A Fight Identity Theft visitor forwarded this email to us today and it was so creative I just had to post it here.
The email supposedly comes from Robert Mueller - the current head of the U.S. Federal Bureau of Investigations. Not only was it sent by the FBI, the scammers try to get you to believe it's been vetted by the Anti-Terrorist and International Fraud Division. Unbelievable.
What they're really after is the fee they want you to pay in order to collect your $850,000 - that's why they call this an "advanced-fee fraud." The fee is sent by money order which makes it very difficult to trace and impossible to recover. Here's the money paragraph:
This letter will serve as proof that the Federal Bureau Of Investigation is authorizing you to pay the required $239.99 ONLY to your claims agent via the information in which she shall send to you upon your request, if you do not receive your winning prize of $850,000.00 US Dollars we shall be held responsible for the loss and this shall invite a penalty of $3,000 which will be made PAYABLE ONLY by you (The Winner).
The $239.99 will likely only be the start of the fraud. They'll continue to ask for more money in order to deliver the $850,000. No matter how much you pay, the money will never end up in your bank account.
From: robertmul@fbi.gov.us
Subject: E-mail From The FBI..
Date: Wed, 2 Dec 2009 13:53:50 -0500
Anti-Terrorist and International Fraud Division
Federal Bureau Of Investigation.
Seattle, Washington 98101-2904
Telephone/Fax Number: +1(206) 426-2866
Attn: Beneficiary
This is to Officially inform you that it has come to our notice and we have thoroughly completed an Investigation with the help of our Intelligence Monitoring Network System that you legally won the sum of $850,000.00 US Dollars from a Lottery Company in the United Kingdom. During our investigation we discovered that your e-mail won the money from an Online Balloting System and we have authorized this winning to be authentic and paid to you via a Certified Cashier's Check.
Normally, it will take up to 10 business days for an International Check to be cashed by your local bank. We have successfully come to an agreement with this company on your behalf that funds are to be drawn from a registered bank within the United States Of America so as to enable you cash the check instantly without any delay, henceforth the stated amount of $850,000.00 US Dollars has been deposited with Bank Of America.
We have completed this investigation and you are hereby approved to receive the winning prize as we have verified the entire transaction to be Legitimate, Safe and 100% risk free of scams and frauds of any nature, due to the fact that the funds have been deposited at Bank Of America you will be required to settle the following bills directly to the lottery claims agent in-charge of this transaction whom is located at the liaison office of the Lottery Company in Seattle-Washington. According to our discoveries, you are required to pay for the following:
(1) Deposit Fee's (Fee's paid by the lottery company for the deposit into an American Bank which is - Bank of America)
(2) Cashier's Check Conversion Fee (Fee for converting the Wire Transfer payment into a Certified Cashier's Check)
(3) Shipping Fee's (This is the charge for shipping the Cashier's Check to your nominated destination)
The total amount for everything is $239.99 (Two Hundred & Thirty Nine United States Dollars & Ninety Nine Cents). We have tried our possible best to indicate that this $239.99 should be deducted from your winning prize but the funds have already been deposited at The Bank of America and cannot be accessed by anyone apart from you the winner. Therefore you will be required to pay the needed funds to your lotto claims Agent in-charge of this transaction via Western Union Money Transfer Or Money Gram. The payment will NOT reflect at the Bank of America with the given transaction code(EA2948-910) until you have covered the processing fees needed.
In order to proceed with this transaction, Click Here to contact your claims agent Mrs. Louise Major. You will be required to call her for verbal verification and e-mail her with the following informations:
FULL NAME:
FULL MAILING ADDRESS(INCLUDING CITY/STATE/ZIPCODE):
AGE/SEX/OCCUPATION:
CONTACT PHONE NUMBERS(CELL & HOME):
You will also be required to request Western Union details on how to send the required $239.99 in order to immediately ship your prize of $850,000.00 US Dollars via Certified Cashier's Check drawn from The Bank of America, Also include the following transaction code in order for her to immediately identify this transaction : EA2948-910.
This letter will serve as proof that the Federal Bureau Of Investigation is authorizing you to pay the required $239.99 ONLY to your claims agent via the information in which she shall send to you upon your request, if you do not receive your winning prize of $850,000.00 US Dollars we shall be held responsible for the loss and this shall invite a penalty of $3,000 which will be made PAYABLE ONLY by you (The Winner).
