Churchdown

IT and Security

October 2023

Recently one of our members had an extremely unpleasant experience while doing online shopping - this specifically involved a fake Marks and Spenser site.

What happened?
On clicking on the link to the site, the member was immediately sent a flashing message accompanied by a loud repetitive warning telling them not to turn their computer off, that their IP address was compromised and to call the number being displayed on their screen.

What to do?
Firstly, do not panic or take any immediate action. Panic and putting the victim under pressure are a hacker's best tools to make sure the intended victim is forced to take the actions the hacker wants them to take so the hacker can get control of the victim's computer. This is exactly what happened to the u3a member: a flashing message, a loud warning sound, an ominous message of something being compromised and a number to call.

As was probably mentioned by other u3a members, one course of action is to attempt to restart your computer through using Ctrl-Alt-Del. However, some instances of an attack, prevent this from happening by blocking the use of Ctrl-Alt-Del. If this is the case, simply switch your computer off. To do this, simply press and hold down the power key (around 5-7 seconds), to shut the computer down.
One point to note regarding desktop computers, try the power button method first. Switching or unplugging a computer from the power, especially older computers, could cause damage to disk drives with a resulting loss of data.

Prevention

  • Make sure you have anti-virus software installed on your computer and that it is always up to date.
  • Make sure your browser is also up to date.
  • Remember: If something looks to good to be true, it usually is too good to be true. Hackers work on our human need to find a bargain, get a quick return on our investments or get something quick.
  • Always check websites and any links carefully. Use your mouse to "hover" over a link (do not click, just point the cursor to the link). This displays the actual address in the bottom left of your browser window and shows where the link will go to. Language, grammar and spelling also can give clues to the legitimacy of a website.
  • If in doubt, leave the site, do not click on any links or call any number on the screen.
  • There is a lot more information on the Take Five and National Cyber Security Centre websites. It takes a bit of your time but, well worth the read!!

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

June 2023

For those who want to learn more about scams and to defeat them

The BBC have recently been screening a series of programs called Scam Interceptors hosted by Rav Wilding. In these programmes, they use ethical hacking methods (tracking and tracing the scammers using the same methods as they do to us). While the program follows the usual dramatic format, it does however, give a very good insight into how scammers go about trying to defraud us. The programme also gives hints and ideas of what to do when you believe the person may be a scammer, not only online but, when someone knocks on your door. Additional information about the relevant BBC Action Lines are also given at the end of the programmes for more information.

All past episodes are available on the iPlayer. Well worth the watch.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Recently, a number of Churchdown u3a members have received unexpected e-mails seeming to come from a group co-ordinator. On checking, they found the e-mails were not sent by who they purported to come from.

The little bit of information below is merely intended to help us stop and think. It is not a complete guide.

For more complete information you can go to the Take Five website or visit the National Cyber Security Centre.

The number of scams has been increasing and are becoming more sophisticated making it difficult to spot them with the result some of us unfortunately fall victim to them. The main aim is always to get you to send or pay money.

Scams
Scams can take a number of guises:

  • Unexpected e-mails from family and friends asking for a favour or expressing an urgent need for money - they even may have names you recognise.
  • Phone calls from large companies or banks telling you there is a problem with your account or some equipment (e.g. computers).
  • A knock on the door from someone offering you their services or even seeming to be the police.
What to do when you are in doubt

At all times, when you are in doubt, stop, take your time to think about what you are seeing, hearing or facing. Look at the information on the Take Five website. The National Cyber Security Centre gives a lot of additional information for those who want to know more.

E-mail:
Sometimes e-mails seem realistic. They play on your emotions, ties with family and friends or, try to scare you or even threatening some form of action. The e-mail content could be a give-away: bad grammar (like mine here!), spelling and language is usually a good indicator.
What to do? If you do not recognise the e-mail and have doubts, either just delete the e-mail, or find an alternative way to contact the person/organisation by phone not using any details given in the e-mail.

Phone calls:
Popular scams are ones saying they are from your bank or a company like Microsoft. End the call, wait for at least 15 minutes and contact the bank or company to check the legitimacy of the call. The reason for waiting 15 minutes is scammers can keep lines open and should you call the bank or company, you will just be reconnected to the scammers.

Face-to-face:
When answering a knock on the door, even if the person appears legitimate, ask for ID and take your time to check it. If the person is legitimate, they will not take offence. When still in doubt, call family or friends to help you.

The main rule is when in doubt to apply the Take Five rule of Stop, Challenge and Protect.