Dodgy phishing

Forum for admin topics, member introductions and general non-hifi chitchat.
User avatar
Fretless
Posts: 9290
Joined: Wed Nov 12, 2014 12:15 pm
Location: Somewhere in Holland
Has thanked: 1487 times
Been thanked: 2280 times
Netherlands

Dodgy phishing

Unread post by Fretless »

My wife's PC has been receiving emails In which her password for some webshop accounts is named plus an attached PDF file.

Accounts are getting new passwords and those mails are immediately deleted without being opened.

Anyone else seen this?

Upstairs:
Vinyl
Pro-Ject 1.2 + Grado Sig Jr + Cambridge Alva Duo
DigiVolumio PC + Kiss DP-500 + Sabaj A20d
NVA: P50sa - Cube2 - SSP - LS6+ Sabaj A10a (x2)
Downstairs:
Vinyl
Logic DM101 + Syrinx LE1 + Grado Sig MCX
DigiDenafrips Ares II + Volumio PC + Cambridge CXC
NVA: P50 - BMU+ Aiyima A07 MAX (x2) + Arcam One
HP: HifiBerry Digi+ PRO + Sabaj A10d
Office:
Allo DigiOne SIG + SMSL M300se + Douk G4 (x2)
Mission 760 + Monolith THX AAA 887
Headphones: German Maestro & AudioQuest

User avatar
George Hincapie
Posts: 321
Joined: Wed Aug 21, 2019 7:46 pm
Location: Buckinghamshire, England
Has thanked: 252 times
Been thanked: 176 times
Great Britain

Re: Dodgy phishing

Unread post by George Hincapie »

I suggest checking your email accounts against known breach lists to confirm compromise. It should also go without saying that one should never open an attachment from an unknown party.
Headphone Amplification
Linear Tube Audio MZ3

Headphones
HifiMan Sundara • HiFiMan Arya Stealth Edition • ZMF Vérité Closed Ltd (Stabilised) • ZMF Atrium Open Ltd (Hawaiian Koa) • ZMF Aeolus Ltd (Mexican Bocote)

Digital
Audial S5 • Pi2AES 2.0

Cables
Forza Audio Works • Blue Jeans • DH Labs • Periapt

Power
Farad • Tomanek

Sources
Roon • Tidal • Qobuz

User avatar
slinger
Posts: 9233
Joined: Wed Aug 22, 2012 4:30 pm
Location: The Garden of England
Has thanked: 4567 times
Been thanked: 3118 times
EUROPEAN_UNION

Re: Dodgy phishing

Unread post by slinger »

If any of the passwords are current, change them immediately. I've had a few with outdated passwords in, so somebody has obviously bought a list on the dark web from a site that was hacked some time ago. I now use LastPass which generates, saves, and allows you to organise, new, complex, passwords.
Amps - NVA P50, AP30, A40, Stanislav Palo Tube Headphone Amp BB 85
Speakers - Monitor Audio Silver RX2
Cables - NVA LS1+LS3, SSC, Gotham S/PDIF, IBRA Optical
Digital - NAD C516BEE, SONY ST-SDB900 DAB TUNER, TEAC UD-H01 DAC
Analogue - Pro-Ject Debut Carbon Esprit SB, Graham Slee Gram Amp 2 Phono
Cans - Grado SR80, ATH-M50X

User avatar
slinger
Posts: 9233
Joined: Wed Aug 22, 2012 4:30 pm
Location: The Garden of England
Has thanked: 4567 times
Been thanked: 3118 times
EUROPEAN_UNION

Re: Dodgy phishing

Unread post by slinger »

You can check to see if you've been "pwned" (Check if you have an account that has been compromised in a data breach) by entering your email address here...

https://haveibeenpwned.com/
Amps - NVA P50, AP30, A40, Stanislav Palo Tube Headphone Amp BB 85
Speakers - Monitor Audio Silver RX2
Cables - NVA LS1+LS3, SSC, Gotham S/PDIF, IBRA Optical
Digital - NAD C516BEE, SONY ST-SDB900 DAB TUNER, TEAC UD-H01 DAC
Analogue - Pro-Ject Debut Carbon Esprit SB, Graham Slee Gram Amp 2 Phono
Cans - Grado SR80, ATH-M50X

User avatar
Fretless
Posts: 9290
Joined: Wed Nov 12, 2014 12:15 pm
Location: Somewhere in Holland
Has thanked: 1487 times
Been thanked: 2280 times
Netherlands

Re: Dodgy phishing

Unread post by Fretless »

Ta muchly gentlemen.

