Three new sites (1 unconfirmed.)

Posted on January 8, 2013 by Jakeman
Twitt

Site 1: http://getfreesteamgames.net/index.php?id=78549 
Name in Browser: Free Steam Games
URL: http://getfreesteamgames.net/
Aliases: N/A

Description: This phishing (possibly) website appears to use a “points” system in which the user gives this link to their Steam friends. Should that friend then proceed to click on the link, this will add a point. On first glance, it doesn’t appear to hold a threat. But since this website logs IP addresses, the owner of the website, provided they have malicious intentions could hack the user’s computer.

This site is unconfirmed, so if I have made an error and this website is completely harmless, please let me know.

Site 2: http://zalil.ru/34132204 
Name in Browser: Хранение файла, бесплатно закачать и скачать, файлообменник (I’m not even going to try to pronounce that.)
URL: http://zalil.ru/
Aliases: N/A

Ok. So what this does is initiate a download. Using Google Translate (With it’s 60.3% accuracy rate.) gave me the name for this download: Besplatnye_akkaunty_steam.exe
Besplatnye_akkaunty_steam.exe is probably a cracked version of Steam. Now, what are cracked exes likely to hold? Viruses. This “virus” is probably not a virus at all. More like spyware/keyloggers. Probably a badly-coded one that runs around in circles around my drive like a little child if I downloaded this.

Well. They tried. Horribly.

Site 3: http://mrjevvazquez.wix.com/1keyadayandsave?_escaped_fragment_=#!home|mainPage 
Name In Browser: 1keyadayandsave | Wix.com
URL: www.wix.com
Aliases: N/A

Hmph. A phishing site based around TF2. What are the odds?
Ok. So. At first glance, this looks convincing. It looks like “Hey, these guys are trying to help us out.” Right? WRONG. If you continue to analyse the page a bit more, it asks you for your account name, email and email password. Now, they’ve done an error in the fact that if one keeps scrolling down the page, there is no Email/Acc. name/Email password prompt. If you turn your attention to the heel, the website ends abruptly there by the host, advertising a free site. Above it is images and posters of items that one can buy from the store. Save the earbuds.

This website logs your IP address though (They kindly clarify this in small text under the key image.), so if one does visit this page, be careful.

Credit goes to marccost3, R4D_GUY and d0k3r # FREEEPLE SHOT (The latter probably being the creator of the download site. His comment is about seizing accounts. Wow. Failure.) for reporting these sites.

Stay safe,
Jakeman.

Posted in Phishing Websites | 4 Comments

Merry Christmas Everyone!

Posted on December 25, 2012 by Delta_301
Twitt

Just took the time to wish you all a very happy Christmas! Whether you got a raspberry pi or a bottle of jack daniels (or both!), I’m hoping you’re pleased and having a good time! Have a safe new year, and don’t get drunk enough to give away your passwords!

Cheers, and Happy Christmas!
-Delta

Posted in Off Topic | Leave a comment

New – http://steamfreegames.ministerievaninternet.nl/

Posted on November 30, 2012 by Jakeman
Twitt

Name in Browser: Steam Community
URL: http://steamfreegames.ministerievaninternet.nl/
Aliases: N/A

Description: Another phishing link. Apparently these guys didn’t get the memo that TF2 is free now either, but we can’t expect much intelligence from these black-hats anyway.
Basically, the numbers are inconsistent and shift your eyes to the bottom of the page. No copyright date. Plus, “Email adress.” – is that even a word? There are so many flaws in this link that I can’t even start.

I swear I’ve seen this link before.

Stay safe,
Jakeman.

Credit goes to DarkWatcher for aiding in finding some flaws on this page. I’m not sure if anyone did report this link, but if someone did, I’ll be sure to add you.

Posted in Phishing Websites | Leave a comment

Skype security – a little exploit to beware of

Posted on November 14, 2012 by Delta_301
Twitt

In a blog post, it has been highlighted that Skype users can have their accounts stolen from them, if the person knows the email address they signed up to Skype with.

http://pixus-ru.blogspot.co.uk/2012/11/hack-any-skype-account-in-6-easy-steps.

It goes on to tell you a way in which you can secure your account. If you don’t understand or can’t follow the page for some reason, you basically change your email address associated with Skype to something that nobody knows. So if you want to make extra sure, then you should create a new email address for Skype or something.

Obviously, this tutorial is just for educational purposes. If you go and break into someone’s Skype account and get caught, then you’ll be looking at a looong time in prison. No word of a lie. Don’t do it.

