Thursday, February 12, 2026

Wrong place

I figure that I am always the wrong person in the wrong place and situation.

I am a scientist who believes in God.  I am a believer in discourse and consensus, in a world full of division and denial.  I am a devotee of lifelong learning, in a church that has reached new heights of anti-intellectualism.  I am a believer in donating everything that you can, in a world that believes every need is an opportunity for a side hustle.  I am a teacher in a society where most people avoid learning anything they can.  I am a believer in partnership and relationship, in a society which believes everything is a transaction.  A specialist in information security, in a world where no one wishes to take any account of risk.  I am a specialist in information integrity in a world which no longer believes in the truth.  I am a depressive in a society that worships positivity (even if toxic).
Posted by at No comments:

OSF - 3.20 - spam - packages

Package scams are probably yet another variant in the general class of advance fee fraud.  Packages, as well as various gift and lottery, scams have been around for quite a while, but they really picked up during the pandemic, when everybody was ordering things online.  Online ordering, and delivery services, are still quite active, and so package scams are still around.

I have a possible advantage over the scammers, in regard to package scams.  At one time I did a lot of reviewing of technical books, and so I was receiving an awful lot of packages, of books, through the mail, or via the various delivery services.  Therefore, I was more aware than most people of the announcements that you would, and would not, receive from delivery services, and so I was more able to identify the variations that indicated that something was a scam.

As with any advance fee fraud, there is the promise of a benefit to come, dependent upon you paying some kind of fee in advance.  In the case of packages, or the free gifts mentioned earlier, the fee is generally fairly small.  Usually, package scams are a kind of a one-off fraud, rather than the ongoing requests for a constant stream of fees or assistance that are part of the classic advance fee fraud.  However, it is possible that some of the package scams may involve an initial small fee, perhaps five or ten dollars, and only later report that you need to pay extra taxes or duty.


Package scams very often come via text, rather than email.  In this case, it offers us a bit of a twofer, in terms of red flags.  The first message is for a delivery scam.  How do we know?  Well, Canada Post isn't likely to host its rescheduling Website in Hong Kong (.hk).  So that's one indication, for a start.  However, as chance would have it, these particular scammers seem to be involved in a number of different scams.  You'll notice that both messages came from the same number, and one is for a completely different scam (threatening that you have not paid your Disney+ account).


These texts didn't come from the same number: this is from my reporting of spam to a research account.  However, you can see that there are a variety of package scam attempts: one purportedly from Canada Post, one from DHL, and one unnamed.  Notice also one mention of a "border fee."


I really love this one.  They've put a bit of thought into the social engineering: in order to prove that they actually have a package for you, they've sent you a *picture* of it!  Relatively few people would think to question the fact that the picture isn't clear enough to indicate who sent it, or to whom it is addressed.  I mean, it's not possible that someone just took a picture of *any* package and sent it to you, is it?


Posted by at No comments:

Wednesday, February 11, 2026

OSF - 3:15 - spam - red flags 3

A few more issues that can indicate that you should maybe not trust this message.


One of the things that you should watch for is any indication that the party that actually sent the message is not the party that the message is supposedly from.  In the case of this message, it is supposed to be from Shaw, who provide my Internet service.  Obviously I want to continue my Internet service, but, in this case, the message doesn't come from Shaw (a Canadian company), but from BTConnect, a British company.  Obviously a Canadian Internet provider would have no need to route their email via a different provider in Britain.

But there is another factor here, and that is a problem with Shaw.  Shaw, in providing an interface for email, should be providing its users with the information about who sent the message.  Shaw does not.  The creator of this message has crafted the message such that the "personal name field" shows "Shaw."  But Shaw, in presenting the message, does not provide the actual email address, only the personal name field.  The only reason that I was able to quickly figure out that "Shaw" wasn't the actual sender was that the images in the message were stored on an external server, and the email system balked at displaying them.


There are a bunch of fairly obvious red flags in this message.  Supposedly it is in regard to a Google Workspace.  Right off the top, we should suspect that nobody who works for Google would need, or even be allowed, to use an obviously external email server such as defence-s.org.  Then there is the fact that VCN (and particularly my account on it) isn't run by Google.  In addition, the link to contract.lisojea.contractors is extremely suspect.

However, note that the user interface for this system does at least give you this information rather than hiding it.


Posted by at No comments:

OSF - 2.40 - scams - naive AI?

In a posting about recent activities on Moltbook, someone made the observation that AI agents are pretty naive.

The observation was in regard to the ability of agents to successfully perform various tasks, but my professionally paranoid mind immediately went in another direction.

