To coincide with the busy pre-Christmas shopping period, Bank of Ireland has launched a new national fraud advertising campaign, reminding customers to Stop, Think and Check. The Bank is publishing a series of ‘True Crime’ videos with renowned cyberpsychologist Professor Mary Aiken providing insights and tips to help people protect themselves.  Visit Security Zone – Bank of Ireland Group Website

Brits set to lose £800m to online shopping scams this festive season

Britons are being warned to stay alert this year with shopping scams expected to surge over the next two months during the festive season, which could cost the nation over £800 million. 

It comes as new research released today reveals that over 13 million Britons have been victim to an online shopping scam in the last year which has amounted to a loss of £1.4 billion. 

With over £800 million lost during the festive shopping season alone, cybersecurity experts are urging Brits to take measures to avoid losing cash to scammers as clothes, gifts and tech all top the list of popular scam buys. 

The research, conducted among 2,000 UK adults by Censuswide and commissioned by F-Secure, a global leader in cybersecurity, found that of those that had been scammed, those aged under 25 were hit the hardest financially, losing as much as £245 during the Christmas shopping period while two–fifths of 25-34 years old, more than any other age group, are most likely to fall victim to scam.

The research found the top 10 shopping scams are:

1. Fashion item 16%

2. Gifts 16%

3. Tech or IoT devices 15%

4. Beauty 13%

5. Food 13%

6. Sport gear 12%

7. Furniture or home dec 12%

8. Vehicles 12%

9. Travel 12%

10. Concert tickets / event tickets 11%

Further findings revealed men are slightly more likely to be scammed (28%) than women (21%).

The loss isn’t just hitting British pockets, the impact is also hitting the UK economy as the research revealed shopping scams are likely disproportionately affecting smaller retailers – which could force them out of business as more than half (56%) of Britons admit they now avoid shopping with small, independent online businesses, feeling more secure shopping with well-known brands.

However, the reality is that scams can occur with any sized retailer. Small independents accounted for 27% of the UK’s scams last year, only marginally more than large online platforms (such as Amazon and eBay) 23% and large retailers 21%. 

Tom Gaffney, F-Secure, said: “The next couple of months are the biggest shopping weeks of the year which we anticipate cybercriminals to try and take advantage of, particularly as the cost-of-living crisis may mean shoppers are looking for deals, but not necessarily safely. 

“We would urge everyone to be extra vigilant at this time of year and follow our tips before making any purchase online. Scams are becoming increasingly more difficult to spot but consumers can do very simple things to check they are safe when they’re shopping.

With a quarter of online shoppers admitting they’re not confident they can spot a dodgy site, here are F-Secure’s top tips to stay safe when shopping online:

 

  • Use an online checker such as F-Secure’s ‘Online Shopping Checker’ to identify if a website is legitimate.

  • Always use a credit card where possible because you might stand a better chance of getting your money back with credit card cover.

  • If you’ve not heard of a site before, do your research, check social media and reviews – but be wary of too many five stars as fake reviews can be purchased.

  • If it’s too good to be true, it probably is. Legitimate stores tend to offer competitively priced offers. If you encounter an online store with exceptionally low prices, pay extra attention to other potential indications of a scam

F-Secure’s new Online Shopping Checker allows shoppers to test any online store’s URL to confirm its legitimacy. The free tool detects the reliability of the store and shows trust ratings before making a purchase. The same technology is included as ‘Trusted Shopping’ in F-Secure’s Browsing Protection: F-Secure Online Shopping Checker | F-Secure

Bord Gáis Energy sms scam is back

Another scam is back and this time it is Bord Gais, recently we had another one return and it was Guinness which again turned out to be rampant and claiming to give free full fridges of beer. This particular sms asks you to pay an overdue bill which you possibly might have due to the energy crisis going and again shows how these scammers operate. As always if you get the said sms just ignore and delete. Most importantly in today’s world of scams getting more realistic looking remain vigilant and feel free to ask us too as people do if they get a suspicious looking message.

 

Bord Gais Energy already have stated on their website

We’re aware of recent fraudulent messages that have been circulating via SMS and WhatsApp, which may look like they have been sent by Bord Gáis Energy. We’ll never send you a link asking for account details or personal information. If you receive a message like this, please delete it immediately.

