Uniform Resource Locator | Social Media Blog

Posts Tagged ‘Uniform Resource Locator’

Phishers exploit Google Docs with Gmail de-activation alert

Published by pratyushkp on June 7th, 2011 - in Social, Technology

Image via Wikipedia

The Gmail database is not congested, and Google is not asking users to confirm that their accounts are still active.

But, it seems that scammers are hoping that you might believe that’s true, according to one of the latest phishing attacks that has been spammed across the net.

Here’s what a typical email looks like:

Subject: De-Activation Alert!

Message body:
Dear Gmail Account User,

Due to the congestion in our Gmail database, We will be shutting down all unused accounts before on the 30th of June. You will have to re-confirm your account as soon as possible to enable us upgrade your account before the deadline date.
To confirm your account kindly fill the account verification form.

After Following the instructions in the sheet, your account will not be interrupted and will continue as normal. Thanks for your attention to this request.
[LINK]

We apologize for any inconvenience.
Thanks & Regards,
Engineer.J.Williams
Upgrade Team Controller

As the link does point to a webpage hosted somewhere on Google.com, some computer users may believe that the form they are being directed to must be genuine. However, it is actually pointing to a spreadsheet on Google Docs – pages which can be created by any Tom, Dick or Harry.

And, in this case, a “Google account verification form” is attempting to trick you into handing over personal information – such as your name, full date of birth and password.

The eagle-eyed might spot the spelling mistake in the form (“confrim” rather than “confirm”) but you can hardly rely on the phishers making errors like that as a way of protecting yourself.

Why are the scammers using Google Docs to host their phishing pages?

Well, they hope that potential victims will believe it’s a genuine Google resource as it is hosted at an authentic Google URL, and that rudimentary security software won’t feel comfortable blocking the entire google.com domain. (Of course, good security software is smarter than this).

Users shouldn’t forget that a site like Gmail knows if you have been using it recently or not – because every time you log in or send an email a record is kept somewhere inside the Googleplex.

Not that Google is likely to run out of any storage space or plan to shut down any dormant email accounts any time soon by my reckoning..

Source :- http://nakedsecurity.sophos.com

Phishers exploit Google Docs with Gmail de-activation alert (nakedsecurity.sophos.com)
Google Docs: A Phisher’s Best Friend? (searchenginejournal.com)
How to stop your Gmail account being hacked (blogoholic.in)
Googles Docs Found Hosting Phishing Sites & Other Questionable Forms (readwriteweb.com)
How I Learned to Live Google-free (spectrum.ieee.org)
Phishing Attempt Targets Google Accounts of U.S. Officials (searchenginejournal.com)

Tags: gmail, google, Google Account, google docs, Googleplex, Phishing, Tom Dick or Harry (song), Uniform Resource Locator, User (computing)

No Comments »

Facebook phishing: Can you spot the difference?

Published by pratyushkp on June 4th, 2011 - in Social, Technology

Image via CrunchBase

Original Post From Sophos . Author -Graham Cluley

We’ve seen some messages being spread on Facebook in the last day or so, claiming to link to a video of Barack Obama. Most of them appear to have been cleaned up by now (presumably by Facebook Security) but there are still some remnants lying around.

Here’s a typical message:

hello have you seen this recent video on the president? What is he doing in it?! LOL

What's the president doing in this video. OMG LOL!

Some versions of the message give away that the link will ultimately take you to a website ending with .co.cc. Almost all of the links we see in SophosLabs which end with “.co.cc” contain “bad stuff”. Perhaps it would be simplest if everyone simply avoided .co.cc links (and close cousins such as .cz.cc) as they are tainted by association.

And what sort of name is hzjqorbbmdnf anyway?

Regardless of the dodgy-looking nature of the link – what happens if you click on it?

Well, you will be redirected to what appears on first glance to be a Facebook login page. However, in reality, it’s a phishing page designed to steal email addresses and passwords from users who are so keen to see a video of their president that they’ll type in their credentials without thinking.

Here’s the fake login page:

And here’s Facebook’s genuine login page:

Did you spot all the differences?

Here’s the ones I found – well done if you spotted even more!