Upstairs:
Vinyl
Pro-Ject 1.2 + Grado Sig Jr + Cambridge Alva Duo
DigiVolumio PC + Kiss DP-500 + Sabaj A20d
NVA: P50sa - Cube2 - SSP - LS6+ Sabaj A10a (x2)
Downstairs:
Vinyl
Logic DM101 + Syrinx LE1 + Grado Sig MCX
DigiDenafrips Ares II + Volumio PC + Cambridge CXC
NVA: P50 - BMU+ Aiyima A07 MAX (x2) + Arcam One
HP: HifiBerry Digi+ PRO + Sabaj A10d
Office:
Allo DigiOne SIG + SMSL M300se + Douk G4 (x2)
Mission 760 + Monolith THX AAA 887
Headphones: German Maestro & AudioQuest

User avatar
George Hincapie
Posts: 321
Joined: Wed Aug 21, 2019 7:46 pm
Location: Buckinghamshire, England
Has thanked: 252 times
Been thanked: 176 times
Great Britain

Re: Dodgy phishing

Unread post by George Hincapie »

Second the LastPass suggestion. I use it daily; superb.
Headphone Amplification
Linear Tube Audio MZ3

Headphones
HifiMan Sundara • HiFiMan Arya Stealth Edition • ZMF Vérité Closed Ltd (Stabilised) • ZMF Atrium Open Ltd (Hawaiian Koa) • ZMF Aeolus Ltd (Mexican Bocote)

Digital
Audial S5 • Pi2AES 2.0

Cables
Forza Audio Works • Blue Jeans • DH Labs • Periapt

Power
Farad • Tomanek

Sources
Roon • Tidal • Qobuz

User avatar
Fretless
Posts: 9290
Joined: Wed Nov 12, 2014 12:15 pm
Location: Somewhere in Holland
Has thanked: 1487 times
Been thanked: 2280 times
Netherlands

Re: Dodgy phishing

Unread post by Fretless »

Will try. Merci.

Upstairs:
Vinyl
Pro-Ject 1.2 + Grado Sig Jr + Cambridge Alva Duo
DigiVolumio PC + Kiss DP-500 + Sabaj A20d
NVA: P50sa - Cube2 - SSP - LS6+ Sabaj A10a (x2)
Downstairs:
Vinyl
Logic DM101 + Syrinx LE1 + Grado Sig MCX
DigiDenafrips Ares II + Volumio PC + Cambridge CXC
NVA: P50 - BMU+ Aiyima A07 MAX (x2) + Arcam One
HP: HifiBerry Digi+ PRO + Sabaj A10d
Office:
Allo DigiOne SIG + SMSL M300se + Douk G4 (x2)
Mission 760 + Monolith THX AAA 887
Headphones: German Maestro & AudioQuest

User avatar
Classicrock
Posts: 2316
Joined: Sun Apr 07, 2013 12:51 pm
Location: Bristol
Has thanked: 3 times
Been thanked: 15 times
Great Britain

Re: Dodgy phishing

Unread post by Classicrock »

I've just found AOS is being blocked by Chrome / Open DNS due to a phishing threat (and it won't let me override it) :lol:
I Know What I like (In Your Wardrobe)

User avatar
savvypaul
Posts: 8635
Joined: Tue Oct 11, 2016 7:14 pm
Location: Durham
Has thanked: 1657 times
Been thanked: 2978 times
Contact:
Great Britain

Re: Dodgy phishing

Unread post by savvypaul »

I've not looked in there for ages. Is NVA / HFS stll banned?
I am in the hi-fi trade
Status: Manufacturer
Company Name: NVA Hi-Fi
https://nvahifi.co.uk/

Berty bass
Posts: 362
Joined: Tue Nov 21, 2017 9:54 pm
Has thanked: 57 times
Been thanked: 156 times
Great Britain

Re: Dodgy phishing

Unread post by Berty bass »

I've had something similar from a contact who quotes a password of mine (one I've associated with fairly low impact sites like fountain pens forums) then tells me they have footage of me 'watching' pornographic material, captured along with the offending material itself, and all my contacts to whom they intend to circulate this 'video nasty' if I don't pay up. Poor English, very low security password and the fact my PC doesn't have a webcam - as well as the fact my porn viewing days are pretty much consigned to the dustbin of history :grin: - led me to conclude this was a scam. Bless 'em for trying though. :)

Post Reply