I had this too although went straight to my junk folder. My Mac displayed the image. Clicking on it and it was blocked by my router as that runs anti malware at the network level.
My PC wouldn’t display the image (outlook 2016). I was going to inspect the webpage to see what it contained but in the end couldn’t be bothered to turn off protection for curiosity sake. These sorts of exploits won’t need to grab passwords so that won’t actually make a difference to security in this case however it is absolutely the best thing to do, use different complex passwords for every service. Never reuse passwords it’s the most common way to be compromised now. There are many websites that will list your most used passwords. If you have a Mac and iPhone use apples keychain with a biometric unlock. Use it to generate passwords for each service. If you are PC or cross platform then lastpass offers a free secure service which is very good and used by many of the IT security people I’ve worked with. If you need to remember a complex password use a description. For example if you can remember My favourite password manager is lastpass for best security = mfpmislfbs. You can start to add some uppercase, numbers and symbols too e.g Mfpmfb5lfb5! (Simply replace s with 5 and add punctuation). Note do not use this trick with dictionary words p455w0rd is no more secure than ‘password’ as most password crackers have a simple option that replaces common letter number switches. Finally treat any ‘from address’ as simply a hint that it might be from that person. Give me 10 seconds and I can send an email ‘from’ anyone to anyone* The only way to be sure is to use a PGP signature however I’ve probably lost you all by now ;-) *in most cases. Quantum on. On 31 Dec 2018, at 11:29, 'Steve Kodź' via Quantum Owners Group <[email protected]<mailto:[email protected]>> wrote: Martin, I have recently received a strange that sounds similar to the one you received. Mine had the subject "Re: Fw: My silver Q" and had a green image labelled "Display Message" - attached is a screen capture of that image which is safe to view. The image if clicked would lead to a website link that I strongly suspect would try to download malware. Therefore if anyone else is receiving unexpected emails like this be very careful when opening them. As a general rule if you are not expecting an email do not trust its contents. This is especially true for any emails relating to payments and/or invoices. The bad guys has started compromising company email accounts and sending out emails requesting backing/payment details are updated to their back account rather than the legitimate owner. If you receive emails of this nature from someone you know always call them on a known number (do not use a number on their signature as that might be updated too!) to confirm. To answer Martin's question I would think it is more likely that someone else has their computer/email account compromised. My email came from a Hotmail account, but I do not see that account within this group. To minimise the risk of an email account becoming compromised I would strongly recommend a good password (think of something ~17 characters long) that is unique to that account. Also all the big email providers, Facebook, Twitter etc will offer some form of 2-factor authentication and this should be enabled. A long password might be difficult to remember, so utilise a decent password manager so you only have to remember a single strong password. For work and personal reasons I have over 200 passwords and without a password manager I wouldn't have a hope of remembering them all - I only have 3 that I need to remember and the reset are stored in password managers. I know from professional experience that companies are losing money to the bad guys via this type of social engineering so please be cautious when opening emails. Regards, Steve <dffiidhfmgacpgfd.png> On 30/12/2018 16:27, Susan and Martin Scott wrote: Hi all, hope all Quantumers (not forgetting other kit car owners) had a good Christmas! I had a message this morning entitled "Brush painting gel coat" from someone called Barry. If Barry has my email via the group that's not a problem, but the message had no script, just attachment so looked suspicious I deleted it. If Barry wants to pick my brains then no problem, can he send another note! To Jim, Steve or other techi people....... Is it possible (or even likely) that my computer had been infiltrated by someone who's gathered a subject and my email name (which isn't used in many places) and sent something malicious? Martin -- -- You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group. To post to this group, send email to [email protected]<mailto:[email protected]> To unsubscribe from this group, send email to [email protected]<mailto:[email protected]> For more options, visit this group at http://groups.google.com/group/quantumowners?hl=en IMPORTANT NOTE: All information presented herewith is provided on an "As Is" basis, without warranty or the implication thereof. Neither the Quantum Owners Club nor the individuals associated with the Quantum Owners Club or in the preparation of the above information shall have any liability to any person or entity with respect to liability, loss, or damage caused or alleged to be caused directly or indirectly by the instructions contained within this or related message(s). --- You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. For more options, visit https://groups.google.com/d/optout. -- h4-turbo.co.uk<http://h4-turbo.co.uk> quantumowners.club<http://quantumowners.club> -- -- You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group. To post to this group, send email to [email protected]<mailto:[email protected]> To unsubscribe from this group, send email to [email protected]<mailto:[email protected]> For more options, visit this group at http://groups.google.com/group/quantumowners?hl=en IMPORTANT NOTE: All information presented herewith is provided on an "As Is" basis, without warranty or the implication thereof. Neither the Quantum Owners Club nor the individuals associated with the Quantum Owners Club or in the preparation of the above information shall have any liability to any person or entity with respect to liability, loss, or damage caused or alleged to be caused directly or indirectly by the instructions contained within this or related message(s). --- You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. For more options, visit https://groups.google.com/d/optout. -- -- You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/quantumowners?hl=en IMPORTANT NOTE: All information presented herewith is provided on an "As Is" basis, without warranty or the implication thereof. Neither the Quantum Owners Club nor the individuals associated with the Quantum Owners Club or in the preparation of the above information shall have any liability to any person or entity with respect to liability, loss, or damage caused or alleged to be caused directly or indirectly by the instructions contained within this or related message(s). --- You received this message because you are subscribed to the Google Groups "Quantum Owners Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