Starting at the very top -

1. The genuine login page calls itself “Log in” in its title bar. Amusingly, the real Facebook is inconsistent as to whether you “Log in” or “Login” to Facebook as later in the page it refers to “Facebook Login”. It’s odd to see a phishing page be more professional than the real thing.

2. That’s clearly not Facebook’s genuine URL. Interestingly, other pages on the domain contain clickjacking scams.

3. The real page gives me more language options – including UK English and Welsh which aren’t available on the phishing page. It’s possible that the real Facebook is doing some GEO-IP lookups and determined that I’m visiting from the UK – maybe users in other countries don’t see those options.

4. The phishers have the copyright date incorrect, believing it to be 2010 rather than 2011.

5. There are many more link options made available to me in the footer of the real login page, including “Badges”, “Mobile”, “People”, etc.

There’s bound to be more differences than the ones I spotted though. So, leave a comment below if you find any more.

If you’re on Facebook and want to learn more about spam, malware, scams and other threats, you should join the Sophos Facebook page where we have a thriving community of over 80,000 people.

Update: Wow! I can always rely on the eagle-eyed Naked Security readers who spotted some other differences.

How to stop your Gmail account being hacked (blogoholic.in)
Phishing: just the FAQs (guardian.co.uk)
LinkedIn Phish – So Easy to Avoid (eset.com)
One Phish, Two Phish, Classic Phish, SPEAR Phish?! (symantec.com)
Here’s The Fake Gmail Site Chinese Hackers Used To Steal U.S., Activist Data (blogs.forbes.com)
Avoiding Facebook phishing (commtouch.com)
Phishing Attempt Targets Google Accounts of U.S. Officials | Search Engine Journal (seome.me)

Tags: Barack Obama, facebook, gmail, google, Graham Cluley, LinkedIn, Login, Phish, Sophos, Uniform Resource Locator

No Comments »

35 million Google profiles were already exposed on the internet

Published by pratyushkp on June 2nd, 2011 - in Social, Technology

Image by ginatrapani via Flickr

Do you have a Google Profile? Did you find yourself getting cobbywobbles when you read the headlines in the security press?

Here’s just a handful of the many headlines that have appeared in the last few days:

“35 Million Google Profiles Captured In Database”, Information Week

“35m Google Profiles dumped into private database?”, The Register

“Entire Google Profile database acquired by a user”, ARN

Matthijs R. Koot, a PhD student at the University of Amsterdam, was able to create a database of 35 million Google Profiles, scooping up real names, email addresses, biographical information, Twitter feeds, links to Picasa photos, etc.

Sound scary to you? If so, maybe you’re one of those people who has populated your Google Profile with a large amount of private information that you wouldn’t like to fall into the hands of ne’er-do-wells.

At first glance the headlines might appear worrying. But there’s one important thing you need to know.

All of this information was already available to anyone on the internet.

You may remember that last year security researcher Ron Bowes conducted a similar experiment with Facebook, creating a database of 100 million Facebook users who had left their profiles open for anybody to view.

Koot has done something similar – but with Google Profiles. He wrote a relatively simple script (which he published on the net for others to try out) that harvests Google Profile data – and in the process, revealed that many users were potentially being careless with their personal information.

So, Koot hasn’t actually exposed any new information. He’s just written a script to collect together data which was already out there.

Google Profile allows you to choose the nature of the url to your profile. You can either have a random-looking number, or the username they use for Google Gmail.

For instance, Matthijs R. Koot has the option of using:

https://profiles.google.com/115572197788225218471

https://profiles.google.com/mrkoot

However, Google Profile users are explicitly warned that if they choose to customise their URL with their GMail username, they will be making their email address publicly discoverable.

Koot says that he conducted the test to expose how careless people were being with Google Profile, and in particular that they were exposing their email addresses.

He discovered that approximately 40% of the 35 million Google Profiles he accessed exposed the owner’s username and hence their @gmail.com address. That’s 15 million exposed email addresses.

There’s an obvious potential for spear phishing and malware campaigns when you have access to such a hoard of legitimate email addresses. Especially when they can be combined with other personal information shared on your Google Profile.

