With Sharp’s Full HD 1080p X-Gen panel and LED edge lit technology delivers natural and vibrant picture quality. The LE640 LED series comes fully equipped with built-in ATSC/QAM/NTSC tuners, 4 HDMI inputs, 2 USB inputs with video, audio and picture streaming capabilities, built in Wi-Fi, DLNA, IP control as well as a revitalized and easy to use SmartCentral interface that will allow you to access popular applications, such as Netflix.

The proprietary AQUOS LED system comprised of the X-Gen LCD panel and UltraBrilliant LED enables an incredible dynamic contrast ratio of 4,000,000:1. 120 Hz fine motion enhanced virtually eliminates blur and motion artifacts in fast-moving video.

For a limited time, you can order a 52″ Sharp AQUOS 1080p LED Smart TV from Hyphenet for only $1,193, plus shipping!

Supplies are limited, so call Hyphenet at (619) 325-0990 to order your 52″ Sharp AQUOS 1080p LED Smart TV  today!

Specifications for the 52″ Sharp AQUOS 1080p LED Smart TV

Don’t miss out on this Buy of the Week! Call (619) 325-0990 to order your 52″ Sharp AQUOS 1080p LED Smart TV today!

Buy of the Week offer valid through May 25th, 2012 while supplies last.

* Shipping and taxes apply.

Your system is likely infected with Zeus malware.

Security researchers over at Trusteer have discovered that the latest P2P variant of the Zeus Trojan doesn’t just wait around for a user to login to their online bank account to snatch their login credentials or inject a web form to obtain whatever financial information the cybercrooks behind it are after.

Instead, the latest Zeus configuration attempts to leverage visits to the most popular sites into a case of debit card data theft.

How? By dangling bogus CashBack and –ironically enough– fraud protection offers in front of users whenever they visit Facebook, Gmail, Hotmail or Yahoo to get them to hand over their credit card information.

Zeus Trojan Offers Facebook Users 20% CashBack on Facebook Credit Purchases

When a user goes to satisfy their Facebook fix, Zeus will inject a page offering the user to link their debit card to their Facebook account to earn 20% CashBack on all Facebook Credit purchases:

Apply Now!
Link your Debit card to your facebook account. Transfer Facebook Credits to your bank account is now available! Earn up to 20% CashBacK purchasing Facebook Credits with your MasterCard or Visa Debit Cards.

[Credit Card Information Fields Here]

*Your Debit Card pin is ONLY used for verification purposes! It activates CashBack option. Never disclose your Debit PIN to anyone, including family and friends. Your Debit PIN is confidential and is for your use online.

Pretty sneaky stuff, huh?

Zeus Offers Fraud Protection to Gmail, Hotmail & Yahoo Users… as it Helps Cybercrooks Commit Fraud

Should a user attempt to check their Gmail, Hotmail or Yahoo inbox on a system infected with the Zeus variant in question, they’ll be presented with a fake page offering to protect them from fraud by utilizing the security features under the Verified by Visa or MasterCard SecureCode programs.  Talk about a cruel irony.

Here’s the sales pitch presented to Gmail users:

Screenshot Credit: Trusteer

We are glad to offer you participate in our brand new processing system created jointly with Verified by VISA, MasterCard SecureCode and Google Checkout.

Link your Debit card right now with your Google Mail Account and pay simply, securely at more than 3,000 stores online, starting January 1 2012. All you need to do is activate your card. Then, whenever you submit an order at a participating online store, Google checkout window will appear automatically. Enter your password, submit, and that’s it. Once activated, your card number cannot be used without your personal password for online purchases.

The spiel for Yahoo Mail is nearly identical – just swap out the Google name for Yahoo.

Meanwhile, Hotmail users are told they can connect their card to their Hotmail account, which will somehow magically stop purchases made without providing your Hotmail.com email address and assigned password:

Windows Live Inc. is concerned about the online security of its customers and as a result wants to ensure we’re doing all we can offer you as much protection as possible. Brand new free service allows you to set-up an Online Password at your Debit Card against unauthorized use through the Internet. After your Debit Card is “linked” to your e-mail address, no one will be able to use it without your Personal Password and access to your e-mail. It’s 100% secure fast and easy. Apply now and get absolute unauthorized charges protection, it’s compensated in full.

Of course, should a user make the mistake of falling for any of the offers outlined above, all of their billing information will be sent over to the cybercrooks behind the Zeus variant, who will either sell the information to the highest bidder or use it to buy whatever it is their little black heart’s desire.

“This attack is a clever example of how fraudsters are using trusted brands – social network/email service providers and debit card providers – to get victim’s to put down their guard and surrender their debit card information.” Trusteer’s CTO, Amit Klein wrote, “These webinjects are well crafted both from a visual and content perspective, making it difficult to identify them as a fraud.”