As we use them more, and particularly as we use them on the Internet, AI agents are going to get scammed.  Since I'm writing up a bunch of material on scams right now, this is kind of top of mind for me.

OK, probably most AI agents don't have any money, so, I can hear you say, how can they get scammed?  Well, they do have access to something of value: they have a lot of information about *you*.  In order to make them more useful to you, you've given them a lot of information about you.  You've probably given them access to a lot of your online accounts.  (Possibly you've given them access to your bank accounts and credit cards, in order that they may make purchases for you?)

And this, of course, is only one way in which AI agents could be scammed.

Somebody could claim to *be* you, and give them new orders.  Botnets on steroids?

I suspect somebody needs to think about this ...




Posted by at No comments:

Tuesday, February 10, 2026

OSF - 3.10 - spam - red flags advance fee

OK, most of these will have something to do with variations on advance fee frauds.


First of all, we've got this one.  You may not recognize it as advance fee fraud, because, in this initial message, it just says that you have won the lottery.  However, lottery winnings, particularly for a lottery that you have never entered, have become a very common come-on for advance fee fraud.

This is, of course, very fancy and official looking.  After all, nobody could go online and get the logo for FIFA in order to create a fake, could they?  It's even got a barcode, so it *must* be official!  (There are lots of sites on the Internet that will help you create all kinds of barcodes.)  In terms of lotteries that you have never entered, it says that it is your *email* address that has won.  That sounds reasonable, right?  Well, it has become an indicator that this is, in fact, an advance fee fraud.  That particular rationale has been used in a lot of examples of this type of fraud.

You will notice that it does not, initially, mention any kind of fee.  But you'll also notice that there are all kinds of oddities in regard to releasing the funds to you.  For one thing, it says to keep this confidential.  That is common in order to discourage people from discussing this message with others, and possibly being warned that it *is* a fraud.  Also, the money is to be released to a bank in South Africa.  This then allows the scammers to claim all kinds of bank transfer fees, and you'll have no way to verify that, because it isn't likely that you live in South Africa.

They seem to want a lot of information about you.  Even if you only replied with that data, and refuse to pay any fees, They could likely collect and use, or sell, that information for subsequent phishing scams.

Then there is the fact that, even though this is supposed to be associated with FIFA, the contact email is a GMail account, which anyone can create.  Then there is the verification of the winning number, which is to be via the PowerBall lottery in the United States.  (They probably pick a combination of numbers that *has* been drawn in the PowerBall lottery.  Which would have nothing to do with a FIFA lottery.

Oh, and the FIFA lottery?  You don't win money in the FIFA lottery.  You win the chance to pay FIFA a lot of money in order to buy tickets for one of the FIFA games ...



This is a message I received, recently, that was the opening of the gift card variation on advance fee fraud.  I replied to it, wondering what it was about, and got this in reply:


I did a bit of digging on this one, and this person is, actually, Senior Pastor at the church noted above.  But the message is undoubtedly not from him.  I have received messages in a similar vein, from unknown people, people that that I do know, and even relatives.  In this case, their email address and account have been obtained, probably through a phishing attack, and then is used for this type of scam.  As with the grandparent scam, the rush and urgency will require, at some point, that you send the gift card numbers, probably in another email, and then, as previously noted, the value is used and gone.



In this list, notice that several mention cash or benefits.  Once again, supposedly you have come into some kind of windfall, and you only have to claim it!  (*After* you pay the fees, of course.

But also notice that at least four of the messages are addressed to "Josefina."  One of the things that I am very used to is people incorrectly giving *my* email address as *their* email address.  So I have lots of email messages addressed to Ralph, Rufus, Roger, Ruth and others instead of my actual name.  And I'm used to spammers trying to *guess* at what my name might be.  But how do you get "Josefina" out of my name, or email addresses?  So I started to suspect that this is actually deliberate.  The scammers, trying to trick the greedy, and deliberately addressing a name that is very uncommon.  Social engineering comes into play again, since they assume that some people will feel that they can get in on cash that is rightfully Josefina's!  (And, figuring that they are pulling a fast one, will not be as aware of the fact that they are the ones getting taken ...)


And this is probably something along the same line.  The greedy will possibly assume that they can get away with someone else's Bitcoin purchase, by intercepting the email invoice that has gone astray.  And they are less likely to be watching for the indications that this is, in fact, a fraud.


At one point they were doing a lot in this regard with casino winnings.