Google Profile users can adjust their settings to not allow their profiles to be indexed by search engines. But that’s not really fixing the main problem.

Wouldn’t it be better to choose not to post personal information in the first place?

One problem, of course, is that you may not actually realise that you already have a Google Profile.

After all, Google freely admits that “if you’ve been writing reviews on Google Maps, posting buzz on Google Buzz, creating articles on Google Knol, sharing Google Reader items, or adding books to your Google Book Search library, you may already have a profile.”

Maybe now is the time to check if you have a Google Profile, and – if you do – that you’re comfortable with the information you’re sharing through it.

Ultimately, though, remember the golden rule. If you don’t want a piece of information to fall into the hands of hackers/your boss/your mother-in-law then maybe it’s best not to post it on the internet in the first place.

Source :- http://nakedsecurity.sophos.com/

35 million Google profiles were *already* exposed on the net (nakedsecurity.sophos.com)
Google Profiles: Is Easy Aggregation An Invasion Of Privacy? (blogs.forbes.com)
35 Million Google Profiles Captured In Database (informationweek.com)
35m Google Profiles dumped into private database (go.theregister.com)
35 Million Google Profiles Collected (tech.slashdot.org)
Infosec Island: Researcher Nabs Details from 35 Million Google Profiles (boxofmeat.net)
Google Business Profiles? (googlesystem.blogspot.com)
Delete your [Google.com] profile (thebloggingpath.com)

Tags: Doctor of Philosophy, Email address, facebook, google, Google Profile, InformationWeek, Knol, Uniform Resource Locator, University of Amsterdam

No Comments »

LinkedIn To Launch Job Application Button

Published by pratyushkp on June 2nd, 2011 - in Social, Technology

Image representing LinkedIn as depicted in Cru...

Image via CrunchBase

LinkedIn will launch a button for employers’ websites called “Apply With LinkedIn” that allows job candidates to submit their LinkedIn profiles as resumes, according to a report.

Twitter and Google have both launched new buttons this week, and now it seems LinkedIn will also introduce a new way for third-party sites to integrate its services.

A “source briefed on the feature” told GigaOm that the new feature, which will be displayed alongside job descriptions on partner sites, will launch later this month.

Aside from making it easier for candidates to apply for jobs, the plugin uses applicants’ data to automatically sort candidates for the employer. If a company wants more than a LinkedIn profile to vet candidates, it can use additional questions from a template (i.e. Are you willing to relocate?), add customized questions or request a cover letter. Submissions can be sent to an email address, a URL or JavaScript callback.

Employers are an important demographic for the newly public company. As GigaOm points out, hiring solutions are LinkedIn’s highest earner, generating 43% of the company’s revenue.

Although other social networks can easily compete for ad dollars, LinkedIn has long dominated the professional corner of social media. Integrating itself further within the jobs space is a smart move.

Source :- http://mashable.com

LinkedIn To Launch Job Application Button (mashable.com)
Exclusive: LinkedIn to Launch Job Application Tool (gigaom.com)
New LinkedIn button hooks up to job app tool (news.cnet.com)
LinkedIn Launches Personalised News Aggregator (pratyushkp.wordpress.com)
Why the Button War? Because Content is Social Currency [10 Links] (newcommbiz.com)
LinkedIn Will Soon Let You Apply To Jobs With Your Profile (LNKD) (businessinsider.com)

Tags: Candidate, Employment, google, JavaScript, LinkedIn, Om Malik, twitter, Uniform Resource Locator

1 Comment »

Sharing Knowledge & Information

Posts Tagged ‘Uniform Resource Locator’

Click to Help

Archive

Last 7 Post

Twitter Follow

Social Media Blog on Facebook

Networked Blog

Sharing Knowledge & Information

Posts Tagged ‘Uniform Resource Locator’

Phishers exploit Google Docs with Gmail de-activation alert

Related articles

Facebook phishing: Can you spot the difference?

Related articles

35 million Google profiles were *already* exposed on the internet

Related articles

LinkedIn To Launch Job Application Button

Related articles

Click to Help

Archive

Last 7 Post

Twitter Follow

Social Media Blog on Facebook

Networked Blog

Cloud

35 million Google profiles were already exposed on the internet