Always think twice before entering your personal or billing information and when in doubt, do a little research.

Zeus is often spread via malicious email file attachments and drive-by-downloads, so don’t download any files attached to suspicious looking emails, always use antivirus software and keep your system’s operating system up-to-date.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

TrendMicro warns that malware is currently being spread via private and instant messages on Facebook containing a short link leading to a file archive, “May09-Picture18.JPG_www.facebook.com.zip.”

If said archive is unzipped and the contents opened, the system will be infected by a worm identified as WORM_STEKCT.EVL, which will disable whatever antivirus software is installed on the affected machine and connect to a remote site to send and receive information.

One of those “pieces of information” is another worm identified as WORM_EBOOM.AC.  Once WORM_EBOOM.AC is on your system, it will become your virtual social stalker and monitor all of your posting/browsing activities on Facebook, Myspace, Twitter, WordPress and Meebo. Occasionally it may fire off a message or two of its own that include a link that will help spread the infection.

Tips to Stay Safe

Not really into the idea of either of these worms making their way onto your PC? I don’t blame you, so here are a few bits of advice on how to stay safe:

• Be cautious of links you follow and make an effort to do a little homework on links that appear suspicious.
• Don’t accept prompts to download/save a file if you didn’t initiate the download process and never download files from untrusted sources.
• Always use antivirus software and make sure it’s kept up-to-date.
• Minimize your chances of being messaged by a spammer/scammer by changing your Facebook privacy settings to only allow Friends or Friends of Friends send you messages.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

“hahahahaha foto hxxp://random.photoalbumn.org”

Webroot researchers warn that messages like these are a part of a freshly launched malware campaign that’s using Skype to reach its targets.

Should a user make the decision to click on the spammed link, they will be prompted to download a file named “Photo9321092109313.JPG_www.facebook-com.exe,” which is obviously an executable that the cybercrooks (poorly) attempted to disguise as a harmless jpeg file. It’s no surprise that the file houses malware.

“The Photo9321092109313.JPG_www.facebook-com.exe sample has the following MD5, MD5: bc3214da5aac705c58a2173c652e031e, currently detected as Trojan.Win32.Jorik.PoisonIvy.yy, Trojan.Win32.Diple!IK by 16 out of 42 antivirus engines.” Dancho Danchev wrote on the Webroot Threat Blog, “Upon execution the binary, creates a batch script, installs a program to run automatically at logon, and creates a thread in a remote process.”

From there, the malware would open a backdoor and connect to hd.hidbiz.ru & 4.45.182.239:1986.

Keeping Your System Safe

To protect your PC from this malware attack, it’s recommended that you:

• Exercise caution when clicking links shared via Skype.
• Always run antivirus software and keep the virus definitions up-to-date.
• Set Windows (or whatever operating system you use) to display file extensions to avoid any “surprises.”
• Edit your Skype privacy settings to only allow IMs from people on your Contact list.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

Cybercriminals are taking another shot at tricking users into exposing their banking information by spamming out the following email to anyone on their mailing lists:

Dear Chase Online® Customer,

Chase Online® security has detected an unusual error on your Online access.

Therefore, we are sending you this e-mail as a security precaution to confirm to you the Inability to accurately verify your account information due to an internal error within our servers.

Due to this, we have sent you an attachment which contains the web page in order to confirm your account information. Download the attachment to your desktop and open the file to Get Started

However, Failure to do so may result in temporary account suspension. Please note that this is a security measure intended to help protect you and your account.

Thanks for your co-operation.
Security Center Advisor
Chase Online® Support Team

Let’s not forget the possibility of the file being booby-trapped with malware as well.

How Do I Know This is a Phishing Email?

According to the Security Center FAQ’s on Chase.com, Chase will NOT:

• Send e-mail that requires you to enter personal information directly into the e-mail.
• Send e-mail threatening to close your account if you do not take the immediate action of providing personal information.
• Send e-mail asking you to reply by sending personal information.
• Share your name with any contacts outside our firm in a manner inconsistent with our Privacy Notice.

Additionally, under the Security Center Tips section, Chase warns that you should never respond or reply to an email, phone call or text message that:

• Requires you to supply personal or account information directly into the e-mail.
• Threatens to close or suspend your account if you do not take immediate action and provide personal or account information.
• Solicits your participation in a survey where you are asked to enter personal or account information.
• States that your account has been compromised or that there has been third-party activity on your account and requests you to enter or confirm your personal or account information.
• States that there are unauthorized charges on your account and requests your personal or account information.
• Asks you to enter your User ID, password or account numbers, PIN or card expiration dates into an e-mail, non-secure webpage or text message.
• Asks you to confirm, verify, or refresh your account, credit card, or billing information.

