Who is impersonating my Email?

A recent customer was surprised and upset to receive an email that said it came from the customer’s name.  (ex. sentfrom: insert your name here!).  That would mean a spoof email could be sent impersonating the customer even though they did not send it!  Can it be done, yes. So be warned and careful about links and especially attachments in emails even if sent from someone you know and communicate with regularly.

To check and confirm the emails origin via the email header see the instructions for your email service here:

Expanded List of Sites with instructions on finding email headers:

http://www.emailquestions.com/full-email-headers/

 http://spamcop.net/fom-serve/cache/19.html -

 http://www.haltabuse.org/help/headers/ –

When you see the actual email header there will likely be a series of “Received: From” listings so find the last one listed (lowest down on the Received:From list) and this is the originator of the email.

This may be frustrating news but it’s not new, remember USPS Mail!  Stay vigilant and stay safe.

Whoa, People, Don't Click that Link!

Here is the latest article published on EZINES about why it is best not to click on links in emails.

What the POP-UP! Close it Safely!

Gmail, MSN-Hotmail (Windows Live), and Yahoo, to name several free email providers, have been in the news lately since a list of email addresses and their associated passwords were posted on the Internet!  Since the revelation the posted information has been removed and each company has forced password resets for the email accounts that were affected.  This means the user will be required to change their password the next time they access the email account.  [Note; if a password reset is required and you use POP3 email such as Microsoft Outlook or Express be sure to update the password for the email accounts here also.]

So how did this happen in this case?

The official word is that phishing and mimic websites are the hackers tool.  Here’s how it works:

1. An official looking email is sent to the user or the user visits a “hacked” website.
2. The user clicks on the link in the fake “official” looking email or the faked “official” looking pop-up box.
3. The user enters their Username and Password and Whoala!, you’ve been PHISHED!
4. Or, worse you’ve authorized the download of Malware / Spyware to your computer.

How to protect yourself?

1. Educate; locate the security tips for your email type. [Here are some quick links, Left-Click on the image: ,  , ]
2. Install a reliable Anti-Malware Software and Firewall [a list of free resources for home use is available via a free registration HERE.  Need help on how to install and use computer security software consider the BOOK or EBOOK]
3. Secure the Internet Browser and consider using an alternative Browser such as;

• Mozilla Firefox An established Internet Browser DOWNLOAD LINK
• a more recent entry DOWNLOAD LINK [winning awards for hacker proofing]

A now common trick for Phishers, especially, in trying to download Malware or Spyware is a faked POP-UP window.  If a suspicious window appears DO NOT click on it but close it by pressing and holding the “Ctrl” key followed by the “W” key.  This key combination will close the active Window.   If you end up in a fireball of windows, keep using this combination until all the Pop-Up Windows plus the Internet Browser are closed.  If internet style Pop-Ups occur even with the Internet Browser Closed it is likely there is Malware on the computer and it needs to be scanned and cleaned.

In the follow-on article we will address using certain Internet Browser Settings for Mozilla Firefox and Google Chrome to improve Internet Surfing security.