Signed:
Robert Mueller
Federal Bureau Of Investigation
NOTE: In order to ensure your check gets delivered to you ASAP, you are advised to immediately contact Mrs. Louise Major via contact information provided above and make the required payment of $239.99 to information in which she will provide you.
__________________________________________________________________________________________________________
The information contained in this email message is legally privileged and confidential information intended solely for the use of the intended recipient(s). If you are not the intended recipient(s), any distribution, dissemination, or reproduction of this email message is strictly prohibited.
We know everyone is looking for that best deal online, especially during the Black Friday shopping blitz. Here are some quality online shopping tips from Intersections, Inc. (provider of the Identity Guard [4] identity theft protection service).
We also recommend a post from the always excellent Privacy Rights Clearinghouse - "Holiday Shopping? Ten Timely Tips [5]"
As the biggest holiday shopping days of the year quickly approach, consumers everywhere will be lining up at stores on "Black Friday" for pre-dawn sales that will hopefully net great bargains and savings on holiday gifts. For those that don't want to fight the massive crowds at the malls and local shopping centers, they'll surf the Web on "Cyber Monday" - the Monday right after Thanksgiving - to catch even better sales, conveniently ordering their gifts online to have them shipped all over the world.
Finding the right deal on the perfect gift is going to be a priority this holiday shopping season as consumers everywhere are penny pinching during tougher economic times. The National Retail Federation expects average holiday spending this year will be around $682.74, down 3 percent from $705.01 last year, so getting the best value for your money is key, whether the gift is found on the Internet or at a retail store. With major online price breaks offered on Cyber Monday, online shopping sales are expected to increase 18 percent over last year, according to Information Resources, Inc.
To kick off the 2009 holiday shopping season, Intersections Inc. (Nasdaq: INTX [6]), a leading global provider of consumer and corporate identity risk management services, and provider of IDENTITY GUARD® Total Protection, the award winning identity theft protection service, advises holiday shoppers to take extra caution to avoid damaging their credit or becoming a victim of identity theft. Identity theft peaks this time of year -- wallets are stolen, credit cards are accidentally left behind and scammers everywhere are looking to prey on their next victims -- but there are simple steps consumers can take to avoid making careless decisions that can have a long-term effect on their financial well-being.
"With a soft economy and higher unemployment rates, consumers are under increased pressure to cut holiday spending, and this may lead to an increased willingness to take on greater risks," said Steven Schwartz, Intersections' Executive Vice President of Consumer Solutions. "While retailers will respond with timely offers and special discounts, it's important for customers to protect themselves from scammers and cyber scrooges who may try to prey on their emotions with targeted offline and online schemes."
One way to protect yourself is to be vigilant about where you shop (online or at the mall), what information you provide and to whom, and to protect your computer from spyware, malicious code and Trojans. Intersections' IDENTITY GUARD® Total Protection [4] is the most comprehensive offering on the market today covering personal information, credit reports, public records, computer, Internet and mobile transactions. The service also provides sophisticated software that protects consumers against keylogging attacks, secures their passwords and user IDs as they navigate online, identifies legitimate websites, and protects their computers from advanced malware software. IDENTITY GUARD® Total Protection [4] also provides identity theft recovery services and financial reimbursement insurance in the event identity theft occurs. Find out more at www.identityguard.com [4].
We've been educating you about phishing emails [9] for years and in trolling around your inbox, it’s not uncommon to come across one of those pesky emails just about every day. The easiest approach is to ignore it or mark it as spam and go on with your day. However, by taking just a minute or two to report it, you can help make the Internet a safer place for you and the rest of the world.
OpenDNS, the world’s largest, fastest-growing DNS service provider, launched PhishTank [10] in an effort to make the Internet a better place for all us.
Phishtank serves as a clearing house for data and information about phishing on the Internet and provides the information to developers and researchers to integrate anti-phishing data into their applications. Best of all, the Phishtank services are free!
Here are some statistics from October, 2009 to give you an idea of what kind of impact PhishTank has on scam emails:
Exercising a little philanthropy has never been easier:
As a side note, OpenDNS offers other services through innovative uses of the DNS. Some of these include free parental controls (porn filtering), phishing protection, and other advanced services for consumers and network administrators alike. Check out their free and deluxe plans here: http://www.opendns.com/start [13].
Medicare receives 4.4 million claims a day and approximately 1 out of 10 of those are fraudulent. All of the fraudulent claims add up to a large sum of wasted time and money and the government is trying to put a stop to it. The Department of Justice (DOJ) and the Health and Human Services (HHS) Office of the Inspector General have been working together to reduce fraudulent activity.
In 2008, the DOJ and HHS and the Centers for Medicare and Medicaid Services worked together through the criminal and civil systems to secure 588 criminal convictions, obtain 337 civil administrative actions against individuals and organizations who were committing Medicare Fraud, and recovered more than a billion dollars in health care fraud monies . . . To date in fiscal year 2009, the Department of Justice has already recovered nearly a billion dollars in health care fraud monies and recorded 300 convictions.
In addition to catching Medicare thieves the DOJ and HHS want to enable seniors to participate in the fight. They want to raise awareness about the kinds of fraud that are happening and give seniors the tools they need to deter, detect and defend!
Here are a few examples of how Medicare is scammed out of billions of dollars a year.
Medicare recipients need to keep themselves safe.
Learn to recognize common schemes. A few common fraud schemes are:
It's critical that Medicare recipients check their statement summary sheets and look for:
If you see any of these problems make a phone call to your provider or Medicare to get it resolved. It could just be a clerical error or it could be a fraudulent act that needs to be reported.
To some the task above may seem very overwhelming. The DOJ and HHS understand that seniors want to protect themselves but may not have the knowledge to do so. For this reason Senior Medicare Patrols (SMP's) were created. SMP's are groups or seniors, formed in communities, that help other senior citizens learn how to combat Medicare Fraud. They bring awareness to seniors in the community, teach seniors how to read and understand their Medicare summary statements and offer support.
Medical identity theft and Medicare fraud are a huge problem that the government cannot tackle on its own. While they do their part it's important for senior citizens to do their part to protect themselves from medical identity theft and be on the watch for Medicare fraud.
More detailed information is available in the Fight Back! Medical Identity Theft and Medicare Fraud brochure [17] put out by the HHS.
More information is available at Stop Medicare Fraud's website [18].
Facebook won a huge judgment from the spammer who already owes MySpace $234 million from an earlier suit.
Sanford Wallace [21] has been a known spammer since the 1990's and is one of the first to be crowned "Spam King". His most recent spamming scheme was sending phishing messages to Facebook users that contained links to phishing websites asking for login information. The information submitted was used by Wallace to spam the phishing victims' friends with the aim to pull in even more potential phishing victims. It's also believed that Wallace was paid to redirect Facebook users to money generating web sites.
"The record demonstrates that Wallace willfully violated the statutes in question with blatant disregard for the rights of Facebook and the thousands of Facebook users whose accounts were compromised by his conduct," Fogel said in his ruling.
Facebook sought $7 billion in damages, as allowed by the CAN-SPAM act and California business code. However, California federal judge Jeremy Fogel felt that was disproportionate to the actual damage caused by Wallace and awarded Facebook only $710,737,650 instead. Judge Fogel also turned Wallace over to the U.S. Attorney's Office to be prosecuted for criminal contempt and for willful violation of a temporary restraining order and injunction.
With Wallace possibly facing jail time and owing MySpace $234, it won't be easy for Facebook to collect its money. But at least the "Spam King" as been caught and may be taken off the grid for a time.
More information on Information Week [22]. Photo courtesy of Canadian Broadcasting Centre.
Halloween is all about tricks, treats and pretending to be something your not. Scareware must think every day is Halloween.
Computer experts are reporting that scareware is on the rise. Scareware - a sneaky hacker technique used to steal personal information and spread viruses - is being found in more and more places online and even on trusted sites, like the New York Times.
"The recent scareware attacks are cropping up everywhere and can be found on even the most trusted Web sites online," said Alison Southwick, BBB spokesperson. "The threat of scareware undermines consumer trust in compromised Web sites, and on the Internet in general, but there are steps computer users can take to protect themselves."