Ok, This is Obviously a Phishing Email… So What Do I Do?

If you receive a Chase phishing email similar to the one above, it is recommended that you:

• Do NOT reply to the email.
• Do NOT download the file attached and definitely do NOT provide any sensitive information.
• Report the email to Chase by forwarding it to abuse@chase.com. (You will get an automated response from Chase letting you know that they’ve successfully received it.)
• Delete the email immediately.

(Tip: If you feel you’ve been a victim to fraud then I suggest checking out the How to Report Fraud page.)

Thank you to our reader for submitting the Chase phishing email to us!

Stay safe, everyone!

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

Anatomy of an Attack

How Hackers Threaten Your Security

Are you concerned that a malware attack will put your business at risk?

Learn how today’s cybercriminals target your computer, identity and money and get practical advice on how to combat anything that comes your way. Sophos security experts Chester Wisniewski and John Shier will explore how malware threats actually work and what you can do to protect your company today.

They’ll show you:

• What the threat landscape looks like, how it’s changing, and trends to watch for
• A live demonstration of how a malware attack occurs, step-by-step
• The top 5 things you can do today to make your business more secure

The seminar is FREE, but space is limited! Don’t miss out!

When?
Tuesday June 12, 2012
10:00 AM – 2:30 PM

Where?
San Diego Marriott Mission Valley
8757 Rio San Diego Drive,
San Diego, CA 92108

Cost?
FREE!

How Can I Attend?

Make sure you don’t click on any links.

Cybercriminals are spamming out American Express phishing emails in an attempt to lead users to malicious sites housing the Blackhole Exploit Kit.

Users will see nothing more than a blank page reading, “PLEASE WAIT. Loading…” while the Blackhole exploit pack works silently in the background, attempting to take advantage of vulnerabilities within Java, Adobe PDF, Flash and other software to plant malware on the target machine.

Here’s a copy of the email we received:

From: AmericanExpress@welcome.aexp.com
Subject: Your American Express Forgotten User ID

Confirmation
Verify Your Request

Your Account Number Ending:

Dear Customer,

Did you recently verify your User ID or reset the password that you use to manage your American Expressâ Card account online?

If so, you can disregard this email. To help protect your identity online, we wanted to be sure that you had made this request.

If not, please click here, or log on to https://www.americanexpress.com/ so we can protect your account from potential fraud.

Thank you for your Cardmembership.

Sincerely,
American Express Customer Service

P.S. To learn how to protect yourself on the internet and for information about Identity Theft, Phishing and Internet Security, please visit our Fraud Protection Center at http://www.americanexpress.com/fraudprotection.

www.americanexpress.ca/privacy View Our Privacy Statement Add Us to Your Address Book

This customer service email was sent to you by American Express. You may receive customer service emails even if you have requested not to receive marketing emails from American Express.

Copyright 2012 American Express Company. All rights reserved.

AGNEUMYC0001001

Ways to Spot American Express Phishing Emails

Cybercriminals will do their best to imitate American Express emails, but there ways to tell the real from the fake.

• Pay attention to how you were greeted in the email. Were you addressed by name or “Dear customer”/”Dear cardmember”? If it’s the latter, then there’s a good chance that email came from a spammer and not American Express.
• Check for the last 5 digits of your account number. Legitimate emails from American Express that are related to your account will include this information, so if it’s missing then the email is likely a fake.
• Does the email create a false sense of urgency? Spammers want you to take action before you think, so fraudulent emails are likely to ask you to update or provide information ASAP or risk having your account suspended or closed.
• Hover your mouse over links within the email to verify the destination URL. If the links don’t point to an americanexpress.com domain, then you’d be better off typing the URL directly into your address bar or using your browser bookmarks/favorites.
• Check how many people are copied on the email. Having 10 other unfamiliar email addresses copied on the same email should be a HUGE red flag.

How to Report American Express Phishing Emails

Alright, so you’ve ran through the checklist above and suddenly that email doesn’t feel right. Now what?

You can report the phishing email to American Express by forwarding it to spoof@americanexpress.com. You’ll get an automated reply acknowledging they’ve received the email and they’ll take it from there.

Did You Fall for an American Express Phishing Email?

If you made the mistake of clicking on a link within a suspected American Express phishing email, you may want to:

• Perform a full system scan of your computer with your antivirus software.
• If you’ve provided any account information, contact American Express by calling the number on the back of your card.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

The scams are likely to resemble those shared on other social networking sites like Facebook:

• A “free gift card” offer or “shocking video” is posted on the site.
• Upon clicking it, the user is taken to another site that asks them to share (or “Pin”) the content before redeeming the offer.
• The user is redirected to a site that asks them to complete a never-ending cycle of surveys or an e-commerce site where the spammer can make money through an affiliate program.

