There's a new email BOGO phishing scam that will advise that recipient that a purchase has been made for $500, and it must be confirmed. The idea is to get a user to call in and give the credit card number. They will then say they've reversed the charge, but in reality, you've given them your credit card number and three-digit code. Then they can charge on it.
Anne wants to know if her cellphone has been hacked. She got a Gmail that she renewed a subscription for over $1400. Leo says to check her credit card to make sure she wasn't charged. And NEVER reply. They're trying to get to her response so they can socially engineer personal data from her. And if she responds, they know her account is legit. It's called a phishing scam. Has her cellphone been hacked? Leo says no. It's just SPAM.
Larry keeps getting notifications about a video he posted on Facebook. People are complaining that they can't open it. Leo says that it's a phishing scam and they likely got his email address on a mailing list, then hacked into his Facebook page. Larry changed his password. But it happened again a day later. Could his LastPass password be compromised?
Rio James recently got an email thanking him for payment and comes with a statement attached. But he never made such a payment. He knew right away that it was a phishing scam. Leo agrees, saying that the idea is to get him to open an attached PDF File that has been corrupted with a worm or virus. In many cases, it's harmless if the software and Windows are updated. If not, then it can take over a machine. The whole idea is to play on fear and greed, even curiosity, and get him to click on the link without thinking. So RJ was wise not to open it.
Daisy is a teacher, who is now doing distance learning with her kids and she's having issues logging into her district Gmail account. She gets a google sign-in page that opens when she goes to Google Hangouts. She now can't get into her account. Leo suspects that is a phony phishing scam that has gotten her credentials and then locked her out. Leo suggests contacting the district IT office and have the password reset and 2-factor authentication set up so that it won't happen again.
Roger got an invoice in email and saw that it had a lot of similar details as his. Leo says chances are it came as part of a typo that misaddressed it. Nothing to really worry about. Leo gets wrong emails all the time. But there is a scam out there where people will send invoices, hoping that someone will automatically pay the invoice without paying attention. But it's easy to verify by looking at the email. Where was it actually addressed to?
William's computer was hacked and he knows who did it. He was the victim of a phishing scam that nabbed him after he clicked on an email link. Leo says William should change all his passwords, wipe his hard drive and start over. But call the police first. If you can prove the information, call the police and then bring the computer to them.
Bernie is having issues logging into Facebook. He gets a popup that says he needs to give them some information, including a credit card number. Leo says that's definitely not Facebook. Facebook will ask for identification from time to time, especially if your account has been compromised, or you've lost access to your account, but Leo says to never do that with a credit card. Use other options like a utility bill. Here's some information - https://www.facebook.com/help/contact/183000765122339. Leo says it's likely a scam.
Robert got bit by a phishing scam about being a workshop presenter. He clicked on a link to download an attachment and nothing happened. He realized what he had done and disconnected his desktop. Now he thinks he needs to reinstall? Leo says Nuke from orbit. Do not install from in-place. He should want to back up data, wipe the hard drive, and then reinstall Windows from a known, good source. But he should make sure to know if he actually has malware. If he has a WInMail.dat file attachment, that's from Microsoft and older Outlooks use it.
Jim got an email from Google that stated he had put in a request to terminate his account, which is something he never asked for. Leo suspects this is a phishing attempt. He should hover over the URL for the link they offer to contact them and see if it's legit. Chances are, it isn't.