Scareware usually presents itself as a pop up window on your computer that looks like it is from your computer. It gives some message that your computer has been infected with a virus that needs to be removed. Often the message tells you to go to the link provided to purchase and download anti-virus software. Once the software is purchased the download begins. Unfortunately, it is not anti-virus software that is being downloaded, but more viruses and malware.
If that weren't bad enough, now the hackers have your credit card information too.
This senario is playing out all over the internet. It was in mid-September that visitors to the New York Times web site started getting the infected pop up window. The New York Times traced the infected window back to an unauthorized ad. They later found out that the ad space was sold to hackers posing as Vonage.
But The New York Times is not the only site being affected and pop up windows are only half the story with scareware. According to Computer World Magazine, hackers are also "poisoning Google search results." Hackers monitor popular search topics and then create infected web pages with related content. They work to get those to the top of Google search results and when someone clicks a link in the search results - the infamous pop up window appears.
Fortunately there are steps that you can take to protect your computer from scareware:
(includes backup and other features), Norton Internet Security 2010 [26] (good all around option), 
or avast! [27] (free and good), and keep it up to date. Also make sure that all security patches and updates are installed for your webrowser and programs like Adobe Flash Player.If you clicked on the link and have downloaded the software all is not lost, but things aren't good. The Washington Post offers advice on their Security Fix blog [28] of how to rid your computer of the viruses and malware. But if you aren't computer savvy, you may think about calling a professional to clean up the mess.
UPDATE: An article from Wired magazine's Threat Level blog [29] sheds more light on how web sites are being targeted for malware distribution:
Web ads have become much more advanced over the years and many now include scripts that provide data tracking and other functions. Because of this, crooks are working to have their "ads" run on popular websites. Their ads also contain scripts, but the code displays scareware instead of tracking clicks or views.
In the article, Gawker Media - a major blog network of sites like Gizmodo, LifeHacker, Jalopnik and others - was targeted for ad placement, but fortunately Gawker has a team of geeks that digs into the code of any ad and confirms that it contains no malicious code. I'm guessing the NY Times now is enforcing a similar policy (yep, it is now [30]).
Heaven help us when we visit sites that have no such team of geeks to protect us from malicious ads...
Consumers’ obsession with celebrity news and culture is harmless in theory, but one bad download can cause a lot of damage to a computer.
—Jeff Green, McAfee, Inc.
Internet security company, McAfee, Inc. has just released its yearly update of most dangerous celebrity web sites for online threats such as spyware, adware, spam, phishing, and viruses. In the survey, web searches for actress, Jessica Biel, had a one-in-five chance of ending up on a website that has tested postive for malware—putting Biel’s name at the top of the danger list and beating out last year’s most dangerous name, Brad Pitt. Biel became popular on TV’s “Seventh Heaven” and recently starred in “Easy Virtue”.
Pop star, Beyonce, placed second on the list. Web searches on “Beyonce ringtones” led to a dangerous website linking to a distributor of adware and spyware. Over 40 percent of the survey searches for “Jennifer Aniston screensavers” contained computer viruses. Other celebrities on this year’s list included Miley Cyrus, Ashley Tisdale, Lindsay Lohan, Megan Fox, Angelina Jolie and newlyweds, Tom Brady and Gisele Bundchen.
Every day, cybercriminals use celebrities’ names and images, like Kim Kardashian and Rihanna, to lure surfers searching for the latest stories, screen savers and ringtones to sites offering free downloads laden with malware.
More info from Reuters - http://www.reuters.com/article/internetNews/idUSTRE57O2P520090825 [33]
Ben Bernanke is a victim of identity theft. This is proof positive that it can happen to anyone.
Ben Bernanke - the Federal Reserve Board chairman - was one of hundreds of victims of an elaborate identity-fraud ring, headed by a convicted scam artist known as "Big Head," that stole more than $2.1 million from unsuspecting consumers and at least 10 financial institutions around the country.
On August 7, 2008, Anna Bernanke - Ben Bernanke's wife - was at a Starbucks when her purse was stolen off the back of her chair.
It's not good...
So the thieves had Mrs. Bernanke's SSN, Date of Birth (from the Driver's License), home address, and home phone (from the checks). This is the perfect combination of personal data.
