• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
Job seekers defense against spammers/spambots Sept 7, 2012
 

Job seekers defense against spammers/spambots Sept 7, 2012

on

  • 369 views

There has been an epidemic of spambots like a hive of fire ants cracking emails, Twitter, other online accounts. Common sense approach to keep it from being you. ...

There has been an epidemic of spambots like a hive of fire ants cracking emails, Twitter, other online accounts. Common sense approach to keep it from being you.

If you know Windows fast forward thru slides to set Windows Updates and Firewall

Statistics

Views

Total Views
369
Views on SlideShare
369
Embed Views
0

Actions

Likes
0
Downloads
5
Comments
0

0 Embeds 0

No embeds

Accessibility

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • The castle/moat analogy
  • Put in globe
  • Do I know them?
  • In case of malware or just a disk crash
  • Highlight mse
  • Highlight mse
  • Important
  • Skip?
  • Skip?
  • Happened to Tom
  • Important
  • Important
  • Important

Job seekers defense against spammers/spambots Sept 7, 2012 Job seekers defense against spammers/spambots Sept 7, 2012 Presentation Transcript

  • Organized Spam: Todays Racket● Globally costing us $130B in 2009● A list of a million emails cost $25 or less● Spammers paid nearly nothing in 3rd world● They pay $600 for WinRumer to generate countlessspambots to trash sites, steal your identity● Its so cheap they blast it to everybody● They are often beyond jurisdiction Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Today’s Takeaways• How passwords are hacked and avoiding it.• How to identify links you should not click.• How to effortlessly retrieve unique hard-to-crackpasswords in a secure place. (www.lastpass.com)• Easy/free browser tools to confirm your bad feeling asite is creepy. (www.mywot.com)Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Whats their game?● Hack your email to spam for them – break into yourother accounts.● Pose as legitimate organizations and ask for yourcredit card, Social Secruity, other personal information.This is known as Phishing.● To get money directly from you if you are foolishenough.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Whats their target?The entire planet.Some of the incredibly stupid spam is targeted to attackincredibly clueless people that respond.They are relentless, esp. the Borg-like spambots…they will“assimilate” your PC into zombies to spam for them if possible.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Where are they from?As just mentioned, spammers could hijack your PC tospam for them. Spam sites tend to be in East or SouthAsia, former Soviet states, accessed by either locals orAmericans.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Much of this is common sense ● Dont rush ● Ignore any “call for action” and click ● InvestigateJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • 1st – The BasicsHave a recent and FULL backup on DVDs ($25) or external harddrive (about $85)Backup hardware is the only expense needed in this slideshow.Google: EaseUS for free backup softwareJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Need a Firewall to stop threats BEFORE they enter your computer • Windows Vista / 7 / 8 users activate it inside the Control Panel (Windows Firewall) • If using older Windows (like xp) – download Microsoft Security Essentials (free) or a free personal firewall from COMODO.comJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Then you need an anti-virus product to kill the intruders that get thru the firewall. These products have free versions: ● Microsoft Security Essentials (includes a firewall) ● AVG ● Avast A FULL anti-virus scan weekly overnight.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Need to keep current on Microsoft updates, as mostaddress security.Trivia: Microsoft typically does their updates the 2 ndTuesday of the month after 3pm Dallas time.It’s known as “Patch Tuesday”Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • When Installing software, consider opting out ofmost/all options• Toolbar add-ons are notorious for having spyware• Notifications for update, while legit, do slow downyour computer’s boot, and could compromise yourprivacyJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Remember this one thing!Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Password Hacking Spambots● AAAAAA● AAAAAB● AAAAAC● …etc, etc.● if you have a short and simple password, this bruteforce attempt WILL burn you if you dont change itperiodically.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Yahoo Job Groups ● Very spam-ridden unless moderated ● Suspect emails if no subject following the Yahoo Group name in brackets ● If content if just a link – delete as spam ● If content has a generic message around the link (i.e. comment spam) – its likely spam ● If you know the person – contact them! ● If you have been hacked by a spammer, change your password and do a full anti-virus scannerJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Another danger: Clicking without forethought Spammers LOVE people who are too busy! Great way to catch malwareJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • What is Phishing? A fraudulent email claiming to be from an organization urging you to give out a password, Social Security number, credit card #, etc. NEVER do this! The easiest way to expose many of the phishing scams is select the body of the email, right-click, and do a Google search…it’s probably reported on sites like www.snopes.com. If you right-click the URLs of the “official” images – they will often look 3rd party – not like the organization they claim to be. Example on next two slides….Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • > Continued…Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • A Woodcreek member that didnt change her passwordFrom: NotCarefulEnough@yahoo.comTo: Way_too_many_business_contactsSubject: VACATION PROBLEMIm writing this with tears in my eyes,my family and I came downhere to UNITED KINGDOM for a short vacation unfortunately wewere mugged at the park of the hotel where we stayed,allcash,credit card and cell were stolen off us but luckily for us westill have our passports with us...sob, sob, sob.Swipe this, right-click and Google will expose this at snopes.comand other sites.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • If a friend you know got hacked….• Call or forward the email back to them!• If you use Hotmail/Outlook – click “My friend’s beenhacked!”Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • If you stop using an online account, seriously consider closing it. Why? Idle email, Twitter, other accounts WILL eventually get hacked by spambotsJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Spambot: “Bet you used the same “Crap! Knew I password for your should have Twitter, bank accounts changed that – that’s next!” short password last year”Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Strong Passwords● 8+ characters● Mixing alpha, numbers, special characters is better● Avoid Family/Pet names● Routinely incrementing by number or date is better● Do not use the same password other accounts.● If your browser offers to remember passwords – Dont!There is an easy way to do this, answer in a couple of slides.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Resist the urge to save passwords as cookies and become prey to the Dark SideJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Use www.lastpass.com instead• Works on desktop, notebook, tablet, smartphones• Windows, Apple, Linux• Browsers Internet Explorer, Firefox, Chrome, AppleSafari, Opera• It’s free!Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • How can LastPass.com help?• It securely stores your passwords in an easy to findplace for all your internet devices• It generates unique passwords for you• It automatically logs on for you (with permission)• It can coach you to better security• But DO NOT record your master password on yourcomputer or in the cloudJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • The LastPass Security Challenge can help you make passwords hack-proofJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • If you record your password or hints – LIE! Intentionally write down your password wrong in a way YOU know what it really is. If someone else tries it they wont be able to hack you.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Spammers are wolfs in sheep’s clothing. Is it easy to expose them? Yes!Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • What if our browsers could call out scammers like that late 80sTV ad did for car salesman Joe Izuzu? (i.e. "Hes Scamming")There is an app for that and it’s easy!Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Go to mywot.com - download this browser add-on,refresh browser.It works for smartphones, tablets, notebooks, desktops, Windows/Apple/Linux, browsers Internet Explorer,Firefox, Chrome, Safari, Opera.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Note: Web of Trust rates trustworthniess.Among other things, that includes unsuitable contentsuch as porn and hate speech, sites that may doidentity theft, malicious sites, unreliable onlinebusiness sites, and scammers.The WOT app is like the Oil Gauge or Check Enginelight on your car’s dashboard. When the WOT redcircle appears, you decide if you are still interested inthe site.
  • Once you download the WOT app on your browser, aring will appear – usually by the URL to indicate thetrustworthness of the site with a score 0-100. Score typically 100-80 Score typically 50-0Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Example: WOT Finds a ScamJob Seekers Defense Against Spammers – Sept 2012 – 7, 2012 Thomas Job Seekers Defense Against Spammers – September Chuck
  • Rubbish Alert: Picture of a beautiful person living in MountainView, California, that’s probably from Manila. (tools to prove it)Why did “John” and couple others sign this same post as“Andrea?” (Hint: he may not even know how to speak English –read on)Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Why is his profile missing? Hmmm…Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • “John Duggan” sez you gotta click this site….Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • ….but look at the top of your browser (right corner ifChrome) – it’s zoomed in on this slideThe WOT add-on rated this site with a scarlet circle witha rating of 5 out of 100 – how fast should you run?www.realwritingjobs.com claims to be an easy way tomake money at home as an online writer…Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • How it looks in Internet Explorer – see the red circles?Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • How it looks in Apple Safari: warning is front and centerJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • If you really want to investigate realwritingjobs.com, onyour browser, swipe and right-click it to activate your favsearch engine. Google found a site revealing it’s aborderline scam site you will probably pay more in feesthan you will make in publishing articles.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Really Creepy SitesThe ones with the popups. When you leave, popupswill beg you to stay, sometimes even physicallykeeping you from leaving. In those instances, closethe browser, killing it with Task Manager (search orrun taskmgr.exe) is necessary, or even shutting thecomputer down.Examples of such sites are “scareware” that makes itseem your PC is infected with hundreds of viruses inan attempt to make you buy.
  • Q: How do you tell a forum/group spammer?A: They don’t talk back – just like that empty chairJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Related: Don’t feed trollers/flamers on LinkedIn GroupsBesides: Employers can SEE you!Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • • What is a troller? Anyone that joins a group/forumsimply to disrupt. In person, few are brazen enough topee in a public swimming pool or scream “Fire” in atheater, but on the net losers do it all the time.• Flamer/agitator: Occasionally a person will beobsessed with ONE topic to the exclusion of everythingelse in their life, often of the socio/political variety. Theyrant on it and badger others to agree, often with anextremist viewpoint.• Arguments on forums are a bad idea. On the phone orin person, people can sense “Enough!”, but on forumspeople often go well beyond that and get enraged.Other reasons such as being anonymous.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • I recently opined on a LinkedIn Pet Group, then wasflamed by a couple of Animal Rights members that saidI was not current on that topic. I asked for links, butthey spend far more energy ranting demanding I blindlybe a yes-man to these strangers, then childishly hatedon every character I typed. So I unjoined that LinkedIn Group and reported one ofthem to LinkedIn…she had nothing in her profile: Nolocation, profession, nothing – so why is a non-professional on LinkedIn?Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Moral of the story: Don’t argue with idiots. They willbring you down to their level then beat you withexperience. Seriously, act like a shopkeeper on social media suchas LinkedIn, Facebook, Twitter, anything.Shopkeepers bite their tongue on hot topics such aspolitics, don’t argue – just be nice to all and get theirbusiness!Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Sometimes its better to just get a new email● The old email may be impossible to clean up● Just be very selective on the use of your new email● Some email services such as Microsoft Outlook makeit easy to go into new mail/old emailJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Web email with best spam filters ● Gmail ● Hotmail (respectable 2nd) ● Yahoo (well behind)Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • If you are concerned with the Google search enginerevealing your privacy, consider www.startpage.comJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Emails in general● Again, check for no subject, suspicious or ALL CAPSsubject● Hover over the sender – you should see their email.Does the name look machine-generated, have aproduct name in it, or otherwise just odd? It may be aspammer● Many job seekers abandon their email after landing.You should continue to network, but if you retire thatemail, change the password to a long phrase to hack-proof it.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • One way of publishing your email:WoodcreekJobSeeker AT Gmail DOT COMinstead of WoodcreekJobSeeker@Gmail.com…this may defeat spambots doing idenity theftYes, this is a bit parnoid, optionalJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • "Im not a Network Engineer so how do I find potentialspyware and other junk on my Windows PC?"Download Soluto.comJob Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Whats Soluto.com?• A free download for individual Windowsdesktop/notebook users.• In a user-friendly way, it identifies on future bootsitems that are potentially useless, harmful, or invadeyour privacy• Soluto and internet users opin on the services youboot up with if they are good/bad, spy on you and giveyou reasons why.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • How not to look like a spammerMake a brief introduction – who you are and where youmet. Spammers and trollers are notorious for notidentifying themselves, so an intro puts your audienceat ease.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • Avoid participating in Chain LettersIn many cases, they are playing on fears, superstitions,or part of a multimarketing scheme…do you want to beassociated with that?Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas
  • A really extreme way to avoid viruses and malware: ditch Windows Does not always work, but Linux and Apple are much smaller targets.Job Seekers Defense Against Spammers – Sept 2012 – Chuck Thomas