Monthly Archives: March 2019

Help! My Email was Hacked!

Posted on March 14, 2019 | Leave a comment
Businesswoman frustrated at work

by Mary Landesman

Updated January 11, 2019

Do you suspect your email account has been hacked? Can’t log in to your email account? Are you getting undeliverable and bounce messages for email you never sent? Are friends and family complaining of receiving emails you never sent? Is it malware? A hacker? Here’s how to tell.

Undeliverable and Bounce Messages

Spammers frequently spoof the From sender on the email they send. They just substitute their real email address with a random email address found on a mailing list or one just randomly made up.

Some poorly configured email gateway products don’t distinguish between the manually editable “From” address and the actual sender origin, so they simply send any undeliverable messages to the spoofed From address.

  • Best defense: Simply delete the undeliverable/bounce messages.

In other cases, email worms will send themselves disguised as an undeliverable/bounce message. The bogus email contains either a link or an attachment. Clicking the link or opening the attachment leads directly to a copy of the worm. Your best course is to learn to overcome curiosity.

  • Best defense: If you receive an undeliverable or bounce message for an email you know you did not send, resist the temptation to open the attachment or click the link. Just delete the email.

Unable to Login to Your Email Account

If you are unable to login to your email account due to an invalid password, it’s possible that someone has gained access and changed the password. It’s also possible that the email service is experiencing a system outage of some sort. Before you panic, make sure your email provider is functioning normally.

  • Best defense: Prevention is key. Most email providers offer a password recovery option. If you have even a hint of concern that your email password has been compromised, change your password immediately. If you specified an alternate email address as part of the password recovery, make sure that address is active and be sure to monitor the account regularly.

In some cases, you may need to call your email provider and request a reset. If you go that route, be sure to change your password from the one provided during the phone call. Be sure to use a strong password.

Email Appearing in Sent Items Folder

If copies of the sent email are appearing in your Sent Items folder, then it’s likely that some type of email worm might be involved. Most modern-day malware won’t leave such tell-tale signs behind, so it, fortunately, would be indicative of an older, more easily removed threat.

Email Is Sent but Does Not Appear in the Sent Folder

The most likely cause is phishing. Chances are at some point in the past, you were tricked into divulging your email username and password. This enables the attacker to login to your webmail account and send spam and malicious email to everyone in your address book. Sometimes they also use the hijacked account to send to strangers. Generally, they remove any copies from the Sent folder to avoid easy detection.

  • Best defense: Change your password. Make sure you’ve checked the validity of any alternate email addresses included in the password recovery settings first.

Symptoms Don’t Match the Above

  • Best defense: Make sure you do a thorough check for a malware infection. Fully scan your system with installed up-to-date antivirus software and then get a second opinion with one of these free online scanners.

Receiving Complaints From Friends, Family, or Strangers

One of the problems with spoofed, hijacked or hacked email is that it can also lead to responses from angry recipients. Stay calm — remember, the recipients are just as much a victim as you.

  • Best defense: Explain what happened and use the experience as an educational opportunity to help others avoid the same plight

→ Leave a comment

Posted in How To

Tagged ,

How to Test a Suspicious Link Without Clicking It Does that link look a little strange? Here’s how to tell

Posted on March 14, 2019 | Leave a comment
Illustration of URL on computer

by Andy O’Donnell

Updated July 10, 2018

Do you have click anxiety? It’s that feeling you get right before you click a link that looks a little fishy. You think to yourself, am I going to get a virus by clicking this? Sometimes you click it, sometimes you don’t.

Are there any warning signs that might tip you off that a link might infect your computer or send you to a phishing site?

The following sections will help you learn to spot malicious links and show you some tools you can use to test a link’s safety without actually visiting it.

The Link is a Shortened Link

Screenshot of a spam email with a shortened link

Link shortening services such as bit.ly and others are popular choices for anyone trying to fit a link into the confines of a Twitter post. Unfortunately, link shortening is also a method used by malware distributors and phishers to conceal the true destinations of their links.

Obviously, if a link is shortened, you can’t tell whether it’s bad or good just by looking at it, but there are tools to allow you to view the true destination of a short link without actually clicking it. Check out our article on the Dangers of Short Links for details on how to view a short link’s destination.

The Link Came to You in an Unsolicited Email

Screenshot of an unsolicited bank email with a suspicious link

If you received an unsolicited email that is supposedly from your bank asking you to “verify your information” then you are probably the target of a phishing attack.

Even if the link to your bank in the email looks legitimate, you shouldn’t click it as it could be a phishing link in disguise. ALWAYS go to your bank’s website by entering their address directly into your browser or via a bookmark you made yourself. Never trust links in e-mails, text messages, pop-ups, etc.

The Link has a Bunch of Strange Characters in It

Screenshot of an email with a suspicious link containing random characters

Oftentimes, hackers and malware distributors will try to conceal the destination of malware or phishing sites by using what is known as URL encoding. For example, the letter “A” that has been URL-encoded would translate to “%41”.

Using encoding, hackers and malware distributors can mask destinations, commands, and other nasty stuff within a link so that you can’t read it (unless you have a URL decoding tool or translation table handy). Bottom line: if you see a bunch of “%” symbols in the URL, beware.

How to Check a Suspicious Link Without Clicking It

Ok, so we’ve shown you how to spot a link that might be suspicious, but how can you check out a link to find out if it’s dangerous without actually clicking it? Take note of these next sections.

Expand Shortened Links

Screenshot of CheckShortURL showing what a short URL really is

You can expand a short link by using a service such as CheckShortURL or by loading a browser plug-in that will show you a short link’s destination by right-clicking the short link. Some link expander sites will go the extra mile and will let you know if the link is on a list of known “bad sites”.

Scan the Link with a Link Scanner

There are a host of tools available to check the safety of a link before actually clicking on it to visit the site. Norton SafeWeb, URLVoid, ScanURL, and others offer varying degrees of link safety checking.

Enable the Real-time or Active Scanning Option in Your Antimalware Software

Screenshot of Malwarebytes with real-time protection turned on

In order for you to have the best chances of detecting malware before it infects your computer, you should take advantage of any “active” or “real-time” scanning options provided by your antimalware software. It may use more system resources to enable this option, but it’s better to catch malware while it’s trying to enter your system rather than after your computer has already been infected.

Keep Your Antimalware/Antivirus Software Up to Date

If your antimalware / antivirus software doesn’t have the latest virus definitions, it’s not going to be able to catch the latest threats in the wild that might infect your machine. Make sure your software is set to auto update on a regular basis and check the date of its last update to ensure that updates are actually taking place.

Consider Adding a Second Opinion Malware Scanner

A second opinion malware scanner can offer a second line of defense should your primary antivirus fail to detect a threat (this happens more often than you would think). There are some excellent second opinion scanners available such as MalwareBytes and Hitman Pro. Check out our article on Second Opinion Malware Scanners for more information

→ Leave a comment

Posted in Uncategorized