Blog Archives

The Anatomy of a Phishing Email

Today someone was awesome enough to send me an email to make sure that it was valid before they clicked on anything.  I cannot express to you how happy that makes me!!!  It saves me so much work!!!!   Of course, we now have Cylance as our Anti-Virus(AV for short) and that in itself has made my job so much easier!!!!  We’ve had it nearly a year and NOT 1 computer has become infected with ANYTHING!   If you are a business thinking of changing your AV product, I cannot recommend this product highly enough!!!!

First, let me break down the beginning of the email:

From: Media Player <info@flymail.cf>   <———– This is NOT an Apple address
Subject: New version of Mac Media Player available for download!

Apple and Microsoft will NEVER send you an email about this!!!!!!  They would send it to your device through an update!   Sometimes phishers will fake the email address or make it look so close to the real thing.  I’m actually surprised at how bad this email address even looks!   Even if it looks real, and you think it might be a valid email from your bank, Paypal, Amazon anything like that go to the website directly. DO NOT CLICK on the link!

Then we go into the guts of the email:   It’s a bunch of pictures with links attached to them:

2017-04-13_10-24-27

Looks fairly realistic huh?   This is actually very easy to do!!! I just did this with a screenshot!   Anyone with minimal computer experience could do this!

Now, for the most important part. If you just hover over the Download link or anywhere over the pictures, this link comes up:

2017-04-13_10-04-26.jpg

First off, this is NOT an Apple link!  The link here is to a domain named flymail.cf.   The portion of the address that is wrong is the .cf.   That is not a legitimate top level domain name, like .com, .org, gov or .edu.  To see a list of actual top level domain names, you can find it here: http://www.domainsherpa.com/top-level-domains/ .

The other portion of this link that bothers me is track-url.   Now, this leads me to believe that this link is going to track your urls (websites) that you visit.   I’m going to say that this tracking will happen through cross-site scripting.  Essentially this site will inject code into your browser that will capture your sessions on the websites you visit after this website, including your usernames and passwords!!!    

This means if you go to an unsecured website the hacker can easily capture your username and password with this code.  It’s one of the most frequently used types of hacking, it’s called session hijacking.   Later on you start to wonder why you are getting spam, or why did people just get friend requests on Facebook from me when I am already friends with them?   If you use the same password for one site, then the hacker can go to several websites and try that password and have remarkable success!

This is why you need to have different and complicated passwords for all sites you visit. There are password managers that you can use to help you with this.  Let’s face it our brain can’t remember all of our passwords and writing them on a piece of paper and saving them in your desk, or under your keyboard at work are HORRIBLE options!  I will do more research on what password managers are the safest and best to use for my next Tech Tip Thursday.

Oh yeah, and if I find your passwords written on a sticky note taped to your monitor I’m rippin’ that bad boy off and throwing it out!   

 

 

 

Advertisements

How to Change Your Password in Windows 10 and Office365/Outlook 2013 and 2016

I know many people will pass this article up because they will think how in this day in age, can someone still not know how to do it.  Yet, this is one of my most frequently asked questions!   You are NOT alone!

In Windows 10 once you are logged in.   Hold down the keys on your keyboard labeled Ctrl and then Alt and then Delete.  That will bring you to this screen-Select Change Password.

select-change-password

This is also where you should go if you are getting up from your desk and need to lock your computer so no one else can get into your system!!!!! It’s a very important security measure!

Next selecting Change a Password will bring up this screen:

change-passsword

Make sure your password is complex!!!!!  Some complexity rules to follow are:

1.  The longer the better!  At a minimum make it 8 characters, however, it SHOULD be longer!

2.  ALWAYS include an upper case letter

3.  ALWAYS include a lower case letter.

4.  AlWAYS include at least 1 number.

5.  ALWAYS have a symbol.  Like ! or @ or $.

Once your password has been updated you will receive this screen.  Make sure your password is something you can remember.  PLEASE do NOT put it on a sticky note and then put the sticky note on your monitor or under your keyboard that is the FIRST place people look.  If you must write it down keep it in a LOCKED drawer at all times!

Now Outlook will need the password updated if you are using Office365.  This is the fastest way to change it.

Open Outlook, then look for the Send and Receive Tab.

where-to-change-your-password-in-outlook

There is an icon on the ribbon with a key on it.  Underneath it says Type Exchange Password and Connect.   If for some reason your aren’t getting emails or calendar updates look at the bottom right-hand side of your screen and see if there is a key icon with the words Need Password.   When you select the Type Exchange Password and Connect it will bring this screen up:

prompt-to-change-outlook-password

Type in your password in the box that says password.  Select Remember my credentials box otherwise, it will constantly ask you for your password!!!!!!!    Then select OK and you are set there.

If you have Skype and you are logged into it.  You will need to update your password there as well and the pop up looks identical to this one except it says Skype.   As shown below:skypepasswordchange

If you use the sales program for Pipeliner you will also need to update your password there as well!!!!

 

Changing your password in Windows 10 and Office 365

You need to change your password in Windows 10.  How do you do that?   Simply hit the keys on your keyboard: Control-Alt-Delete and this screen will come up.   See the 4th choice down “Change a Password” this will change the Windows 10/Network Password.change-a-password

Your password should be at least 8 characters, a capital letter, a small letter, a number and a symbol.

After you change your password eventually you will need to change your Office365 password.   Outlook will stop sending and receiving email.  The best way to be able to tell this is by the photo below.

Outlook change password

If this happens, go up to the top ribbon bar and select the Send and Receive tab.   You should see this symbol, where it says:  Type Exchange Password and Connect.

2016-08-05_9-50-35

When you click on this icon it should bring up this screen.

office365passwordprompt1

Type in your new password and make sure to click Remember my credentials otherwise it will ask you this about every 5 minutes.  Annoying!

Remember if you have PipeLiner on your computer you will need to update your Pipeliner password as well.   Here is a link on how to do that in case you have forgotten.

http://success.pipelinersales.com/knowledgebase/articles/632164-how-can-i-change-my-pipeliner-account-password

 

 

 

 

 

 

 

 

 

%d bloggers like this: