So, if you get [...]]]> I received this today and thought it was odd. Why should a company care whether some other company wants to buy a domain name like mine but with a different extension? Especially a company in China, a country not known for respecting copyrights and known for hacking computers to steal trade secrets?

So, if you get something like the following, just consign it to the trash bin!

Dear President & CEO,

This email is sent by CN Network Information Center LTD., which is a registration organization in China. Here we have something to confirm with you. We received a formal application on….

A client received an email that appeared to be from Google Adwords saying that her campaigns had been stopped and it had a link to follow so she could review the issues.

The link went to google-uki.com.  I could easily see that since I have my email program set [...]]]> If you advertise on Google, read this please.

A client received an email that appeared to be from Google Adwords saying that her campaigns had been stopped and it had a link to follow so she could review the issues.

The link went to google-uki.com.  I could easily see that since I have my email program set to display emails as plain text, not HTML.    I searched for the message of the subject and found this

http://www.google.com/support/forum/p/AdWords/thread?tid=55788c79f07b2959&hl=en

Read the last paragraph of the first posting, which is from a Google employee.  Great advice!

Please update your primary and backup payment information, even if you

plan to use the same information. Please follow the steps

below to update your payment information.

Your credit card will only be used and stored as part of re-enabling your

account.

We will not display or share [...]]]> These people didn’t even try to hide their URL which obviously doesn’t go to Google.

Please update your primary and backup payment information,
even if you

plan to use the same information. Please follow the steps

below to update your payment information.

Your credit card will only be used and stored as part of
re-enabling your

account.

We will not display or share it without your permission.

1. Log in to your account at http://www .googlcnm .com/Select/login

2. Enter your new or updated payment information.

3. Click ‘Save Changes’ when you are finished.

NEVER click a link in an email unless you are absolutely sure that the sender is legitimate and, even then, it’s better to type in the address you want to go to.  I get stuff from my bank and credit card company and never click the links in such emails.  Instead, I go to their sites via my “Favorites” bookmark which I know is safe.

And, just as a reminder, if no one ever responded to spam, like buying some service that sounds really great, we wouldn’t get spam.

A few months ago, they had an article on Stuxnet, a hacking type program [...]]]> You would think a magazine named Vanity Fair might be all about fashion and culture  and rich people – which it is, but it’s also one of the best resources I have for in-depth articles about Internet Security, or the lack thereof.

A few months ago, they had an article on Stuxnet, a hacking type program (trojan horse) that some government allegedly created to interfere with another country’s nuclear weapons program.  Fascinating.  And terrifying.

The most recent issue had another article about hacking and how all the major companies and government agencies and Google, etc. have all been hacked, with the implication that the culprit is the Chinese government and that cyber warfare has been with us for some time, but no one wants to admit it because shareholders might get upset.   Please – let us get upset.  We couldn’t get much more upset than we already are. 

Even scarier!

What I’ve taken away from all my reading is that:

1. If someone wants to hack your website, they will
2. The fact that they can is not a reason to make it easy for them.

I seriously doubt I or my clients need to worry about a government hacking our websites, but there is more than adequate evidence to support our worrying about everyday crooks hacking our website, bank/credit card accounts or home computers.  

So, make sure your passwords are difficult.  “Difficult” means that until you have typed a password 30 or 40 times, there’s no way in the world you could ever memorize it.  

Your name with the last character capitalized and then 3 digits from your zip code is not “difficult”.   

jdfFf21$1dj!!VCV    —Now that’s difficult.  (It’s also not my password for anything)

It’s your life.  And it’s your bank account.  And it’s your website.   You might not be able to make it hack-proof, but you can darn well make it really difficult for a hacker to get in. 

It’s just like protecting your home.  You can leave the front door open.  You can leave the front door closed but unlocked.  You can leave the front door closed and locked.  Or, you can lock the front door and have a deadbolt and a yappy dog and a motion detector security light and an alarm system.   Which one do you think the burglar is going to like?

Be safe.

Facebook is now building a database of photos based on those photos that have [...]]]> How important is your privacy? Some folks care; some don’t. If it’s important to you, I encourage you to check your privacy settings on every online service you use, including Facebook, Twitter, LinkedIn, Google and so forth.

Facebook is now building a database of photos based on those photos that have been tagged with someone’s name. They will even show you a bunch of photos that might be you. And the default Privacy setting is to allow that function. The whole thing creeps me out.

I really don’t need everyone in the world to know what I look like. …Not that the whole world – or even a tiny portion- really cares, but one has to draw the line somewhere and Facebook just stepped over mine.

Cute.  But how do you send emails encrypted?   Assuming that most people use Outlook, here’s an [...]]]> I read this in a LoJack for Laptops newsletter:

Cute.  But how do you send emails encrypted?   Assuming that most people use Outlook, here’s an article that explains the process.  Unlike some Microsoft tomes, this one is pretty readable.

http://office.microsoft.com/en-us/outlook-help/encrypt-e-mail-messages-HP001230536.aspx

Dear Valued Customer : We are unable to active  your account because we have upgraded our online service, we are sorry for that but you have to reactive your Chase [...]]]> Here’s one of the dumbest spams I’ve seen today–with the most glaring errors in red.  I didn’t bother to point out the grammatical errors.

Dear Valued Customer : We are unable to active  your account because we have upgraded our online service, we are sorry for that but you have to reactive your Chase online bank account to be able to send and recive money online.

Then, there was a link to “Chase” but when I looked at the source code, it was really going to: https://www.hipoparts.com.

Looked that up and it’s owned by Hipoparts and obviously has nothing to do with Chase.   (Do NOT go there just to see what the site is like. It probably downloads malware without your knowing.)

I just love how stupid spammers are.

I received an email that said it was from Bank of America, but since I always view the text version, I saw that the email was really from:

From: “Bank of [...]]]> An advantage to setting up your mail program, such as Outlook, to view text only, no HTML, is that you can more easily spot  fraudulent emails.

I received an email that said it was from Bank of America, but since I always view the text version, I saw that the email was really from:

From: “Bank of America”<webmaster@dut-leipzig.de>
Subject: [Norton AntiSpam]Alert: Account Resolution Required
Date: Mon, 14 Jun 2010 05:10:09 +0100

And I’m pretty sure that Bank of America’s webmaster isn’t in Germany (.de).  

NEVER ever click a link in an email from a financial institution or any company that has your financial or credit card information.   Always go to a website directly by typing the URL in the Address bar of your browser.