I had this too although went straight to my junk folder.

My Mac displayed the image. Clicking on it and it was blocked by my router as 
that runs anti malware at the network level.

My PC wouldn’t display the image (outlook 2016).

I was going to inspect the webpage to see what it contained but in the end 
couldn’t be bothered to turn off protection for curiosity sake.

These sorts of exploits won’t need to grab passwords so that won’t actually 
make a difference to security in this case however it is absolutely the best 
thing to do, use different complex passwords for every service.  Never reuse 
passwords it’s the most common way to be compromised now. There are many 
websites that will list your most used passwords.

If you have a Mac and iPhone use apples keychain with a biometric unlock. Use 
it to generate passwords for each service.

If you are PC or cross platform then lastpass offers a free secure service 
which is very good and used by many of the IT security people I’ve worked with.

If you need to remember a complex password use a description.

For example if you can remember My favourite password manager is lastpass for 
best security = mfpmislfbs.   You can start to add some uppercase, numbers and 
symbols too e.g  Mfpmfb5lfb5!  (Simply replace s with 5 and add punctuation). 
Note do not use this trick with dictionary words p455w0rd is no more secure 
than ‘password’ as most password crackers have a simple option that replaces 
common letter number switches.

Finally treat any ‘from address’ as simply a hint that it might be from that 
person. Give me 10 seconds and I can send an email ‘from’ anyone to anyone*   
The only way to be sure is to use a PGP signature however I’ve probably lost 
you all by now ;-)

*in most cases.

Quantum on.





On 31 Dec 2018, at 11:29, 'Steve Kodź' via Quantum Owners Group 
<[email protected]<mailto:[email protected]>> wrote:


Martin,

I have recently received a strange that sounds similar to the one you received. 
 Mine had the subject "Re: Fw: My silver Q" and had a green image labelled 
"Display Message" - attached is a screen capture of that image which is safe to 
view.

The image if clicked would lead to a website link that I strongly suspect would 
try to download malware.  Therefore if anyone else is receiving unexpected 
emails like this be very careful when opening them.

As a general rule if you are not expecting an email do not trust its contents.  
This is especially true for any emails relating to payments and/or invoices.  
The bad guys has started compromising company email accounts and sending out 
emails requesting backing/payment details are updated to their back account 
rather than the legitimate owner.  If you receive emails of this nature from 
someone you know always call them on a known number (do not use a number on 
their signature as that might be updated too!) to confirm.

To answer Martin's question I would think it is more likely that someone else 
has their computer/email account compromised.  My email came from a Hotmail 
account, but I do not see that account within this group.

To minimise the risk of an email account becoming compromised I would strongly 
recommend a good password (think of something ~17 characters long) that is 
unique to that account.  Also all the big email providers, Facebook, Twitter 
etc will offer some form of 2-factor authentication and this should be enabled. 
 A long password might be difficult to remember, so utilise a decent password 
manager so you only have to remember a single strong password.  For work and 
personal reasons I have over 200 passwords and without a password manager I 
wouldn't have a hope of remembering them all - I only have 3 that I need to 
remember and the reset are stored in password managers.

I know from professional experience that companies are losing money to the bad 
guys via this type of social engineering so please be cautious when opening 
emails.

Regards,
Steve

<dffiidhfmgacpgfd.png>

On 30/12/2018 16:27, Susan and Martin Scott wrote:
Hi all,
    hope all Quantumers (not forgetting other kit car owners) had a good 
Christmas! I had a message this morning entitled "Brush painting gel coat" from 
someone called Barry. If Barry has my email via the group that's not a problem, 
but the message had no script, just attachment so looked suspicious  I deleted 
it. If Barry wants to pick my brains then no problem, can he send another note!
To Jim, Steve or other techi people....... Is it possible (or even likely) that 
my computer had been infiltrated by someone who's gathered a subject and my 
email name (which isn't used in many places) and sent something malicious?
Martin
--
--
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To post to this group, send email to 
[email protected]<mailto:[email protected]>
To unsubscribe from this group, send email to 
[email protected]<mailto:[email protected]>
For more options, visit this group at 
http://groups.google.com/group/quantumowners?hl=en

IMPORTANT NOTE: All information presented herewith is provided on an "As Is" 
basis, without warranty or the implication thereof. Neither the Quantum Owners 
Club nor the individuals associated with the Quantum Owners Club or in the 
preparation of the above information shall have any liability to any person or 
entity with respect to liability, loss, or damage caused or alleged to be 
caused directly or indirectly by the instructions contained within this or 
related message(s).
---
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to 
[email protected]<mailto:[email protected]>.
For more options, visit https://groups.google.com/d/optout.

--
h4-turbo.co.uk<http://h4-turbo.co.uk>
quantumowners.club<http://quantumowners.club>


--
--
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To post to this group, send email to 
[email protected]<mailto:[email protected]>
To unsubscribe from this group, send email to 
[email protected]<mailto:[email protected]>
For more options, visit this group at 
http://groups.google.com/group/quantumowners?hl=en

IMPORTANT NOTE: All information presented herewith is provided on an "As Is" 
basis, without warranty or the implication thereof. Neither the Quantum Owners 
Club nor the individuals associated with the Quantum Owners Club or in the 
preparation of the above information shall have any liability to any person or 
entity with respect to liability, loss, or damage caused or alleged to be 
caused directly or indirectly by the instructions contained within this or 
related message(s).
---
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to 
[email protected]<mailto:[email protected]>.
For more options, visit https://groups.google.com/d/optout.

-- 
-- 
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to 
[email protected]
For more options, visit this group at 
http://groups.google.com/group/quantumowners?hl=en

IMPORTANT NOTE: All information presented herewith is provided on an "As Is" 
basis, without warranty or the implication thereof. Neither the Quantum Owners 
Club nor the individuals associated with the Quantum Owners Club or in the 
preparation of the above information shall have any liability to any person or 
entity with respect to liability, loss, or damage caused or alleged to be 
caused directly or indirectly by the instructions contained within this or 
related message(s).
--- 
You received this message because you are subscribed to the Google Groups 
"Quantum Owners Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
For more options, visit https://groups.google.com/d/optout.

Reply via email to