It never fails that attackers will do what they can to make some money. Here is a good example of social engineering. Attackers are trying their best at luring you into their trap. As a general rule you should always be on guard and alert of the emails that you are receiving.

Most recently, scammers are sending these false emails about a hotel booking that you know you have never made. Just by clicking on any of the attachments or pictures you are placing yourself at risk of getting a nasty malware infection in your system.

So it looks like there is a massive phishing campaign going on that is targeting AT&T customers. It is reported that over 200k emails are out and claims that AT&T account holders owe several hundred dollars for their monthly bill.

Most of the time that we see these phishing campaigns/scams we see a lot of mis-spellings and errors. These new ones are a bit more convincing. Seems like they went out of their way to creating a believable ‘invoice.’ They are doing this with logos, colors, and honestly… spell check.

I have had a few phone calls and meetings over the past week from people asking if I can look at their phone and tell them if their mobile device has been hacked.

• How can I tell if my phone has been hacked?
• There are some weird things going on with my phone, Can you look at it?
• I think someone has wiretapped my phone, what can I do?

These are valid questions that people wonder everyday. In this piece I will share with you some possible warning signs you can look out for.

More then likely, you have seen a QR Code posted somewhere at a business or on a sticker. What is a QR code? A QR code is a square that has some funky looking print in it. Utilizing a smartphone you can scan this code and it will send you to a mobile site on your device or could even provide you with information that has been setup to deliver. There are many apps that you can download for your Android or iOS platforms that can scan QR codes.  Some of you may already have an app like this on your smartphone.

The past 48hrs have proven to be very interesting for a few sites. LinkedIn was compromised and about 6.5 Million password hashes were released into the wild. The hilarity of the situation was that some of the passwords leaked from a job/networking site were “ihatemyjob” and “linkedin”. Some other passwords people used were: ‘hopeless,’ ‘killmenow’, ‘iwishiwasdead’.

To see if your password was affected go to: https://lastpass.com/linkedin/

Fast forward to today (June 7th) and there is news that we now have two more major sites reporting security breaches. Today eHarmony announced that there was a security breach and up to 1.5 Million passwords were reported to have been stolen as well. It looks like the same person who breached LinkedIn is also responsible for the eHarmony breach.