Re: [Quantum Owners] Barry the painter?

[Matthew Wastell]

I had this too although went straight to my junk folder.

My Mac displayed the image. Clicking on it and it was blocked by my router as 
that runs anti malware at the network level.

My PC wouldn’t display the image (outlook 2016).

I was going to inspect the webpage to see what it contained but in the end 
couldn’t be bothered to turn off protection for curiosity sake.

These sorts of exploits won’t need to grab passwords so that won’t actually 
make a difference to security in this case however it is absolutely the best 
thing to do, use different complex passwords for every service.  Never reuse 
passwords it’s the most common way to be compromised now. There are many 
websites that will list your most used passwords.

If you have a Mac and iPhone use apples keychain with a biometric unlock. Use 
it to generate passwords for each service.

If you are PC or cross platform then lastpass offers a free secure service 
which is very good and used by many of the IT security people I’ve worked with.

If you need to remember a complex password use a description.

For example if you can remember My favourite password manager is lastpass for 
best security = mfpmislfbs.   You can start to add some uppercase, numbers and 
symbols too e.g  Mfpmfb5lfb5!  (Simply replace s with 5 and add punctuation). 
Note do not use this trick with dictionary words p455w0rd is no more secure 
than ‘password’ as most password crackers have a simple option that replaces 
common letter number switches.

Finally treat any ‘from address’ as simply a hint that it might be from that 
person. Give me 10 seconds and I can send an email ‘from’ anyone to anyone*   
The only way to be sure is to use a PGP signature however I’ve probably lost 
you all by now ;-)

*in most cases.

Quantum on.





On 31 Dec 2018, at 11:29, 'Steve Kodź' via Quantum Owners Group 
mailto:quantumowners@googlegroups.com>> wrote:


Martin,

I have recently received a strange that sounds similar to the one you received. 
 Mine had the subject "Re: Fw: My silver Q" and had a green image labelled 
"Display Message" - attached is a screen capture of that image which is safe to 
view.

The image if clicked would lead to a website link that I strongly suspect would 
try to download malware.  Therefore if anyone else is receiving unexpected 
emails like this be very careful when opening them.

As a general rule if you are not expecting an email do not trust its contents.  
This is especially true for any emails relating to payments and/or invoices.  
The bad guys has started compromising company email accounts and sending out 
emails requesting backing/payment details are updated to their back account 
rather than the legitimate owner.  If you receive emails of this nature from 
someone you know always call them on a known number (do not use a number on 
their signature as that might be updated too!) to confirm.

To answer Martin's question I would think it is more likely that someone else 
has their computer/email account compromised.  My email came from a Hotmail 
account, but I do not see that account within this group.

To minimise the risk of an email account becoming compromised I would strongly 
recommend a good password (think of something ~17 characters long) that is 
unique to that account.  Also all the big email providers, Facebook, Twitter 
etc will offer some form of 2-factor authentication and this should be enabled. 
 A long password might be difficult to remember, so utilise a decent password 
manager so you only have to remember a single strong password.  For work and 
personal reasons I have over 200 passwords and without a password manager I 
wouldn't have a hope of remembering them all - I only have 3 that I need to 
remember and the reset are stored in password managers.

I know from professional experience that companies are losing money to the bad 
guys via this type of social engineering so please be cautious when opening 
emails.

Regards,
Steve



On 30/12/2018 16:27, Susan and Martin Scott wrote:
Hi all,
hope all Quantumers (not forgetting other kit car owners) had a good 
Christmas! I had a message this morning entitled "Brush painting gel coat" from 
someone called Barry. If Barry has my email via the group that's not a problem, 
but the message had no script, just attachment so looked suspicious  I deleted 
it. If Barry wants to pick my brains then no problem, can he send another note!
To Jim, Steve or other techi people... Is it possible (or even likely) that 
my computer had been infiltrated by someone who's gathered a subject and my 
email name (which isn't used in many places) and sent something malicious?
Martin
--
--
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To post to this group, send email to 
quantumowners@googlegroups.com
To unsubscribe from this group, send email to 

Re: [Quantum Owners] Barry the painter?

