[ILLUSTRATIONS] By Ron Benvenisti. Adding to the list of the ingenious methods criminals use to obtain information and steal your identity is this latest example of social engineering derring-doo. I submit for your perusal: the phone subscriber trap.
It goes like this. You get an email that tells you that your wireless bill is ready for review. In this case it is AT&T. After all there are 5.1 million total subscribers (as of Q1 2012); that’s lots of sucker-fish in the barrel. If less than 1% fall for this scam that’s still a nice 5 figure catch that could be worth 5 figures each. You get the idea. Just common sense market return statistics.
Let’s look at this brilliant piece of social engineering. It looks totally like the real AT&T notification email, down to the last detail. No tell-tale typos, corporate colors are spot-on. A perfect clone. So where’s the bait? $1927.72 worth of charges. If you happen to be in that rare minority of 5.1 million subscribers you’ll most likely get that first rush of panic followed by a determined urgency to fins out, “Wha Happened? $1927.72???? How is that possible???” But slow down because in your rush to click and get to the bottom of this you will be transported to a beauty products site in the murky depths of Indonesia that’s been hacked to look exactly like AT&T just to steal your information. And you’ll be getting more than a manicure, I assure you.
Let’s look at the pictures I grabbed. Figure 1 shows the purported AT&T email as it shows up in your in box. A truly fine specimen of phishing scam artwork. Figure 2 shows the “get their attention” factor with an inflated bill and hope the victim will click to find out what’s going on here. Now look closely at Figure 2 and see that the highlighted link has absolutely zero to do with AT&T, but a parasite hacker feeding off the real estate of poor old “lisdashop” in Jakarta to run the ID theft scam operation from anywhere in the world. Figure 3 & 4 show you that clicking any of the links will take you to the same criminals link trap.
Now let’s look at Figure 5. It’s a Google entry that shows “lisdashop” was hacked by “Jnon Hacker” of the “Saudi Arabia Hackers”. In fact the Google page links to the hacked version of the site!!! I warn you if you will click there you will put your computer at risk and see the hacker’s disturbingly macabre “graffiti”. Figure 6 is a record of some of the known exploits by this slippery joker. He’s running a global enterprise! An enterprise that costs innocent victims 114 billion dollars a year.
So there you have it, delivered right to your in box. If you are one of 5.1 million AT&T subscribers and get this email what would you do? Acting in haste will take you to an online beauty shop in Jakarta where you will get scalped by an Arab hacker who makes fools out of so called international cyber-crime professionals who don’t have to get scalped because they’re already pulling their hair out trying to cat and mouse guys like “Jnon Hacker”. Sort of like Tom & Jerry, make that Itchy and Scratchy if you know what I mean.
My advice. Stay safe. Even if it looks legit don’t open it and certainly don’t click anywhere in it, on it or even near it. Call your provider with the number on your bill and find out what’s going on before it’s going, going, gone.
so how can I fight the charges in case I get the email?
I DO NOT pay any bills online. That’s what the banks and snail mail are for. I am signed up for PAPER BILLS sent to me through the snail mail system. I don’t care how “convenient” email billing is – I write checks and pay postage.
# 1 – you completely missed the point of this article
The charges are NOT real. There is nothing to fight. This is a fake email sent by someone who is NOT AT&T just trying to get your credit card information
Got an email very recently from [email protected] with order update info. I knew I didn’t order anything but I figured my spouse did. When I clicked to open it, my anti virus blocked it saying it was a threat. Only after did I realize that that e-mail is not connected to my amazon account. Be careful for that one too!
#1. If I am reading correctly you don’t have to fight the charges as they aren’t real.
Yup – got a few emails from Amazon recently regarding my “order cancellation”, when I didn’t cancel any order… Very tempting to open. Watch out for this one…
yep, over the last week I got 10+ cancellation emails from Amazon with an attached link…
The email itself says it came from Amazon itself so it looks pretty real. When I “right click” the link and checked the properties it was clear that the link did not go to Amazon.
There is a way (not legally) to make an email appear as it came from any email address you choose.
Fake Amazon emails have been circulating for the past few weeks. Scary! If you’re a stickler for grammar you’ll realize that an email from AT&T probably would not begin a sentence with “or,” nor would they put a period at the end of a fragment that lists a service option. Either way, beware! These hackers are truly out to get the unknowing folks.
I do pay bills on line but, I insist on getting paper bills in the mail and if I do get an e mail from a bank, I go to their website and check what’s going on that way.
uh oh, i opened the cancel one from amazon, now what?
i have yahoo, and once in a while i check my spam folder. there are dozens of emails from ups, fedex, and more, claiming they have a delivery for me and i must click here, etc. points are: if it seems suspicious, it probably is, and also, if you have a good email service, these spams should be filtered out, i am thrilled with yahoo, even if it is 2012 and everyone’s using gmail.
@10
Immediately go and change your Amazon password. Delete payment methods, cancel all orders if necessary. Check your card and bank statements. Notify them of any inappropriate charges.
You also need to do a deep malware scan and get new cards.
most of the people are on the cell 24/7 in this town , whats so surprising about a 2,000$ phone bill..!!!!!
I get fake paypal emails all the time.
Opening the email is not a problem…
Did you click the link in the email?
If you did…. you may have a problem
I just go 2 de library and open these scams over there so n/t happens cause they have the equipment that protects them from these viruses
if enough poeple click on it for sure ATT will know that they were scam so for sure they will refund it
ATT doesn’t have to refund anything, ATT doesn’t get the money from the scam a hacker gets your information to take your money. So no refunds.
@17-100% wrong information.