I really hope they do something to fix this, it’s so easy once you see it. And everybody uses Skype these days, so it’s easy for a malicious hacker to target almost anybody he likes.

Cheers
-Delta

Posted in Important Articles, Other Hacks/scams | Leave a comment

New Site: http://free55games.ohost.de/steam/

Posted on November 1, 2012 by Trixity
Twitt

In-Browser name: Steam Community
URL: http://free55games.ohost.de/steam/
Aliases: http://free55games.ohost.de/

This, like most of the other phishing sites, just immitates the login page of the steam community. Note that the Login is a combination of Accountname, E-Mail and Password aswell as a dropdown list for games. As the site Jakeman has announced this one doesn’t have a year on its copyright notice. It is also not really up to date with the actual steam community site as it is outdated.

Credit for this find goes to DarkWatcher20.

P.S.: As always, stay safe and alert for sites like these.

Cheers,
Trixity & Delta_301

Posted in Off Topic | Leave a comment

New – http://steamcustom.gegahost.net/

Posted on September 29, 2012 by Jakeman
Twitt

Name in Browser: Steam Community
URL: http://steamcustom.gegahost.net/
Aliases: N/A

Ahem. Your typical Steam phishing site. It appears to be either new or well-updated. Although I need to point out one thing: Turn your attention to the login panel. It doesn’t ask for your username and password and just your email address and password, and that’s somewhat nice because they can’t access my account and only manage to get a glimpse at my account name. It has no free-to-play-already games and a checkbox-style list. There is something wrong here, though. There are no numbers as there should be and there is no install steam hyperlink. Hmph.

Long story short: Your typical phishing website without an account name & password prompt and the checkbox-style phishing website of old. Other than that, there’s nothing really remarkable about it.

Stay safe,
Jakeman.

P.S. Look at the bottom of the page, at the copyright. There’s no date!
Credit goes to Darkwatcher for reporting this page.

Posted in Phishing Websites | Leave a comment

WordPress Users – Be Careful!

Posted on September 25, 2012 by Delta_301
Twitt

If you are a user of WordPress, you’re probably on the right track. It’s the best, most elegant and powerful Content Management System I’ve seen. That’s why I use it!

Recently I got an email sent to my junk folder, supposedly an automated email from a WP website, asking me to moderate a comment. Had I only had one email address, I may have actually clicked on it. But it was my personal email address, which I do not associate with Anti-Hackers.

It would be pretty easy for black hats to spoof the WordPress login page’s format, but have it send your details.. elsewhere. WordPress is Open Source and can be changed as much as you like.

So if you run a WordPress (or any CMS for that matter) powered website, just be careful, and think twice. If it’s in your junkmail folder then it’s probably junk.

Cheers
-Delta.

Posted in Off Topic | Tagged | 1 Comment

Know your hackers!

Posted on September 24, 2012 by Delta_301
Twitt

Black Hats, Grey Hats and White Hats.

When people hear the term ‘hacker’ they immediately think of someone who wants to break security and destroy the first cyber system that they can lay their hands on. That is not always the case.

Black Hats

Hacking Amazon to reveal customer details. Running a botnet to send millions of spam messages every day. These sorts of people are called Black Hat hackers. Another term you can use is malicious hackers. People breaking things with the intent on destroying it, stealing stuff, or causing havoc. This is illegal hacking.

Grey Hats

Grey hats consider themselves to be do-gooders by what they do. Here’s a common and classic example. A grey hat hacker may come across a web-based community of paedophiles. If the hacker thinks this is wrong (and most of us do), he would hack into the website and expose the identities of all the paedos to the general public. While what the grey hat hacker did was a justifyable action, it was still a hack, and is still illegal.

White Hats

A white hat hacker should be fully aware of laws against hacking, (such as the Computer Misuse Act) and always act within them. His skills are utilised to better the security of whatever organisation he works for. An example of things a white hat hacker will do is penetration testing. This involves legally testing a system, and if they manage to break in, then the organisation has a security issue that needs addressing. As a white hat, aslong as you stay within the law, you will be fine. White hats are otherwise known as legal hackers, or ethical hackers.

 

Posted in Important Articles, Other Hacks/scams | 1 Comment

New – http://free-gifts.h16.ru/

Posted on September 24, 2012 by Jakeman
Twitt

Name in Browser: Steam Community
URL: http://free-gifts.h16.ru/
Aliases: N/A

Well well. What have we here?
Ahem. Gentlemen, do I need to point out subtle mistakes?

