[Lex Computer & Tech Group/LCTG] Phishing Email IQ Test

Robert Primak bobprimak at yahoo.com
Sat Jan 29 02:46:09 PST 2022 

 Install Malwarebytes Browser Guard on Safari Browser

https://support.malwarebytes.com/hc/en-us/articles/4413290281747-Install-Malwarebytes-Browser-Guard-on-Safari-Browser

 They do cover the latest Safari on the latest Mac OS. 
I never use browser guards, nor do I pay for premium third party antivirus. I haven't been infected in over five years, and never under Windows 10. 
By the way, phones can be phished, and smished (SMS text phished).  So Android and iOS are fair game for discussion as well. Chromebook is based on the Chrome Browser, so would need similar protections to Chrome. 
Malwarebytes Browser Guard for Chrome (also Chromebook and Android) is available as an extension from the Google Web Store:
https://chrome.google.com/webstore/detail/malwarebytes-browser-guar/ihcjicgdanjaechkgeegckofjjedodee?hl=en 
It appears to be available as a stand-alone extension, and appears to be free to install. I haven't tried it, so don't know if there are "in-app" paid gotchas. 
Malwarebytes for Android:
https://www.malwarebytes.com/android 

Malwarebytes for iOS:
https://www.malwarebytes.com/ios 


-- Bob Primak 


    On Friday, January 28, 2022, 09:19:31 AM EST, Drew King <dking65 at kingconsulting.us> wrote:  
 
  
Tony,
 
Good point!
 
Mac computers are susceptible to phishing attacks just like Windows computers.
 
Fortunately, there is Malwarebytes for Mac software. The real-time malware/phishing protection is not free. You need a subscription to Premium just like Windows. I pay for it. Worth every penny.
 
Malwarebytes also has a browser guard for the Mac. I don't have a Mac so there's no way for me to know which web browsers Malwarebytes supports on that platform. I would try loading either Firefox or Chrome on a Mac and then go into settings and then extensions and search for the Malwarebytes browser guard extension. It's Free!
 
 
Let us know if there are Malwarebytes browser guards for Firefox/Chrome/Safari ...
 
These are the features of the Mac versions of Malwarebytes. The browser guard is free!
 
 

 
  Drew.
  
  
  On 1/28/2022 8:28 AM, Tony wrote:
  
 

Has the phishing discussion been mostly about PCs? If yes, could you also comment about Apple products?
 Tony
 
======
 
 On 1/28/22 1:40 AM, Drew King wrote:
  
 
What I find curious is that every link I see when searching for this type of malware is they are all from 2017!
 
Nothing recent.
 
 
One of the vulnerabilities was specifically inside PowerPoint presentations, and another affected Word.
 
I imagine that if your computer is properly protected, hovering in Chrome/Firefox will not present any danger today. Thunderbird email is likely safe for hovering because of the way the software is written. It seems this bug is more about Microsoft Office suite.
 
 
It seems like it was a dangerous bug that has been "patched" by Microsoft, and modern anti-virus software.
 
Also, there is an "Accessibility" mouse option in windows that makes hovering dangerous. That setting is off by default today. 
 
 
 
 
Make sure this option is Disabled. "Activate a window by hovering over it with the mouse"
 
It's in Control Panel\Appearance and personalization\Ease of access center\Make the mouse easier to use.
 
 

 

 
 
Drew.
 
 On 1/27/2022 9:03 PM, Robert Primak wrote:
  
  "Why is hovering over the links potentially dangerous?" 
    Hovering Mouse Over Hyperlink Causes Malware Infection 
  Cybercriminals infect PCs if the user so much as hovers over a hyperlink in a PowerPoint slide.  
   https://www.pcmag.com/news/hovering-mouse-over-hyperlink-causes-malware-infection
  
  And it hasn't gotten any better since 2017, when this and another banking trojan were discovered. 
  -- Bob Primak  
  
  
      On Thursday, January 27, 2022, 08:30:19 PM EST, Wanda <wandakoe at rcn.com> wrote:  
  
    Why is hovering over the links potentially dangerous?
 
