In this thriller, Rachel (Blunt), who is devastated by her recent divorce, spends her daily commute fantasizing about the seemingly perfect couple who live in a house that her train passes every day, until one morning she sees something shocking happen there and becomes entangled in the mystery that unfolds. Based on Paula Hawkins’ bestselling novel.
I have received the following alert from a security company regarding a widespread phishing attack running through Gmail.
In summary, people are receiving an email from someone they know (whose account has been hacked) and may include an image of an attachment you may recognise from the sender.
When you click on the image expecting Gmail to show a preview instead you get a Google login page except that the address bar will show
and not start with the usual https – otherwise its exactly the same as the Google login page! As soon as you enter your details they have stolen your account name and password, will use them fairly quickly and pick up one of your emails and attachments and send it around your address book. Because they have your email they can then use other services they find in your email and get your passwords (using the forgot password facility) and you are very compromised.
When you log into any service you should check the protocol in the address bar and it should look something like this
with nothing between the lock symbol and the https (apart perhaps for the word “Secure” or the company’s name as in)
I would recommend reading the full blog highlighting this attack method and offering advice regarding protecting yourself.
Action Fraud has received several reports from victims who have been sent convincing looking emails claiming to be from Amazon. The spoofed emails from “Service@Amazon.co.uk”claim recipients have made an order online and mimic an automatic customer email notification.
The scam email claims recipients have ordered an expensive vintage chandelier. Other reported examples include: Bose stereos, iPhone’s and luxury watches.
The emails cleverly state that if recipients haven’t authorised the transaction they can click on the help centre link to receive a full refund. The link leads to an authentic-looking website, which asks victims to confirm their name, address, and bank card information.
Amazon says that suspicious e-mails will often contain: