Register a SA Forums Account here!
JOINING THE SA FORUMS WILL REMOVE THIS BIG AD, THE ANNOYING UNDERLINED ADS, AND STUPID INTERSTITIAL ADS!!!

You can: log in, read the tech support FAQ, or request your lost password. This dumb message (and those ads) will appear on every screen until you register! Get rid of this crap by registering your own SA Forums Account and joining roughly 150,000 Goons, for the one-time price of $9.95! We charge money because it costs us money per month for bills, and since we don't believe in showing ads to our users, we try to make the money back through forum registrations.
 
  • Post
  • Reply
The Lone Badger
Sep 24, 2007

Agents are GO! posted:

But you don't understand, it's mean to do effective anti-phishing training :qq:

Did someone invent effective anti-phishing training while I wasn’t looking?

Adbot
ADBOT LOVES YOU

Goatse James Bond
Mar 28, 2010

If you see me posting please remind me that I have Charlie Work in the reports forum to do instead

The Lone Badger posted:

Did someone invent effective anti-phishing training while I wasn’t looking?

they sure did, please pm me with your name and social security number to learn more

Pantaloon Pontiff
Jun 25, 2023

Rickrolling and sneaky shock sites (lemon party, goatse, and the like) has probably taught more people to be suspicious of clicking random links than specific anti-phishing training.

Parallelwoody
Apr 10, 2008


They should use the "old friend" for effective anti phishing training.

SettingSun
Aug 10, 2013

Legitimate email also looks suspicious a lot of the time too. Countless times in my office we have people reporting legit email as suspicious and to be fair to them, most of them totally do. We have to send emails sometimes that say 'hey this email you're about to get is real please don't mark it as phishing'.

cinnamon rollout
Jun 12, 2001

The early bird gets the worm

SettingSun posted:

'hey this email you're about to get is real please don't mark it as phishing'.

Exactly what a phishing email would say, definitely reporting that

Parallelwoody
Apr 10, 2008


I did that and pinged the IT guy telling him I'm doing my part to keep the company safe.

Tagra
Apr 7, 2006

If you gaze long into an abyss, the abyss will gaze back into you.


SettingSun posted:

Legitimate email also looks suspicious a lot of the time too. Countless times in my office we have people reporting legit email as suspicious and to be fair to them, most of them totally do. We have to send emails sometimes that say 'hey this email you're about to get is real please don't mark it as phishing'.

ugh my workplace does a lot of anti-phishing stuff, and then they rolled out a new platform for submitting vacation requests and the loving URL is an external site with our acronym but one letter different (basically there's an 'of', and the "o" got added to the acronym). And it's absolutely legit and they are absolutely training everyone to click on it and go there.

I sent a super bitchy message to the IT security team and got a message back from the CIO thanking me, saying something like "We weren't happy about it either but we can't do anything about it unless employees like you help us."

Bitch, this is your entire job. What do you mean you can't do anything about it unless we complain??? :wtc:

Volmarias
Dec 31, 2002

EMAIL... THE INTERNET... SEARCH ENGINES...

Tagra posted:

ugh my workplace does a lot of anti-phishing stuff, and then they rolled out a new platform for submitting vacation requests and the loving URL is an external site with our acronym but one letter different (basically there's an 'of', and the "o" got added to the acronym). And it's absolutely legit and they are absolutely training everyone to click on it and go there.

I sent a super bitchy message to the IT security team and got a message back from the CIO thanking me, saying something like "We weren't happy about it either but we can't do anything about it unless employees like you help us."

Bitch, this is your entire job. What do you mean you can't do anything about it unless we complain??? :wtc:

It means this is the best they can do with the budget they were given for it.

