April 2012
image
THE BRIEF
HOME
image
About Us
Staff Directory
Favorite Links:
BBB Home Page
Find us on Twitter
Find us on Facebook
Find us on YouTube
THE BRIEF Archives
The BRIEF, April 2012

The BRIEF, March 2012

The BRIEF, February 2012

The BRIEF, October 2011

The BRIEF, September 2011
Accredited Business News
BBB Investigation
Scammers Spoof BBB Emails in Elaborate Phishing Scam

For the past 4+ months, BBB has been the victim of a massive phishing scam that uses our name and logo to fool people into thinking the email is from BBB concerning a complaint against their business. Although they appear to be coming from a BBB computer, they are not. 

The emails appear to have been totally random in who they are sent to. They have gone to businesses, individuals who have never owned a business, as well as to educational, nonprofit and government addresses. There is no indication that BBB Accredited Businesses are being targeted. 

The emails appear to be part of a criminal campaign that has spoofed other trusted identities, including Bank of America, Intuit (maker of Turbo-Tax) and the Internal Revenue Service. The FBI has made this a priority and CBBB is working closely with their cyber crime division and other law enforcement agencies to shut down the scammers. 

The spammers’ goal is to get as many email recipients as possible to click on the link within the email which redirects to a website infected with malware. If you clicked on the link within these emails, your computer is likely to be infected. The criminals then use that malware to transfer money out of bank accounts or obtain additional email addresses. 

BBB is directing many resources to combat this attack. We have hired security specialists to track the fraudulent emails and shut down the websites hosting the malware. We have been working with forensic criminal experts to make sure no malware has infiltrated BBB’s computers or those of our vendors. 
Many recipients have gotten multiple copies – sometimes dozens or even hundreds – of the same email. This may be due to some unsophisticated “copycat” spammers who don’t even know or care that they are sending multiples of the same email. 

Here’s what you can do to help us:

1-    Don’t click on any links or attachments.
2-    Send samples of any email that spoofs BBB to phishing@council.bbb.org.
3-    Delete the email.

If you have clicked on a link in one of these emails, run a complete system scan of your computer or network, and make sure your anti-virus software includes elimination of the Zeus or Z-bot virus.


[PRINTER FRIENDLY VERSION]
THE BRIEF is issued by Better Business Bureau to its accredited businesses, their employees and subscribers monthly. Reference to or mention of any company, product or service is not to be interpreted, per se, as statements derogatory of such company, product or service, but as information from sources believed to be reliable, for the confidential use of the aforementioned accredited businesses, their employees and subscribers.

(SOME CONTENTS MAY BE REPRODUCED WITH PERMISSION AND ATTRIBUTION)
Copyright © All Rights Reserved. 2011.
View THE BRIEF Archives