It goes without saying that you should never carry your Social Security card in your purse or wallet. It should be tucked away in a very safe place at home or in a bank lock box. You should also limit the number of credit cards you carry. Just think of how many banks you'd like to call and/or fraudulent transactions you want to deal with and limit your cards accordingly.
The thieves were part of a crime ring called "The Cannon to the Wiz." Here is the entry from the Urban Dictionary [36] for "cannon":
Cannon - Old school term for a skilled pickpocket. "
These thieves were after personal information as well as checks and credit cards. They worked in government or medical offices or were simple pickpockets or mail thieves. They attended major sporting events in order to target victims with wallets and purses full of loot. One such victim was Donna Pendergast - an assistant Michigan Attorney General. Her experience went like this:
The robber was so adroit he managed to lift the wallet from her purse without her even knowing it. "They took it right out of my purse while it was on my shoulder," she said. "I didn't feel a thing."
Yes and no.
Federal agents busted the identity theft ring this summer, but George Lee Reid - the one who fraudulently used the Bernanke's checks to steal $9,000 - had the charges dropped against him, but the Feds are now searching for him again on related charges.
More information on this story from Newsweek [37].
Lately I've received several "smishing" text messages on my phone and I finally captured the audio of a full phone interaction with their voice response system.
Here is the audio from a smishing phone call I recorded. Listen closely to see how they use fear to manipulate the victim into providing information.
Well, someone somewhere comes up with these cute names for things and "smishing" is no different. It's a play on the term "phishing", and the "Sm" part comes from SMS, which is the technical name for text messages on cell phones (Short Message Service). Did that make sense? If not, here's a description from the fount of all knowledge - Wikipedia:
Similar to phishing, smishing uses cell phone text messages to deliver the "bait" to get you to divulge your personal information. The "hook" (the method used to actually "capture" your information) in the text message may be a web site URL, however it has become more common to see a phone number that connects to automated voice response system.
As you listened to the call, you should have noticed a few tactics scammers use to get your information:
In this call, they are trying to capture a credit card number, expiration date, PIN, and card security code. With this information they will attempt to make purchases online with your card, pull money from your account with an ATM, or possibly create a fake card containing your information.
It should be obvious to most people that these messages are scams. Unfortunately, the scammers just have to get a small percentage of people to fall for these messages to make it worth their time. Just like spam email, if a few people respond it will continue to be financially viable.
What complicates things a bit is some banks are now using text messages as a communication method for alerts or other information. In these alerts they'll often ask you to phone in to confirm a transaction or to alert you to a problem with your account.
If you're concerned at all about the origin of an alert, always call your bank directly using the phone number from a bank statement or official web site. Never call using the number provided in a text message.
Read more about about smishing tactics in this recent Yahoo article [40].
The latest identity theft scheme doesn't aim to empty your debit account or charge you to the credit limit—not yet anyway. According to The Boston Globe [43], at least 800 credit and debit cardholders have reported finding tiny fraudulent charges on their statements in recent weeks.
The charges range from 21 to 48 cents, and are billed under at two phony business names: "Adele Services" and "GFDL."
The mysterious charges have lead to a range of speculation over the nature of the scam. Some think that the small charges are meant to test the validity of a registry of stolen credit card numbers which may have been resold by the original thieves. If the theory is correct, those whose cards have already been charged can probably expect to be targeted for much larger amounts down the line.
A less likely theory parallels the scam attempted by the main characters in the movie "Office Space," which featured three disgruntled computer programmers who attempt to slowly embezzle money from their company, pennies at a time. The scheme is sometimes referred to as "salami slicing", but usually targets businesses or customers rather than an unconnected group of individuals.
If this theory holds, those who fail to notice that their accounts have been compromised will continue to be targeted for small amounts of money indefinitely. Most likely, the thieves would have to create new false companies with each wave of thefts.
Regardless of the intent of the perpetrators, the course of action for those who notice small, unexpected charges on their debit and credit card statements is the same:
As always, it's important for everyone to pick carefully through their statements each month (if not more frequently,) looking for charges they don't recognize. Whether a questionable charge is 1 cent, $1, or $100, it should always be treated as a potentially serious problem.