Another very common variation in the advance fee space is in regard to inheritances.  Someone has died, and you are part of the estate.  Sometimes somebody has died, and you actually *aren't* part of the estate, but an unscrupulous barrister is willing to split the takings with you.  Beware of all enterprises involving the purchase of new identities.


Posted by at No comments:

Monday, February 9, 2026

OSF - 3.05 - spam - red flags 1

OSF - 3.05 - spam - red flags 1

So, here are some indications that the email, or text, that you have received may have some issues that you might be concerned about.


Actually, here's one to be concerned about, regardless of whether it's a text or a call.  Supposedly I have received a call (which I didn't pick up) from 604-555-1212.  If you watch a lot of TV or movies, you will recognize the 555 exchange.  It is, in fact, a reserved exchange, regardless of the area code it is under.  There are some numbers in it that are used purely by the telephone companies, for internal purposes.  There are no legitimate numbers that will call you from the 555 exchange, and that is why TV and movie phone numbers always use that exchange: nobody does, and nobody will.  (555-1212 was, at one time, and in some areas, used as a directory information number.)


This comes under the heading of, "if it seems to good to be true, it probably is."  All (well, *almost* all) of these messages are offering you something for free.  You have won a free prize, and all you have to do is confirm your account (which lets them steal your account) or pay the shipping fee, or the handling fee, or both fees, one after the other, and then possibly an additional fee after that ...  Sometimes this is a version of advance fee fraud, and they will be after you for multiple fees.  Sometimes they are after your account, and you may think that your account is of no value: after all, it's not a *bank* account.  But email accounts, social media accounts, and other "free" accounts can have a lot of value, even beyond the nuisance value of having to get a new email account and contact everyone.  For example, these days, a great many other accounts are tied to your email account, and you could lose all of them, as well.

This type of attack is a kind of subset of the larger class known as phishing attacks.  These are messages that attempt to obtain information from you, that can be used in other attacks.  Very often the information is about you: person information, but not necessarily *too* personal.  For example, what were your parent's names at birth?  Since many systems suggest that you use your mother's maiden name as a security question, this is information that can be used to break into your accounts.


This particular spam came via text, but it points up a warning that applies to texts, email, and even Websites.  The message says to make a claim at https://bit.ly/ICBCcove .  There are a couple of points to make.  The first is the https.  Some people may have been told, or believe, that this provides for some level of security.  It doesn't provide any security against scams or frauds.  The second issue is with regard to the site bit.ly.  This site is a URL redirector.  It is usually used simply to shorten URLs, but it can also be used to specify a particular name.  So, just because it *says* ICBC, it doesn't really mean that ICBC has anything to do with it.  Since it is a redirector, all it really means is that you have no idea where this link is sending you.  Always be somewhat suspicious of these types of links.


This is a fairly common type of spam, and scam.  These particular people are trying to steal your email account, and, as noted above, there are a variety of uses and values that they can obtain from it.  The red flags here start with who this email is from.  on the top line, towards the right, you will notice that the email is from someone at AOL.  I really can't see why someone in authority to remove your account, at Microsoft (*not* Micro Soft), needs to use an AOL account for email.  Also, as I pointed out, Microsoft is unlikely to spell or format their own name incorrectly.  The 48 hour time limit is yet another use of social media to panic people and get them to make decisions in haste, and without considering these factors.  (The "Dear Customer" salutation is also a bit of a flag.  If you actually *are* a customer, presumably they know who you are.)  The mention of the account not being updated on their servers is another oddity: *you* don't need to update *their* servers.

This particular message came to an Outlook ( Microsoft) account that I have and do use.  Outlook is particularly bad at spam filtering, and (rather oddly) particularly at identifying and filtering this kind of messaging attacking their customer's Outlook email accounts, which are often tied to other Microsoft services.  As noted, I do receive legitimate email on this account, but much of the time I find that at least three quarters of the messages I receive via Outlook are attacks on the Outlook account itself.  (Just something to consider when you are choosing email services.)

More to come ...


Posted by at No comments:

OSF - 2.35 - scams - discord attacks

OSF - 2.35 - scams - discord attacks

Once again, as I did before when I talked about how organized these groups and attacks can be, I have to be very careful when discussing discord attacks.

This can be very easily seen as political, primarily because it actually *is* political, although not necessarily in the ways people think about political issues.  A number of the examples that I am going to use are related to nation-state actors, and you may think that in the first place I am attacking certain countries that may be identified with this type of activity, or that, not being a nation state yourself, this doesn't apply to you and you don't need to worry about it.  These ideas are not correct.

As I have said, for almost forty years, I have been researching, and working in, information security.  And I get to talk to people in related communities, like the intelligence community.  Those are the spies.  And the counterspies.  And we talk about things like disinformation.