SonOfGhostDad
Nov 16, 2022

Desert Bus posted:

A school principal tried to send 100k of the school's money to a fake Elon Musk:

"I am a very smart lady. Well-educated. I fell for a scam,” McGee said at the meeting, before claiming she had been groomed into handing over the cash."

https://fortune.com/2023/04/03/school-principal-quits-fake-elon-musk-scam-florida/

It's important to realize and difficult for a lot of people to understand that we are all vulnerable to one kind of scam or another. This is the most difficult part of trying to keep my Boomer family's money in their goddamned bank accounts. No, Aunt Linda, Bono isn't going to whisk your pear-shaped rear end away to a tropical island if you send him your retirement money. No, Cousin Ted, Donald J Trump will not fly you out to MAL for a dinner if you give him 5k in DOUBLE IMPACT donations. NO GRANDPA I AM NOT IN PRISON do not send the "FBI" any Target gift cards. Hell, in college I got scammed by one of those "you've won a cruise" scams for like a hundred bucks. The most important thing I try to do is to make sure not to ostracize the more traditionally vulnerable family members for falling for or nearly falling for these scams, because simply letting someone else know about what's going on is one of the best ways to prevent that poo poo.

SonOfGhostDad
Nov 16, 2022
Not a scam, per se, but one of the things I'm fascinated by recently is money laundering through virtual currencies like WoW gold and CoD skins. Do we have a money laundering ask/tell?

Desert Bus
May 9, 2004

Take 1 tablet by mouth daily.
I literally sat back and watched a nice old lady die from a scammer's actions. I take this poo poo, personally, extremely seriously. I dunno wtf my estranged father is up to, financially, but I know my mom is safe.

Agents are GO!
Dec 29, 2004

SonOfGhostDad posted:

Do we have a money laundering ask/tell?

This sounds like an absolutely terrible idea for a thread, like absolutely do not do this

Desert Bus posted:

I literally sat back and watched a nice old lady die from a scammer's actions. I take this poo poo, personally, extremely seriously. I dunno wtf my estranged father is up to, financially, but I know my mom is safe.

I went back and skimmed this and gently caress that's awful. I sometimes gave a real hard time having empathy for the victims of this poo poo, but goddamn that's a gut punch.

Desert Bus
May 9, 2004

Take 1 tablet by mouth daily.

Agents are GO! posted:

I went back and skimmed this and gently caress that's awful. I sometimes gave a real hard time having empathy for the victims of this poo poo, but goddamn that's a gut punch.

It sucks to watch someone getting scammed with the knowledge than anything you do will just make it worse. Even my lack of action/involvement probably made it worse?

Fruits of the sea
Dec 1, 2010

SonOfGhostDad posted:

Not a scam, per se, but one of the things I'm fascinated by recently is money laundering through virtual currencies like WoW gold and CoD skins. Do we have a money laundering ask/tell?

It’s mostly done in games that allow trading on 3rd party sites - harder to track and more pop up every time one is shuttered. Items are often posted with ludicrous prices to make sure the money doesn’t end up in somebody else’s hands.

Steam has been used for laundering for quite a few years now. If you sell something at a price far above its average selling point, you might get an automated message saying the funds have been put on hold. It doesn’t help that they provide an API for third-party sites to use the marketplace.

Amusingly there’s also a small industry of low effort games priced at 200$ and above. Just another way to whitewash currency.

I think the practice is probably a lot more widespread than publishers and platforms acknowledge. They take a cut of the proceeds, after all.

E: my pet theory is that the reason Star Citizen posts higher “pledges” every single year is money laundering via selling ships. It’s nuts that the spending has consistently increased every single year.

Fruits of the sea fucked around with this message at 20:15 on Nov 30, 2023

shame on an IGA
Apr 8, 2005

SonOfGhostDad posted:

Not a scam, per se, but one of the things I'm fascinated by recently is money laundering through virtual currencies like WoW gold and CoD skins. Do we have a money laundering ask/tell?