We have asked the company for a comment on the matter.

Guinness WhatsApp Mini Fridge for Fathers Day Scam

Another day another scam has just landed on WhatsApp and this time Guinness maker Diageo are apparently giving away free mini fridges full of beer for Fathers Day which is quickly approaching, in fact I got two of these text in succession and you can see the screenshots below as what you will see on your device but do not open the link.

In the so called quiz you will be asked a few questions then you will be given three chance to open a parcel and it is most likely you will be told you won with so many mini fridges left which changes every time you enter, so it is certainly a scam and it should be ignored

We have contacted Guinness for a statement on this and will revert back if we hear back from them. As always you should be vigilant and if it looks too good to be true it most likely is and there is many scams doing the rounds of late so beware. Update! A spokesperson since has stated they have nothing to do with the scam.

Check it out

Garda cyber crime email scam returns

Last year there was a Garda scam doing the round which had people concerned and it has popped up again this time looking totally different than before. Again this pertains to cyber crime and sex related crimes and is poorly written as the last one was and cites laws brought in March 2007. Again this is just another scam to trick you into handing over money and most likely lots of it. Here is what it looks like below.

 

Advice once again given and you should take heed of it and never open suspicious emails or text message.

  • Don’t respond to any unsolicited email seeking personal, financial or security advice.
  • Never click on a link or attachment in an unsolicited email.
  • If you believe the email is from a genuine source, verify this independently. Independently means independent of the email sender.
  • Independently verify any requests for information and never use the contact details supplied to you by the caller or texter. Independent means independent of the caller or texter.

Further fraud prevention advice can be found here https://www.garda.ie/en/crime/fraud/

Supervalu Facebook scam to be aware of

Facebook is riddled with scams and to be honest it looks like Facebook does not care about it either, the latest scam is a page claiming to be Supervalu Ireland Fans and offering 540 gift bags for winners and in order too sign up you need to enter with your Google account and BANG they have got you.

From reading the page alone they are celebrating their 54nd birthday and if this does not give it away well you deserve anything you get from there, we contacted the company about it and they posted this on their own page..

Supervalu facebook scam – techbuzzireland

We have been made aware that there is a fake page circulating called ‘SuperValu Ireland Fans’. We can confirm that we have no affiliation with this page. If you see this Facebook page we would advise you NOT to interact. Do not click on any links or share any personal info. Thank you to those who brought this to our attention. Our official Facebook page will never ask you to click on any links.

We will obviously not be linking the scam page but you are now aware about it. But as always so many seem to just fall for it. You have been warned.

HP Wolf Security report: Daily QR “Scan Scams” Phishing Users on their Mobile Devices

HP Ireland has today issued its latest quarterly HP Wolf Security Threat Insights Report, showing hackers are diversifying attack methods, including a surge in QR code phishing campaigns. By isolating threats on PCs and mobile devices that have evaded detection tools, HP Wolf Security has specific insight into the latest techniques being used by cybercriminals in the fast-changing cybercrime landscape. To date, HP Wolf Security customers have clicked on over 25 billion email attachments, web pages, and downloaded files with no reported breaches.

From February 2022, Microsoft began blocking macros in Office files by default, making it harder for attackers to run malicious code. Data collected by the HP Threat Research team shows that from Q2 2022, attackers have been diversifying their techniques to find new ways to breach devices and steal data. Based on data from millions of endpoints running HP Wolf Security, the research found:

  • The rise of QR scan scams: Since October 2022, HP has seen almost daily QR code “scan scam” campaigns. These scams trick users into scanning QR codes from their PCs using their mobile devices – potentially to take advantage of weaker phishing protection and detection on such devices. QR codes direct users to malicious websites asking for credit and debit card details. Examples in Q4 included phishing campaigns masquerading as parcel delivery companies seeking payment.
  • HP noted a 38% rise in malicious PDF attachments: Recent attacks use embedded images that link to encrypted malicious ZIP files, bypassing web gateway scanners. The PDF instructions contain a password that the user is tricked into entering to unpack a ZIP file, deploying QakBot or IcedID malware to gain unauthorised access to systems, which are used as beachheads to deploy ransomware.
  • 42% of malware was delivered inside archive files like ZIP, RAR, and IMG: The popularity of archives has risen 20% since Q1 2022, as threat actors switch to scripts to run their payloads. This is compared to 38% of malware delivered through Office files such as Microsoft Word, Excel, and PowerPoint.