Now there's misinformation, which is just when you make a mistake, and you believe something that's wrong.  That's bad enough.  But disinformation is when somebody deliberately tells you a lie, designed so that you will believe it.  This has been happening for as long as people have been fighting, and that goes back an awfully long way.  As a matter of fact, possibly we can go right back to Cain and Abel.  God comes to Cain and says, where is your brother  And Cain tries to tell a lie, without even telling a lie.  He just says, am I my brother's keeper?  But God, of course, sees through this and it doesn't work.

Now, when you are dealing with human beings, and not God, it works a little better.  So, someone tells you a lie.  And they tell the lie that they know you are going to believe.  Because it's a lie about someone you don't like.  And the person who tells you this lie, knows that you are going to believe it, because you are willing to believe the worst about the person that you don't like.  So, you believe that lie.  And you repeat that lie.  You tell that lie to other people, because, of course, you want to cause trouble for the person that you don't like.  Or, at the very least, you want to warn other people about the person that you don't like.

So, you have now become a liar.  Oh, maybe you will object that you don't know that it's a lie, but you're repeating a lie anyway.  So, in fact, you are a liar.  And you know what else you are  You are now a weapon.  You are the weapon of the person who told you the lie in the first place.  That's what disinformation does.  It weaponizes lies, and it weaponizes people.  And if you believe, and repeat those lies, you become the weapon.  You become evil, or at least a part of evil.  You are working for evil.

You didn't mean to, of course, but that's the way things ended up.

Now, one of my other fields is emergency management.  We deal with disasters.  And one of the things that we know about disasters, is the disasters bring out both the best, and the worst, in people.  There are going to be people who try to help during a disaster.  And then there are those who are going to try and take advantage of the situation.

But the pandemic has been different.  For me, personally, the pandemic has been very disappointing.  The pandemic seems to have given everyone permission to be their very worst.  To misbehave, although misbehavior is far too weak a term for what we have seen during the pandemic.  The pandemic has given everyone permission to be racist.  To consider anyone who believes in a different political party or stance to be evil.  To allow people to engage in violence on the streets because they don't like another person's skin color, or facial characteristics, or the political symbol that they put on the back of their car, or they don't like the fact that somebody has an "I got vaccinated" sticker on their shirt, or they don't like the fact that somebody has a vaccines kill bumper sticker on the back of their car.  And everybody just seems to think that because you don't agree with me, I have the right to beat you up or run into your car, or post lies about you.  Oh yes, we're dealing with the lies here.

We'll come back to the lies in a bit here.

As I've said I've been very disappointed during the course of the pandemic by the way that people have been misbehaving.  And I expressed this to a friend and she said, well, it's because they're all grieving.

Now, of course, one of the other things that I am is a grieving widower.  And I have been studying grief.  And I have been studying the ways that people behave when they are grieving.  And in discussing this with a friend, she said, that's because they are grieving.  And suddenly, because of what she said, everything came into focus.  Yes, people have been grieving.

Grief is about loss.  And, during the pandemic, everybody has lost something.  Maybe it wasn't a close friend or family member who died.  Maybe you lost a job.  Maybe you just lost an opportunity.  Maybe you just lost the ability to go down to the pub anytime you wanted for a beer.  But everybody has lost something.

Those who are grieving experience a range of emotions.  But one of the most common is anger.  We are angry about our loss.  But, as human beings, we are not particularly good at identifying why we are feeling anger, or indeed any good at identifying any strong emotion that we are feeling and what it actually is.  Our brain tries to find a reason for the strong emotion that we are feeling.  The reason that it generates doesn't have to be correct.  It doesn't even have to make sense.  It's just a presentation that our brain makes to us about why we are feeling some strong emotion.  So, very often, we feel that we are angry at God.  Or at the universe.  (Or even the person who died, which makes no sense at all.)  Or at that person who has skin of a different color.  Or at that person who holds a different political view.  It's their fault.  Whatever it is.

Thus, we have a whole bunch of people who feel very, very strongly that those people over there are responsible for my pain.  They are angry.  Whether they have any valid reasons or not, they are angry.  And they are taking it out on those people over there.  Maybe they won't actually perpetrate physical violence against them.  But they are certainly willing to believe anything bad about them.  And to repeat any lie that they hear about them, as long as it paints them in a bad light.

There's another thing about grief: desperately intense loneliness.  If you are grieving, you are not just grieving the loss of relationship with one particular person.  You seem to be grieving the loss of relationship in general.  And, therefore, it's almost a cliche that when mom dies, dad, all too soon, falls for some inappropriate female, and forms an inappropriate attachment.