[Susan and Martin Scott]

Hi Steve,
Thanks for those reassurances. The message I received was also from a hotmail 
account and had the green image. 
"To minimise the risk of an email account becoming compromised I would strongly 
recommend a good password (think of something ~17 characters long) that is 
unique to that account. "
I just click on windows mail to open it - should I put some sort of password on 
the icon, and will it help? Sorry if I'm being dense.
Martin

  - Original Message - 
  From: 'Steve Kodź' via Quantum Owners Group 
  To: quantumowners@googlegroups.com 
  Sent: Monday, December 31, 2018 11:29 AM
  Subject: Re: [Quantum Owners] Barry the painter?


  Martin,

  I have recently received a strange that sounds similar to the one you 
received.  Mine had the subject "Re: Fw: My silver Q" and had a green image 
labelled "Display Message" - attached is a screen capture of that image which 
is safe to view.

  The image if clicked would lead to a website link that I strongly suspect 
would try to download malware.  Therefore if anyone else is receiving 
unexpected emails like this be very careful when opening them.

  As a general rule if you are not expecting an email do not trust its 
contents.  This is especially true for any emails relating to payments and/or 
invoices.  The bad guys has started compromising company email accounts and 
sending out emails requesting backing/payment details are updated to their back 
account rather than the legitimate owner.  If you receive emails of this nature 
from someone you know always call them on a known number (do not use a number 
on their signature as that might be updated too!) to confirm.

  To answer Martin's question I would think it is more likely that someone else 
has their computer/email account compromised.  My email came from a Hotmail 
account, but I do not see that account within this group.

  To minimise the risk of an email account becoming compromised I would 
strongly recommend a good password (think of something ~17 characters long) 
that is unique to that account.  Also all the big email providers, Facebook, 
Twitter etc will offer some form of 2-factor authentication and this should be 
enabled.  A long password might be difficult to remember, so utilise a decent 
password manager so you only have to remember a single strong password.  For 
work and personal reasons I have over 200 passwords and without a password 
manager I wouldn't have a hope of remembering them all - I only have 3 that I 
need to remember and the reset are stored in password managers.


  I know from professional experience that companies are losing money to the 
bad guys via this type of social engineering so please be cautious when opening 
emails.

  Regards,
  Steve



  On 30/12/2018 16:27, Susan and Martin Scott wrote:

Hi all,
hope all Quantumers (not forgetting other kit car owners) had a good 
Christmas! I had a message this morning entitled "Brush painting gel coat" from 
someone called Barry. If Barry has my email via the group that's not a problem, 
but the message had no script, just attachment so looked suspicious  I deleted 
it. If Barry wants to pick my brains then no problem, can he send another note!
To Jim, Steve or other techi people... Is it possible (or even likely) 
that my computer had been infiltrated by someone who's gathered a subject and 
my email name (which isn't used in many places) and sent something malicious?
Martin
-- 
-- 
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To post to this group, send email to quantumowners@googlegroups.com
To unsubscribe from this group, send email to 
quantumowners-unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/quantumowners?hl=en
 
IMPORTANT NOTE: All information presented herewith is provided on an "As 
Is" basis, without warranty or the implication thereof. Neither the Quantum 
Owners Club nor the individuals associated with the Quantum Owners Club or in 
the preparation of the above information shall have any liability to any person 
or entity with respect to liability, loss, or damage caused or alleged to be 
caused directly or indirectly by the instructions contained within this or 
related message(s).
--- 
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To unsubscribe from this group and stop receiving emails from it, send an 
email to quantumowners+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

-- 
h4-turbo.co.uk
quantumowners.club



--
  This email has been checked for viruses by AVG antivirus software. 
www.avg.com 
   



  -- 
  -- 
  You received this message because you are subscribed to the Google Groups 
"Quantum 

Re: [Quantum Owners] Barry the painter?

