Email real or scam? – Federal Court

Posted on Posted in Blog

No, you haven’t been subpoenaed. (Unless, of course, you have). This image shows an email our client received today. I’ve created a quick checklist to see if an email is real or scam. DO NOT CLICK LINKS DO NOT ALLOW PICTURES TO DOWNLOAD ARE YOU EXPECTING THIS EMAIL? Google for: “scam the federal court of australia” The from email address – mail@loanserver.net – I doubt the Federal Court would send from this address. The two links in red, hover your mouse over the link without clicking and you can see where the link will go. Here I have added it […]

Ransomware Alert

Posted on Posted in Blog

Ransomware Alert Hi everyone. We’ve just received word from our friends at Trend Micro that a new version of TorrentLocker is doing the rounds disguised as a fake Australia Post website. We advise users: Do NOT enter Captcha codes to any postal tracking site. Do NOT open attachments from emails you aren’t expecting. Confirm the URL in the address bar in your browser for any website you visit. Alert us immediately if you receive any suspicious email – support@atcom.technology

Trojan encrypting networks

Posted on Posted in Blog

We’ve now had several cases of a Trojan infecting PCs and encrypting local user data, as well as data on shared server drives. If you see an error message like this, please turn off your computer and get in touch with your IT support immediately. This program will silently reach out to the Internet to download executables, which will in turn encrypt your data and hold it to ransom. If caught early enough, it is possible to recover data. However, always ensure you have a good disaster recover solution in place.

Dodgy tech support callers

Posted on Posted in Blog

We’ve had several reports of calls received from people claiming to be from “Microsoft” or “Telstra”, on numbers like 0011 976 000. The caller will claim your PC is infected or has errors and will offer to fix you up remotely. You will then be directed to install a remote support tool, which will give the caller complete access to all your data. Usually, they will walk you through to the Windows event log (shown below) and claim these errors are breaking your computer. These errors are mostly normal Windows behaviour, and nothing to be concerned about unless you are […]

Fake AFP websites

Posted on Posted in Blog

Another alert from our buddies over at Trend Micro: Fake AFP websites spreading TorrentLocker after changing their social engineering target. At the present we have seen 101 fake websites (the list is still growing) We advise users: – Not to enter Captcha codes to any penalty / police related website. – Be especially careful about anything purporting to be a traffic infringement or the AFP (use the phone to confirm any such email). tl:dr – Always verify the integrity of a website – look for “https” and proper certificates. If you believe you may be infected, turn off the computer […]

Cryptolocker 4 alert

Posted on Posted in Blog

New alert from our friends over at Trend Micro: Two Ransom-ware outbreaks are happening right now: Australia Post and Cryptowall Attachment. The spam (distributing Cryptowall 4) is using an obfuscated JavaScript attachment. (Spam mails are already detected by the latest AS full pattern 2092). The obfuscated JavaScript downloads malicious content from URLs such as: hxxp://dertinyanl.com/img/script.php?tup1.jpg … hxxp://yalcingulten.com/dbsys.php At the present we have seen 85 fake Australia Post websites (the list is still growing): hxxp://adventuredmc.com/JXZ9TMtUgiI/VvqyrjDo.php … hxxp://wilanowski.net/uUJTW/9oyONj.php We advise users: Not to enter Captcha codes to any postal tracking site Not to open invoice / refund attachments from email (Cryptowall) Be especially careful about […]