Steve Bannon was the CEO of IGE back in its heyday, that's all I need to know to assume the entire ecosystem was built specifically for money laundering

SonOfGhostDad
Nov 16, 2022

Agents are GO! posted:

This sounds like an absolutely terrible idea for a thread, like absolutely do not do this



It's not much different from a scams Tell thread. I doubt anyone will be browsing the SA forums for advice on how to launder money any more than they are for how to scam gift cards from meemaw and gramps.

EL BROMANCE
Jun 10, 2006

COWABUNGA DUDES!
🥷🐢😬



I worked for a financial institution that did money laundering training on day one, and boy did it feel like they were teaching me how to get away with it rather than how to spot it.

Agents are GO!
Dec 29, 2004

SonOfGhostDad posted:

It's not much different from a scams Tell thread. I doubt anyone will be browsing the SA forums for advice on how to launder money any more than they are for how to scam gift cards from meemaw and gramps.

Just remembering the Shoplifting thread from aeons ago which ended... poorly, iirc

EL BROMANCE posted:

I worked for a financial institution that did money laundering training on day one, and boy did it feel like they were teaching me how to get away with it rather than how to spot it.

I worked for a casino for over a decade and had to do AML training once every two years, and the #1 thing I learned is that people are really loving stupid about money laundering

The Lone Badger posted:

Did someone invent effective anti-phishing training while I wasn’t looking?

Yes, but people got all angry because they had the temerity to look like it was their employer offering a bonus

Agents are GO! fucked around with this message at 22:50 on Nov 30, 2023

SonOfGhostDad
Nov 16, 2022

Agents are GO! posted:

Just remembering the Shoplifting thread from aeons ago which ended... poorly, iirc


Haha, fair enough. I investigate money laundering and fraud for a living and am prepping for an AML cert exam, so it's on my mind.
I imagine working for a casino makes you paranoid. On top of the AML concerns, there's scams, theft, elder abuse and unpredictable violence to contend with.

HopperUK
Apr 29, 2007

Why would an ambulance be leaving the hospital?
I've seen most of Ozark, I'm pretty sure I could get away with it

ilmucche
Mar 16, 2016

Fruits of the sea posted:

It’s mostly done in games that allow trading on 3rd party sites - harder to track and more pop up every time one is shuttered. Items are often posted with ludicrous prices to make sure the money doesn’t end up in somebody else’s hands.

Steam has been used for laundering for quite a few years now. If you sell something at a price far above its average selling point, you might get an automated message saying the funds have been put on hold. It doesn’t help that they provide an API for third-party sites to use the marketplace.

Amusingly there’s also a small industry of low effort games priced at 200$ and above. Just another way to whitewash currency.

I think the practice is probably a lot more widespread than publishers and platforms acknowledge. They take a cut of the proceeds, after all.

E: my pet theory is that the reason Star Citizen posts higher “pledges” every single year is money laundering via selling ships. It’s nuts that the spending has consistently increased every single year.

Counterstrike skins are apparently used for this

Blue Footed Booby
Oct 4, 2006

got those happy feet

Agents are GO! posted:

Just remembering the Shoplifting thread from aeons ago which ended... poorly, iirc

I worked for a casino for over a decade and had to do AML training once every two years, and the #1 thing I learned is that people are really loving stupid about money laundering

Yes, but people got all angry because they had the temerity to look like it was their employer offering a bonus

On Reddit, people used to post their hauls in r/shoplifting, then on the same amount post in r/legal advice about how they'd been falsely accused of theft. Just the dumbest loving people on earth.

FMguru
Sep 10, 2003

peed on;
sexually

Blue Footed Booby posted:

On Reddit, people used to post their hauls in r/shoplifting, then on the same amount post in r/legal advice about how they'd been falsely accused of theft. Just the dumbest loving people on earth.
R/Shoplifting eventually got shut down, and people tried to relaunch it as a "roleplaying" forum (where people would talk "in character" about their hauls and their techniques...that their characters would be doing in a LARP, hypothetically). Reddit admins didn't fall for that, either.