We have seen a rise in scan scams, malvertising, archives and PDF malware recently, and we would encourage everyone to look out for emails and websites that ask to scan QR codes and give up sensitive data, as well as PDF files linking to password-protected archives. Being aware of the signs to watch out for is the first line of defense when it comes to detecting and eliminating any breaches, it ensures these threat actors don’t gain access to sensitive data and move throughout systems,” explains Val Gabriel, Managing Director of HP Ireland.

In Q4, HP also found 24 popular software projects imitated in malvertising campaigns used to infect PCs with eight malware families – compared to just two similar campaigns in the previous year. The attacks rely on users clicking on search engine advertisements, which lead to malicious websites that look almost identical to the real websites.

While techniques evolve, threat actors still rely on social engineering to target users at the endpoint,” comments Dr. Ian Pratt, Global Head of Security for Personal Systems, HP Inc.

Organisations should deploy strong isolation to contain the most common attack vectors like email, web browsing and downloads. Combine this with credential protection solutions that warn or prevent users from entering sensitive details onto suspicious sites to greatly reduce the attack surface and improve an organisation’s security posture.”

HP Wolf Security runs risky tasks like opening email attachments, downloading files and clicking links in isolated, micro-virtual machines (micro-VMs) to protect users, capturing detailed traces of attempted infections. HP’s application isolation technology mitigates threats that might slip past other security tools and provides unique insights into novel intrusion techniques and threat actor behavior.

The full report can be found here: https://threatresearch.ext.hp.com/hp-wolf-security-threat-insights-report-q4-2022/

Instagram friends help me out scam to be very careful of.

There is no shortage of scams out there today and each day we see several hit the news, however one I got today was something new to me and very clever almost fell for it until i noticed some things happening in the thread then I rang the person in question and played the scammer along for the ride and things quickly slowed down. Yes I went further than I should have but my Instagram has 2FA but they still tried their hand however Instagram got in there before them which was a good move and good to see.

By the message thread you can see this person thought he had me roped in and was getting inpatient, Instagram has no service allowing your friend to help you out but these clowns thought they did, this was news though earlier this year stating they are testing such a feature buy way of letting you select two friends seen below is a sample of what we are talking about here.

Quote – Source

Leaning on your friend’s help to access your account

To help people who have lost access to their accounts, we’re testing a way for people to ask their friends to confirm their identity and regain access to their account. We will have more to share about this feature soon. THIS IS NOT YET A FEATURE>> BE VERY AWARE..

Below is the messages I had got from Facebook Instagram and the conversation I had after I thought something was not quite right here and made that phone call and the user was not aware either until the phone call then their phone started hopping messages.. They begin with stating they have a new phone, click on images to enlarge and have a read.

In turn what will happen here is you will get a message with a link and then you copy and past it back to the person on the Instagram account in their private message and here is where they will try login to your account, but after stringing this lad along today I began to throw up some logic by stating you do not live In Nigeria You do not have network issues and then when asked where do you live is where it all fell apart.

In short this could easily catch people out and perhaps not a good move for Instagram going forward just now anyway but it has been touted as a feature which has not been rolled out to users and a good attempt to try take over your account and you know what comes after that. If you ever receive such a message, it would be better to run the details on a people finder free lookup site to verify the identity of the person before replying anything.

New email scam claiming to be from An Garda Síochána

Over the last few days I have received several emails to with the latest scam doing the rounds claiming to be from An Garda Síochána regarding child pornography, and more, see the email in full below, naturally reported to the Garda I have yet to hear back from them which is a disgrace considering the contents in the email and how serious this is. Not only have I emailed them I have tried to get their attention on Twitter too yesterday.

This email will catch some out and probably but most will see that it is indeed a scam, in the email it will claim that your PC will be seized and placed under arrest and slapped on the national offenders registry. As with all dodgy emails just delete them straight away and report to a Garda station, you should get a response there. They have however put out notice today of the scam that was reported yesterday and you should also check their website for more

 

The email in full from this morning, same as others just different email addresses.