“Many of these scams ask users to complete surveys which require the user to fill in his or her personal details like name, email address and mobile number.” McAfee warned, “This information can be used in various malevolent activities like spamming, but in the case of mobile devices, this may lead to premium calling numbers where users are stuck with the bill.”

Protect Yourself Against Pinterest Scams

To avoid becoming a victim, McAfee offers the following tips:

• Never share your password.  These tools make it very easy to mass-comment or post from any account.
• If any page asks you to “Pin It” before you can see the content, this is mostly likely a scam. Do not click on the “pin it” button and leave the page.
• If any page offers you a “free gift card” and redirects you to a survey, this is most likely a scam. Do not click on the “pin it” button and leave the page.
• Be careful while clicking links that have catchy titles like “shocking video,” “you will not believe it,” ”free give away,” etc. Most of the time, these lead to scams.

What to Do If You Fall for a Pinterest Scam

If you happen to fall for a Pinterest scam, make sure that you:

• Remove the spam pins that were posted on your account
• Report any other pins related to the scam using the “Report Pin” feature.
• Change your Pinterest password if you shared it at any time.

Have you come across any scams on Pinterest?

Photo Credit: Inkhouse

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

As millions of gamers worldwide know, Diablo 3 was finally released today and cybercriminals have prepared for the highly anticipated launch of the third-installment of the Diablo series by setting up survey scams and malicious D3 game downloads.

The survey scams can easily be spotted as they typically request that you share the “download offer” on Facebook (or another social network site) and, of course, require that you complete a survey or two.

Malware disguised as a full copy of Diablo 3 can also be avoided by downloading it through your Battle.net account versus some third-party site with a random domain name like “free-diablo3-download.com.”  Or you could always pick up a copy in-store (just verify that it’s in stock before heading there).

Are there FREE copies of Diablo 3 out there?

Scammers were using the word “free” to lure people into their D3 survey traps, but can you really get a copy of D3 without paying for it?

As luck would have it, there are some freebie offers out there – with a catch.

Enter the Diablo 3 Sweepstakes

The catch? You have to have a Twitter account, follow @geekdotcom and tweet the following message:

@Geekdotcom Is Giving Away Diablo III http://bit.ly/JBujoH #Diablo #GeekSweepstakes

Entries/Tweets must be received between 12:01 am (Eastern Time) on May 15, 2012 and 11:59 pm (Eastern Time) on May 19, 2012.

If you were planing on entering, I suggest you head over to PCmag.com for the full details and rules.

Go for the Diablo 3 Starter Edition

The catch? This is NOT the full version of the game and is mostly just for test drive purposes.

If a buddy of yours picked up a box copy of Diablo 3, then they may be willing to hand over the Guest Pass that was included. Once you have a Guest Pass, you can login to your Battle.net account and download the game client from the Account Management page.

Again, the Diablo 3 Starter Edition is just a way for you to test drive the game before making the full purchase and has the following restrictions:

• Act I up to the Skeleton King is available
• Level 13 cap
• Matchmaking available only with other Starter Edition players
• No Real Money Auction House access

As far as I know, those are the only two real ways to get “free” copies of Diablo 3.

Be smart about getting your copy and have fun gaming!

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.

Did Wikipedia cross over to the dark-side and insert those obnoxious, flashy advertisements into their site pages to generate revenue?!

No, no. It’s nothing like that.

On Monday, Wikipedia took to their blog to warn users that if you’re seeing advertisements for a for-profit industry on their website, then it’s likely that your computer has been hit with malware.

Screenshot Credit: Wikipedia

The culprit is likely to be a malicious browser extension that managed to sneak its way onto your system (you didn’t fall for a Facebook scam recently, did you?), and Wikipedia advised that a Chrome browser extension named “I want this” has been found to inject ads on sites the user visits.

That’s only one example, though. There are likely ad-injecting browser extensions  for every popular web browser, regardless if it’s Internet Explorer, Firefox or Chrome.

So what should you do if you’re seeing ads on Wikipedia – or any other site that’s not known to carry ads?

• Check your browser for suspicious plug-ins.
  • Chrome -> Click the Tool icon on the top right -> Hover over ‘Tools’ -> Click ‘Extensions’
  • Firefox -> Click the orange ‘Firefox’ tab -> Select ‘Add-ons’  -> Check under ‘Extensions’ and ‘Plugins’
  • Internet Explorer -> Click ‘Tools’ in the top menu -> Select ‘Manage Add-ons’
• Scan your system with an anti-malware program like Malwarebytes or Ad-aware.
• Do a full system scan using whatever antivirus software is installed.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+.