Links:
[1] http://www.fightidentitytheft.com/blog/fbi-says-youve-won-lottery
[2] http://www.fightidentitytheft.com/blog/fbi-says-youve-won-lottery#comments
[3] http://www.fightidentitytheft.com/blog/avoid-grinch-when-shopping-online
[4] http://partners.nextadnetwork.com/z/406/CD76
[5] http://www.privacyrights.org/holiday-shopping-tips-2009
[6] http://studio-5.financialcontent.com/prnews?Page=Quote&Ticker=INTX
[7] http://www.fightidentitytheft.com/blog/avoid-grinch-when-shopping-online#comments
[8] http://www.fightidentitytheft.com/blog/report-phishing-email-what-do-when-you-catch-phish
[9] http://fightidentitytheft.com/paypal_scam.html
[10] http://www.phishtank.com
[11] http://www.phishtank.com/register.php
[12] mailto:phish@phishtank.com
[13] http://www.opendns.com/start
[14] http://www.fightidentitytheft.com/blog/report-phishing-email-what-do-when-you-catch-phish#comments
[15] http://www.fightidentitytheft.com/blog/medicare-fraud
[16] http://www.smpresource.org
[17] http://www.stopmedicarefraud.gov/fightback_brochure_rev.pdf
[18] http://www.stopmedicarefraud.gov/index.html
[19] http://www.fightidentitytheft.com/blog/medicare-fraud#comments
[20] http://www.fightidentitytheft.com/blog/facebook-awarded-711-million-spam-king
[21] http://en.wikipedia.org/wiki/Sanford_Wallace
[22] http://www.informationweek.com/news/global-cio/security/showArticle.jhtml?articleID=221400140
[23] http://www.fightidentitytheft.com/blog/facebook-awarded-711-million-spam-king#comments
[24] http://www.fightidentitytheft.com/blog/scareware-everyday-halloween
[25] http://www.amazon.com/gp/product/B001U3PYLQ?ie=UTF8&tag=fightidentity-20&linkCode=as2&camp=1789&creative=390957&creativeASIN=B001U3PYLQ
[26] http://www.amazon.com/gp/product/B002L7BR20?ie=UTF8&tag=fightidentity-20&linkCode=as2&camp=1789&creative=390957&creativeASIN=B002L7BR20
[27] http://www.avast.com/eng/avast_4_home.html
[28] http://voices.washingtonpost.com/securityfix/2009/09/what_to_do_when_rogue_anti-vir.html
[29] http://www.wired.com/threatlevel/2009/10/gawker/
[30] http://www.wired.com/threatlevel/2009/09/nyt-revamps-online-ad-sales-after-malware-scam/
[31] http://www.fightidentitytheft.com/blog/scareware-everyday-halloween#comments
[32] http://www.fightidentitytheft.com/blog/celebrity-web-sites-a-source-photos-ringtones-and-malware
[33] http://www.reuters.com/article/internetNews/idUSTRE57O2P520090825
[34] http://www.fightidentitytheft.com/blog/celebrity-web-sites-a-source-photos-ringtones-and-malware#comments
[35] http://www.fightidentitytheft.com/blog/ben-bernanke-identity-theft-victim
[36] http://www.urbandictionary.com/
[37] http://www.newsweek.com/id/213696
[38] http://www.fightidentitytheft.com/blog/ben-bernanke-identity-theft-victim#comments
[39] http://www.fightidentitytheft.com/blog/smishing-scam-audio-sample
[40] http://tech.yahoo.com/blogs/null/139677
[41] http://www.fightidentitytheft.com/blog/smishing-scam-audio-sample#comments
[42] http://www.fightidentitytheft.com/blog/is-someone-stealing-pennies-from-your-bank-account
[43] http://www.boston.com/business/articles/2009/02/01/tiny_charges_on_bank_cards_could_presage_bigger_problems/
[44] http://www.fightidentitytheft.com/blog/is-someone-stealing-pennies-from-your-bank-account#comments
[45] http://www.fightidentitytheft.com/blog/categories/Scam?page=1
[46] http://www.fightidentitytheft.com/blog/categories/Scam?page=2
[47] http://www.fightidentitytheft.com/blog/categories/Scam?page=3