And so what have we seen during the pandemic  We have seen all kinds of people, joining all kinds of groups, groups espousing all kinds of weird conspiracy theories, just so that they can belong.  To anything.  With anyone.

And so we come back to the lies.  Because of the anger, people are willing to tell lies.  They're willing to believe lies.  Because of the loneliness, they're willing to join with other people who believe lies.

And how does all this fit together?

Well, like I told you, some of my friends are spies.  And they have been noticing, that during the pandemic, the campaigns, by various foreign governments, to try and make trouble for those of us who live in democracies, have stepped up the disinformation campaigns.  Because, right now, with everybody angry, and everybody joining with cults and conspiracy theories, everybody is willing to spread lies.  There are all kinds of people who are willing to become weapons of disinformation campaigns.  It's become so prevalent that the intelligence community has a name for it they call it discord attacks.  People who are our enemies are sowing lies knowing that a large number of us will believe the lies, and spread the lies, and even amplify the lies.  Thus making disinformation campaigns very much more successful recently than they ever have been in the past.

Now, as I have said, a lot of the information and research in this particular area involves nation state actors.  And, you may be saying thinking that I am saying that certain nation states are attacking our nation state with particular sets of lies.  And you may be thinking that that is unfair.

The thing is, I am not saying this only about other countries attacking us.  Telling lies, in terms of nation states, is basically known as propaganda.  It is a part of what is known as "soft power."  Soft power is an attempt to influence other countries, without actually threatening or attacking them.  Sometimes soft power can be a positive thing.  For example, most countries are involved with foreign aid: sending money and or aid to other countries.  Obviously, this is an attempt to influence the other countries.  It is an attempt to influence them by doing something positive for them, but there is another term for that: it is often called bribery.  Regardless, it is an attempt to influence other countries, on a nation-state basis, and everybody does it.  It's part of soft power.

Well, discord attacks are soft power as well.  Sometimes it's outright propaganda, but the discord attacks are a little bit less obvious.  Discord attacks are mounted, in terms of propaganda, against different groups in the country that you are trying to influence.  These will be groups that do not agree with each other.  So, what a discord attack will do is to create and submit lies, disinformation if you will, aimed at being targeted in a negative way, against one group, but really, in fact, targeted at the opposite group, by being a lie that the opposing group will want to consume.  It is something that they will want to believe, because it says something bad about the other side.

As I say, so far I have been talking and using illustrations about nation state level discord attacks.  The thing is, it's not just nation states that do these things.  In recent years, this has become extremely common in propagandizing, and attempting to influence either committed groups, or the general public, even within small communities.  People are using discord attacks very frequently, and unfortunately very effectively, particularly within social media.  Some of these discord attacks are aimed at political groups, and, since politics touches pretty much every human activity, I guess you could say that all of this is politics, or political activity.  But this is not necessarily just about right-wing parties versus left-wing parties.  Sometimes it is targeted at small groups within a town, and even within an individual organization.  Anytime there is a division, it seems that people are selling lies to one side, in order to get them inflamed against the other side.

And selling is very often an operative word here.  Particularly in regard to social media, some people are just in it for the money.  Online advertising is still a very significant source of revenue for social media platforms and pretty much anybody else who has a presence on the Internet.  The social media platforms, all of them, push for engagement: the attempt to get the social media user to stay on their platform, read their postings, and spend time reacting to their postings, or forwarding those postings on to other people.  Unfortunately, it does seem to be the case that, for a variety of psychological reasons, the most effective way to keep people engaged on social media is to promote hatred.  To get one group of people upset at another group of people.  And it doesn't seem to matter what the groups are.  As long as somebody is stirring up trouble, and spreading malicious gossip, social media users consume it, and spend more time on the platforms.  That makes the owners of the social media platforms happy, and it enriches the bank accounts of the people who create and spread lies about various issues and groups.

And this is really the entire point that I am trying to make about this kind of attack.  When you read something that upsets you, please do not simply automatically share it with all of your friends.  Find out whether it has any basis in fact, first.  If you are spreading malicious gossip that has been created falsely, purely for the purposes of stirring up trouble, and possibly partly for the purpose of enriching somebody who makes up lies for a living, then you are promoting discord attacks yourself.  You are helping to spread the lies.  You are lying.  You are also helping to enrich the people who create this deceitful disinformation, and do it just because it makes them money.


Posted by at No comments:
Subscribe to: Comments (Atom)