The Lone Badger
Sep 24, 2007

ilmucche posted:

Counterstrike skins are apparently used for this

And actual oil-on-canvas artwork.

Gynovore
Jun 17, 2009

Forget your RoboCoX or your StickyCoX or your EvilCoX, MY CoX has Blinking Bewbs!

WHY IS THIS GAME DEAD?!

SonOfGhostDad posted:

Not a scam, per se, but one of the things I'm fascinated by recently is money laundering through virtual currencies like WoW gold and CoD skins. Do we have a money laundering ask/tell?

I'm told that this is huge in Asia, to the point that there are gaming 'companies' who only launder money.

Blue Footed Booby
Oct 4, 2006

got those happy feet

FMguru posted:

R/Shoplifting eventually got shut down, and people tried to relaunch it as a "roleplaying" forum (where people would talk "in character" about their hauls and their techniques...that their characters would be doing in a LARP, hypothetically). Reddit admins didn't fall for that, either.

*dons mustache glasses* "hello, this is the pile of random electronics and makeup that I didn't steal today"

SonOfGhostDad
Nov 16, 2022
But to get back on the topic of scams, I've been seeing a lot of business impersonation fraud lately. The scammers will steal and sometimes slightly alter a bank or fintech's logo and formatting, then text or email people who may be on legitimate lead lists.

The scammers will pose as an officer of the bank or fintech and attempt to get the victim to give up their vital info, SSN, bank account info (including login info), as well as email address for complete account takeover. Then comes the gift card demands.

Sometimes they'll even set up dummy websites with fake bank verification prompts, which is especially confusing for people who aren't familiar with programs like Plaid or DecisionLogic, etc.

Fruits of the sea
Dec 1, 2010

ilmucche posted:

Counterstrike skins are apparently used for this

Yeah, Valve made a lot of noise about cracking down on CSGO skin trading after attracting unwelcome attention from law enforcement in 2019. They closed several hundred accounts and authorities shut down a couple trading sites.

Fruits of the sea fucked around with this message at 07:37 on Dec 1, 2023

Reiterpallasch
Nov 3, 2010



Fun Shoe
I guess I'll admit that I actually got got by a phishing scam the other day that I thought was pretty slick once I stopped being mad. The scammers apparently broke into booking.com's email system because they were able to send a phishing mail, from the right domain and with the right headers, about a hotel reservation I'd made that had the right booking information and transaction PIN and confirmation number and everything. I'd probably be madder about it if I'd lost any money but fortunately the alarm bells went off in my head only about 30 seconds too late and I was able to freeze my credit card before anything but the first exploratory hold went through.

If I'm being honest the real villains of the piece are booking.com since I looked the scam up later and it's apparently been going on for months without them being able to kick the scammers out of their email system and while they've been insisting to everyone that would listen that there's Nothing Wrong, Actually.

Fruits of the sea
Dec 1, 2010

Booking.com has some pretty serious internal issues at the moment. They also have stopped passing on payments to a lot of hotels: https://www.theguardian.com/business/2023/oct/01/booking-com-hotel-fees-unpaid-millions-technical-issue

With that and the email hack, it’s best to avoid using their service for the time being.

Reports of scammers sending mails from their domain containing customers’ private info have been occurring for years now: https://arstechnica.com/information-technology/2023/02/mysterious-leak-of-booking-com-reservation-data-is-being-used-to-scam-customers/

Fruits of the sea fucked around with this message at 07:55 on Dec 1, 2023

ilmucche
Mar 16, 2016

FMguru posted:

R/Shoplifting eventually got shut down, and people tried to relaunch it as a "roleplaying" forum (where people would talk "in character" about their hauls and their techniques...that their characters would be doing in a LARP, hypothetically). Reddit admins didn't fall for that, either.

"In minecraft"

Red Oktober
May 24, 2006

wiggly eyes!