['Steve Kodź' via Quantum Owners Group]

Martin,

I have recently received a strange that sounds similar to the one you 
received.  Mine had the subject "Re: Fw: My silver Q" and had a green 
image labelled "Display Message" - attached is a screen capture of that 
image which is safe to view.


The image if clicked would lead to a website link that I strongly 
suspect would try to download malware.  Therefore if anyone else is 
receiving unexpected emails like this be very careful when opening them.


As a general rule if you are not expecting an email do not trust its 
contents.  This is especially true for any emails relating to payments 
and/or invoices.  The bad guys has started compromising company email 
accounts and sending out emails requesting backing/payment details are 
updated to their back account rather than the legitimate owner.  If you 
receive emails of this nature from someone you know always call them on 
a known number (do not use a number on their signature as that might be 
updated too!) to confirm.


To answer Martin's question I would think it is more likely that someone 
else has their computer/email account compromised.  My email came from a 
Hotmail account, but I do not see that account within this group.


To minimise the risk of an email account becoming compromised I would 
strongly recommend a good password (think of something ~17 characters 
long) that is unique to that account.  Also all the big email providers, 
Facebook, Twitter etc will offer some form of 2-factor authentication 
and this should be enabled.  A long password might be difficult to 
remember, so utilise a decent password manager so you only have to 
remember a single strong password.  For work and personal reasons I have 
over 200 passwords and without a password manager I wouldn't have a hope 
of remembering them all - I only have 3 that I need to remember and the 
reset are stored in password managers.


I know from professional experience that companies are losing money to 
the bad guys via this type of social engineering so please be cautious 
when opening emails.


Regards,
Steve

On 30/12/2018 16:27, Susan and Martin Scott wrote:

Hi all,
    hope all Quantumers (not forgetting other kit car owners) had a 
good Christmas! I had a message this morning entitled "Brush painting 
gel coat" from someone called Barry. If Barry has my email via the 
group that's not a problem, but the message had no script, just 
attachment so looked suspicious  I deleted it. If Barry wants to pick 
my brains then no problem, can he send another note!
To Jim, Steve or other techi people... Is it possible (or even 
likely) that my computer had been infiltrated by someone who's 
gathered a subject and my email name (which isn't used in many places) 
and sent something malicious?

Martin
--
--
You received this message because you are subscribed to the Google 
Groups "Quantum Owners Group" group.

To post to this group, send email to quantumowners@googlegroups.com
To unsubscribe from this group, send email to 
quantumowners-unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/quantumowners?hl=en


IMPORTANT NOTE: All information presented herewith is provided on an 
"As Is" basis, without warranty or the implication thereof. Neither 
the Quantum Owners Club nor the individuals associated with the 
Quantum Owners Club or in the preparation of the above information 
shall have any liability to any person or entity with respect to 
liability, loss, or damage caused or alleged to be caused directly or 
indirectly by the instructions contained within this or related 
message(s).

---
You received this message because you are subscribed to the Google 
Groups "Quantum Owners Group" group.
To unsubscribe from this group and stop receiving emails from it, send 
an email to quantumowners+unsubscr...@googlegroups.com 
.

For more options, visit https://groups.google.com/d/optout.


--
h4-turbo.co.uk
quantumowners.club

--
--
You received this message because you are subscribed to the Google Groups "Quantum 
Owners Group" group.
To post to this group, send email to quantumowners@googlegroups.com
To unsubscribe from this group, send email to 
quantumowners-unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/quantumowners?hl=en

IMPORTANT NOTE: All information presented herewith is provided on an "As Is" 
basis, without warranty or the implication thereof. Neither the Quantum Owners Club nor 
the individuals associated with the Quantum Owners Club or in the preparation of the 
above information shall have any liability to any person or entity with respect to 
liability, loss, or damage caused or alleged to be caused directly or indirectly by the 
instructions contained within this or related message(s).
--- 
You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group.

To unsubscribe from