Ahhh, the Classics!

Hello fellow IT enthusiasts and Cybereal clients!  Sorry for the lack of updates on this blog and to the website in general.  I will try to make these updates a bit more frequent than once every 4 years or so…

Having said that, what has spurred me into action is the recent increase in spam and phishing as the result of a new virus and attack vector that is obtaining e-mail passwords.  It is well known that there are dozens of tools available to recovered an email password that has been stored in Outlook, and it seems that a new virus or attack may be utilizing such a tool to obtain users email passwords.  Once the password has been obtained, they setup a simple POP/SMTP account and send more viruses, spam, and phishing emails from that account, often as replies to existing emails you may have already received.

This method bypasses DMARC/SPF/DKIM and is very effective.  Please be extra diligent regarding warning from your virus software or redirects to websites you may not have intended to visit.  Always contact your IT support person if you have even the slightest concern that your account or PC may have been compromised.  Firewalls, antivirus, and monitoring can go a long way to protect your network and data, but good old fashioned diligence from the end user is still one of the best methods!

That brings me to this;  I just received the below email to a temp account of mine..  I was almost nostalgic over the simplicity of this phish..  The good old days of a bygone era!  For your enjoyment:

My Compliments,

My name is Mr. Peter Adom, a politician and a previous member of Ghana’s executive committee on contract awards.

My purpose in connecting you is to crave your indulgence in assisting me to secure funds abroad. That was i kept to help me finance my senatorial elections campaign with the National Democratic Congress (NDC) on December 2016. Unfortunately, I lost the election.

But, I was able to deposit some kickback money from award of contracts to Chinese and Malaysian companies few years ago in a security vault in Ghana pending my finding of a trustworthy person to move out the funds from Ghana to an oversea bank account for business investment.

The need to contact you arose when the present elected government vowed to crack down on past government functionaries of the National Democratic Congress (NDC) which i am a member and tried to trace all the funds during our tenure in the office from the year 2008 to 2016. If they succeed in tracing this fund to me, they will seize it.

I wish to relocate this fund to a foreigner’s name to avoid any trace. All I need from you is an assurance that you can handle the amount involved (US$19,500,000) comfortably and that I can also trust you.

I will need the following information from you for onward execution of the aforementioned project.

1. Your full name:…………………….
2. Your Address:…………………. ….
3. Company name: …………………….
4. Position in Company:………………
5. Age:…………………….. …………
6. Nationality:……………… ………..
7. Telephone …………………………
8. Cell…………………….. ………….
9. Country of residence:…………….

Rest assured that there is no risk involved. Please inform me of your willingness to assist and co-operate with me, so that I can send you full details of this transaction.

Yours faithfully,
Mr. Peter Adom.