Monthly Archives: July 2015

This one looks very well targeted. The title, attachment and content of the e-mail look very genuine and as if it were a real bill. From: CustomerServices@chesstelecom.com Subject: Your latest Chess Bill Is Ready Attachment: 2015-07-Bill.docm Your bill summary Account number: 24583 Invoice … Continue reading →

I’ve written about ZeroShell in the past.. It currently doesn’t have any nice GUI IPv6 support but you can make it route IPv6 using the following configuration. Note that you probably should investigate iptables firewalling of IPv6 as the commands … Continue reading →

Another day another attempt at sending through zipped attachments… From: Truman Koch <Truman.Koch@onyxmd.com> Subject: Invoice #879384 Attachment: Invoice #879384.zip Please find Invoice #879384 attached Please note that our payment terms are #25 days. Best regards, Truman Koch The invoice number and the number … Continue reading →

Latest Update 16th May 2020: A newer version of this scam is now being run, more details on the 2020 version here. Victims – please see all the information below and also report the fraud to actionfraud and comment at … Continue reading →

So, every user of Windows 7 and 8.1 gets a free upgrade to Windows 10. You need to UPGRADE though..  then windows reports “Windows is activated”. The key which Nirsoft Produckey reports is “QJNXR-YD97Q-K7WH4-RYWQ8-6MT6Y” and this can be found on … Continue reading →

Along with hundreds of thousands of people; I’ve just updated windows to Windows 10. Almost everything has worked flawlessly except Outlook twinned with e-mail signing. Now when I try and send email from Outlook 2013 I’m greeted with the following … Continue reading →

Another day another mass batch of docm virus attempts. Yet another reason to block them on your e-mail servers. From: Air France <cartedembarquement@airfrance.fr> Date: Tue 28/07/2015 10:00 Subject: Your Air France boarding documents on 10Jul Message Id: <REDACTED.JavaMail.tomcat@kl1247sb.is.klmcorp.net> Attachment: Boarding-documents.docm Attached is your … Continue reading →

Another load of spam today… Once again using .docm files which are already blocked across “my estate”. From: ebilling@travisperkins.co.uk Subject: TP E-Billing for Jul 15 Seq No 0006 (0866AER147) Region 033 Attachment: 0866AER147.docm Please find the following attached E-Billing documents: Jul 15 Seq … Continue reading →

Today a customer asked me about a suspicious e-mail… Not much to identify this one as the e-mail is short and looks very genuine. It looked very much like this: From: belinda.taylor@bssgroup.com Sent: Monday, July 27, 2015 9:32 AM To: … Continue reading →

This evening I was contacted by a customer who had their website with GoDaddy (the web builder). Their domain is registered elsewhere with a company that does domains free of charge for their line of work. It seems that at … Continue reading →