I was being hit by booking.com scams in 2019, they seem to still have some serious issues.

This one sent a fake confirmation of a booking to my phone (from the same number as other booking.com notifications), and then a day later I got a call from ‘them’ saying it looked like someone had made a booking on my account. Meantime they had details of my other bookings.

As I had already seen the SMS confirmation the day before it felt quite legit but they wanted some details I wasn’t prepared to give them over an inbound call.

It looks like it’s now expanded to involve their app which is, well, terrifying.

Elissimpark
May 20, 2010

Bring me the head of Auguste Escoffier.

SonOfGhostDad posted:

But to get back on the topic of scams, I've been seeing a lot of business impersonation fraud lately. The scammers will steal and sometimes slightly alter a bank or fintech's logo and formatting, then text or email people who may be on legitimate lead lists.

The scammers will pose as an officer of the bank or fintech and attempt to get the victim to give up their vital info, SSN, bank account info (including login info), as well as email address for complete account takeover. Then comes the gift card demands.

Sometimes they'll even set up dummy websites with fake bank verification prompts, which is especially confusing for people who aren't familiar with programs like Plaid or DecisionLogic, etc.

The Australian Taxation Office (and presumably the equivalent government department in other countries) get a lot of these. They keep a list of reported scams on their website - there are a lot.

When I worked in an ATO call centre ten+ years ago, they had to explicitly state that the ATO will never ask for gift cards to repay tax debts.

Inceltown
Aug 6, 2019

Elissimpark posted:

The Australian Taxation Office (and presumably the equivalent government department in other countries) get a lot of these. They keep a list of reported scams on their website - there are a lot.

When I worked in an ATO call centre ten+ years ago, they had to explicitly state that the ATO will never ask for gift cards to repay tax debts.

I've even heard announcements on the speakers at Coles saying that you'll never be asked for gift cards to pay them.

Humbug Scoolbus
Apr 25, 2008

The scarlet letter was her passport into regions where other women dared not tread. Shame, Despair, Solitude! These had been her teachers, stern and wild ones, and they had made her strong, but taught her much amiss.
Clapping Larry
I just got a 'PayPal is confirming your Bitcoin Purchase. If this is not you, then contact...' email. Haven't seen that one before and that form looked very well done.

Pekinduck
May 10, 2008

SonOfGhostDad posted:

Not a scam, per se, but one of the things I'm fascinated by recently is money laundering through virtual currencies like WoW gold and CoD skins. Do we have a money laundering ask/tell?

That would be cooI but I don't think we have on right now.

An interesting one I heard about : buying/selling "rare currency" on eBay. Of course actually rare currency is a legitimate market, but you see people asking $40 for a modern $20 bill because the serial number has four ones in a row or is almost Van Buren's birthday. The theory is people buy them to get cash for stolen paypal accounts.

shame on an IGA
Apr 8, 2005

there's been an absolute flood of astroturfed local news reports about $2 bills in the last few weeks and I really want to know what the grift is and who's pushing it

Robert Facepalmer
Jan 10, 2019


Is it a grift or are people just dumb? One of the feed shop chains that hires a lot of high school kids usually gives them a graduation bonus of like $100 in all $2 bills and every couple years there is a news story about how yes, they are legal tender because people have never seen them before.

Adbot
ADBOT LOVES YOU

Waste of Breath
Dec 30, 2021

I only know🧠 one1️⃣ thing🪨: I😡 want😤 to 🔪kill☠️… 😈Chaos😱… I need🥵 to. [TIME⏰ TO DIE☠️]
:same:
I remember my dad giving me a $2 bill 20 years ago saying I needed to hold on to it because they were gonna stop making them.

Hadn't seen any news stories, but there must have been something getting passed around because yeah, a quick Google shows a flood of stories in the last two weeks, including CBS News linking their readers to a nonexistent website lmao

  • 1
  • 2
  • 3
  • 4
  • 5
  • Post
  • Reply