  • Cast your eyes to the foot of the page. Look closer: В© – Now where the hell did the B come from?
  • There is no link to download the Steam client.
  • Notable spelling errors include Email ‘adress’.  Not a word in the English dictonary I’m afraid.

Other than that, it’s an average phishing website run by no-life black hats.

Remember. Steam will never ask you for anything pertaining to your account. They already have it; so don’t fall for this.

Stay safe,
Jakeman.

P.S.
It hasn’t even been updated towards the addition of trading! FAILURE!

P.P.S. Inconsistent numbers.

Posted in Phishing Websites | Leave a comment

Social Engineering: The benefits of human weakness

Posted on September 18, 2012 by Delta_301
Twitt

Have you ever seen a comment on your Facebook status, from somebody that you only vaguely know through friends? That happens a lot, and chances are it’s just someone partaking in the given discussion.

But sometimes, that person may have a notepad and pen in front of them, taking notes about you.

Why? To gather as much information about you as possible. Not because they are trying to stalk you, but because they are relying on their wit and your weaknesses to possibly compromise said account.

The things these social engineers are looking for could be:

  • The name of your first pet…
  • Your mother’s maiden name…
  • Your place of birth…
  • Your email address…

Am I starting to make sense now? These are common examples of security questions asked when retrieving a password. And with these answers, they can change the password to your email address quite easily. And with access to your email account, they can pretty much compromise your entire online existence if you don’t spot the signs

So that’s one example, worst-case scenario. Even a phishing website could come under social engineering, and I will explain why.

In their Annual Security Report of 2010, Cisco found there to be Seven Deadly Weaknesses that social engineers exploit:

Sex Appeal

This is more common on social networking sites like Facebook. If someone who you hardly know is flirting with you, you might want to treat it as suspicious. They may be trying to butter you up to get vital information about you.

Greed

As we’ve previously analysed at Anti-Hackers, greed plays an important part in people giving up their information. A great example is the phishing websites that you’ve seen us post again and again, that offer free games. This is the case on social networking websites too (such as apps that supposedly show you who has viewed your profile). The general rule of thumb is; if it’s too good to be true, it probably is.

Vanity

You’ve seen them at the top of websites, or in pop-ups. An advert telling you you’ve won their amazing prize. Don’t expect much from these people, because they are only trying to get your details to sell. Selling your details means spam. Spam isn’t good.

Trust

Trust can be split into implied and transient. Implied trust involves a hacker/scammer trying to convince you of something. This could be that they are an engineer working for Google, and therefore you trust their judgement, and reveal private details to them.

Transient trust is simply a person pretending to be associated with a person you do trust. The element of trust comes down to things as simple as emails, phone calls and even texts from companies whom you trust.

Laziness

Hackers and social engineers often place a great deal of faith in human laziness. This can involve anything from badly worded messages to links that differ slightly from an official website. (for example, anti-hackers.co.uk and antihackers.co.uk are similar)

This is one way that hackers can gain information from you to, in the long run, gain access to your personal (security) information.

Compassion

By gaining access to one’s – say – Facebook account, the hacker can then pose as that person and pretend to be stranded and require help (or for want of a better word, money.) Many people would feel guilty about doing nothing, and this is how a clever fraudulent scan can start. Depending on the scale of the operation, before you know it, the hacker could have raked in hundreds, possibly thousands of money from different people around the world.

Urgency

Possibly one of the most predictable human impulses in my opinion (especially when it comes to social engineering) is the feeling or urgency. How many times has someone said ‘Hurry up!’ and you actually do speed up with the task you’re doing? It’s this psychological feeling that something needs to be done, and needs to be done now, that can hand hackers your account details on a silver platter.

Here’s the example used by Cisco in 2010:

“Workers may receive phone calls from individuals who claim they need login information or company files sent to them right away.”

So before you succumb to pressure and urgency, think twice.

 

There we have it; the seven deadly weaknesses that hackers, social engineers and cybercriminals exploit.

In conclusion, social engineering (if done correctly) can be as deadly to your virtual life as malware. It’s nasty, clever, and you might not even realise it’s happening to you. This is what we’re trying to make aware. Be careful, and remember to think twice before you give away your precious information online!

Posted in Important Articles, Other Hacks/scams, Social Engineering | 1 Comment