CERT mailing list archives
Alerts Users to Holiday Phishing Scams and Malware Campaigns
From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Mon, 24 Nov 2014 09:17:47 -0600
NCCIC / US-CERT National Cyber Awareness System: US-CERT Alerts Users to Holiday Phishing Scams and Malware Campaigns [ https://www.us-cert.gov/ncas/current-activity/2014/11/24/US-CERT-Alerts-Users-Holiday-Phishing-Scams-and-Malware-Campaigns ] 11/24/2014 09:19 AM EST Original release date: November 24, 2014 US-CERT reminds users to remain vigilant when browsing online this holiday season. E-cards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver infected attachments. Spoofed e-mail messages and fraudulent posts on social networking sites may request support for phony causes. To avoid seasonal campaigns that could result in security breaches, identity theft, or financial loss, US-CERT encourages users to take the following action: * Approach similar content with caution. Do not follow unsolicited links or download attachments from unknown sources. * Refer to our security Tips to learn more about Shopping Safely Online [ http://www.us-cert.gov/cas/tips/ST07-001.html ], Avoiding Social Engineering and Phishing Attacks [ http://www.us-cert.gov/cas/tips/ST04-014.html ], and Protecting Personal Internet-Enabled Devices [ http://www.us-cert.gov/ncas/tips/ST11-001 ]. * For information on charity scams, visit the Federal Trade Commision website [ http://For more information on charity scams, visit <ftc.gov/charityfraud>. ]. If you believe you are a victim of a Holiday Phishing scam or Malware campaign, consider the following actions: * File a complaint with the FBI’s Internet Crime Complaint Center (IC3) [ http://www.ic3.gov/default.aspx ]. * Report the attack to the police, and file a report with the Federal Trade Commission [ http://www.ftc.gov/ ]. * Contact your financial institution immediately and close any accounts that may have been compromised. Watch for any unexplainable charges to your account. * Immediately change any passwords you might have revealed. If you used the same password for multiple resources, make sure to change it for each account, and do not use that password in the future. ________________________________________________________________________ This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy & Use [ http://www.us-cert.gov/privacy/ ] policy. ________________________________________________________________________ OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ http://www.us-cert.gov/related-resources ] STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Current thread:
- Alerts Users to Holiday Phishing Scams and Malware Campaigns US-CERT (Nov 24)