 Wanda Koetz  
 
On Jan 27, 2022, at 8:07 PM, Robert Primak <bobprimak at yahoo.com> wrote:
 
 
  
   I don't know what we're supposed to do on any of those items. The only way I know of to discern what is and what isn't a phishing email is to hover over the links (which may be dangerous these days)and check the header information for clues that the sender or the links do not correspond with known correct originating addresses, company domains and URLs an, and also to compare the current item with similar genuine emails we may have received in the past from the companies we do business with. 
  Without any of these clues, the person being tested is guessing in the dark. I have personally never done business with any of the alleged senders except Google. And Google has never sent me an emaill resembling the sample in the test. 
  This test is in my judgment bogus and misleading, to say the least. It is worse than useless. And may cause undue alarm in anyone "failing" this "test". I hope no employer is firing people for failing similar phishing tests.  
  -- Bob Primak 
      On Thursday, January 27, 2022, 03:12:39 PM EST, Drew King <dking65 at kingconsulting.us> wrote:  
  
     
All,
 
If I recall correctly, there are 10 tests. Share how well you do!
 
 
https://www.phishingbox.com/phishing-iq-test
 

 
 -- 
 Drew King  ===============================================
 ::The Lexington Computer and Technology Group Mailing List::
 Reply goes to sender only; Reply All to send to list.
 Send to the list: LCTG at lists.toku.us      Message archives: http://lists.toku.us/private.cgi/lctg-toku.us
 To subscribe: email lctg-subscribe at toku.us  To unsubscribe: email lctg-unsubscribe at toku.us
 Future and Past meeting information: http://LCTG.toku.us
 List information: http://lists.toku.us/listinfo.cgi/lctg-toku.us
 This message was sent to bobprimak at yahoo.com.
 Set your list options: http://lists.toku.us/options.cgi/lctg-toku.us/bobprimak@yahoo.com     ===============================================
 ::The Lexington Computer and Technology Group Mailing List::
 Reply goes to sender only; Reply All to send to list.
 Send to the list: LCTG at lists.toku.us      Message archives: http://lists.toku.us/private.cgi/lctg-toku.us
 To subscribe: email lctg-subscribe at toku.us  To unsubscribe: email lctg-unsubscribe at toku.us
 Future and Past meeting information: http://LCTG.toku.us
 List information: http://lists.toku.us/listinfo.cgi/lctg-toku.us 
 This message was sent to wandakoe at rcn.com.
 Set your list options: http://lists.toku.us/options.cgi/lctg-toku.us/wandakoe@rcn.com 
      
  ===============================================
::The Lexington Computer and Technology Group Mailing List::
Reply goes to sender only; Reply All to send to list.
Send to the list: LCTG at lists.toku.us      Message archives: http://lists.toku.us/private.cgi/lctg-toku.us
To subscribe: email lctg-subscribe at toku.us  To unsubscribe: email lctg-unsubscribe at toku.us
Future and Past meeting information: http://LCTG.toku.us
List information: http://lists.toku.us/listinfo.cgi/lctg-toku.us
This message was sent to dking65 at kingconsulting.us.
Set your list options: http://lists.toku.us/options.cgi/lctg-toku.us/dking65@kingconsulting.us 
 -- 
 Drew King 
  ===============================================
::The Lexington Computer and Technology Group Mailing List::
Reply goes to sender only; Reply All to send to list.
Send to the list: LCTG at lists.toku.us      Message archives: http://lists.toku.us/private.cgi/lctg-toku.us
To subscribe: email lctg-subscribe at toku.us  To unsubscribe: email lctg-unsubscribe at toku.us
Future and Past meeting information: http://LCTG.toku.us
List information: http://lists.toku.us/listinfo.cgi/lctg-toku.us
This message was sent to galaitsis at verizon.net.
Set your list options: http://lists.toku.us/options.cgi/lctg-toku.us/galaitsis@verizon.net 
 -- 
 Drew King   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.toku.us/pipermail/lctg-toku.us/attachments/20220129/03d89eda/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: GOA44qQzx6Zk0nJE.png
Type: image/png
Size: 353869 bytes
Desc: not available
URL: <http://lists.toku.us/pipermail/lctg-toku.us/attachments/20220129/03d89eda/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Nx5LobLQaazeyCaG.png
Type: image/png
Size: 569516 bytes
Desc: not available
URL: <http://lists.toku.us/pipermail/lctg-toku.us/attachments/20220129/03d89eda/attachment-0001.png>

More information about the LCTG mailing list