Exabytes: How to spot A Bad Guy in Digital World

Every day, you enter the Digital world called ‘Internet’ and probably meet or rub shoulders with a few cyber bad guys.

As a server administrator that manages all your incoming email traffic, we do our best to keep your Inbox away from those bad guys.

Our post-office refers to major Spam databases and custom Anti Spam mechanism to block these bad guys, but potentially-malicious emails somehow manage to slip through our filters with a very standard and common content in business communication.

Here’s how to spot them

A - Attachment Scam
Direct Damage: *
Future Damage: *****

According to a published study, a gift-wrapped item influences the recipient to have a more favorable attitude towards opening the attachment.

When a recipient receives an email (from an unknown sender) that contains attachments such as PDF, Docs, etc, it can be an ill-intentioned email that baits the recipient to open it and download Malware without his or her awareness.

- Make sure you trust the origin of the attachment, give the sender a call if possible.
- Scan with your updated Antivirus program if you really wish to open the attachment.

B - Bitcoin Blackmail Scam
Direct Damage: *****
Future Damage: *

As a summary, strangers threaten you in exchange for bitcoins using a template warning.

Read this article.

C - Checkup Scam
Direct Damage: *
Future Damage: ****

Scammers attempt to send you an email that requests your confirmation on certain registration, login verification or system false alert such as mailbox full.
It baits victims to click on a link to download certain malware or key in their details, and plan for a second attack.

- If you did not register, ignore it.
- Check with your email service provider or vendor on the false alert.

D - Domain Scam
Direct Damage: ****
Future Damage: *

When you register a new domain, your personal information is published to the WHOIS directory, which is available to anyone. 

Scammers collect these details and try to scam the domain owner with content such as domain expiry date or SEO submission that requires you to make additional payment.

- Contact your registrar or the party that helps you register the domain immediately without clicking on any links inside the email.

E - E-Payment Scam
Direct Damage: *****
Future Damage: *

When your email account is compromised, scammers not only access your mailbox to read all your current emails, they will also create forwarder / filtering rules to monitor your email communication with your clients silently.

They wait patiently until the moment when you discuss payment details with your clients, and that’s the moment they jump into the email exchange (pretending they’re you) and offer the your client fraud bank account details. A fraud case takes place when the client deposits the payment to the scammer’s bank account. 

- Do not access your email account using unsecured network/devices.
- Change your email login regularly with a strong password.
- Access control panel and double check if there is any unknown forwarder/filtering rules.
- Call your clients directly to clarify the payment.

Evil comes in different forms!

If you're worried you might communicate with a bad guy who does not fit into the above categories, please feel free to contact our team at support@exabytes.my and provide us with the full email header:

Best regards,

Support Team
Technical Support Department