This report, which is based upon information from law enforcement and complaints submitted to the IC3, details recent cyber crime trends and new twists to previously-existing cyber scams.
Exposing Bad Clients in the Escort Community
The IC3 has received several complaints regarding an escort website. Complainants report their identities were stolen and photographs were posted on the site along with slanderous and inaccurate comments about them. The victims then received extortion type e-mails from subjects offering to help remove the information from the website for a fee. This scam is extremely detrimental to victims on a personal and professional level. Some victims reported their marriages and reputations have been damaged.
The website disclaimer states individuals named on this website provided their information freely to verify and confirm their identity for the purpose of making arrangements to meet and spend time with a paid companion. The website also states they are located outside the United States and Europe, and they do not have to respond to any subpoena (court order) from these countries.
US Airways Phishing E-mail Containing Malware
Sent: Wednesday, April 04, 2012 9:51 AM
Subject: [BULK] Confirm your US airways online reservation.
You can check in from 24 hours and up to 60 minutes before your flight (2 hours if you're flying internationally). Then, all you have to do is print your boarding pass and go to the gate.
US Airways, 111 W. Rio Salado Pkwy, Tempe, AZ 85281 , Copyright US Airways , All rights reserved.
The Better Business Bureau posted the following alert on April 4, 2012.
There's a new phishing scam flooding email inboxes; this time it's an itinerary for a fake US Airways flight.
The scam involves an e-mail containing a phony itinerary for a flight reservation the recipient never actually made. The email contains a link to "check-in" online for the flight, a fake confirmation code, and flight details. The phishing scam is deceiving because it looks authentic, even including the US Airways logo.
US Airways reminds customers that official e-mails often include personal information such as their name and Dividend Miles number. However their Web Check-in e-mails will not contain a name, but will have a valid confirmation code that will either be alphanumeric or all letters.
If you receive the e-mail:
- Check any links by hovering your mouse pointer over the link to identify the URL. A legitimate link will have a URL with "usairways.com."
- Do not click on any links or download any attachments.
- Delete the e-mail.
Internet Crime Complaint Center's (IC3)
May 23, 2012