Welcome to Club Cobra! The World's largest
non biased Shelby Cobra related site!
- » Representation from nearly all
Cobra/Daytona/GT40 manufacturers
- » Help from all over the world for your
questions
- » Build logs for you and all members
- » Blogs
- » Image Gallery
- » Many thousands of members and nearly 1
million posts!
YES! I want to register an account for free right now!
p.s.: For registered members this ad will NOT show
 
Main Menu
|
|
Nevada Classics
|
|
Advertise at CC
|
|
December 2024
|
| S |
M |
T |
W |
T |
F |
S |
| 1 |
2 |
3 |
4 |
5 |
6 |
7 |
| 8 |
9 |
10 |
11 |
12 |
13 |
14 |
| 15 |
16 |
17 |
18 |
19 |
20 |
21 |
| 22 |
23 |
24 |
25 |
26 |
27 |
28 |
| 29 |
30 |
31 |
|
|
|
|
|
|
CC Advertisers
|
|
 4Likes
-
3
Post By gjkrv8
-
1
Post By sambo
-
1
Post By Krait
07-13-2015, 09:19 PM
|
|
CC Member
|
|
|
Join Date: Apr 2008
Location: Melbourne,
VIC
Cobra Make, Engine: Classic Revival CR 3505, LS1, T56 6 Speed, VE 3.45 LSD Rear, 6 Spot AP Fronts, 4 Spot Wilwood Rears
Posts: 1,121
|
|
Not Ranked
Be very careful with Tracking parcels online from Auspost
Hi Guys,
Excuse the long post.
Knowing you guys get little Cobra parcels like me I thought I’d give you a heads up.
Essentially when you get an ePost parcel delivered you can track it via their Auspost website.
All good so far.
There is an option to enable them to send you emails to alert you of the various stages of delivery etc.
Once I enabled this coincidentally within an hour I received an official looking Auspost email from “afp@delivery.com/xxxxx” saying “Nobody was home – click on the label link below to printout your label and take it to the post office and get your parcel etc”
My guard was up as I was getting the parcel delivered to my office and someone is always home there.
When I hovered over the graphic link for the label printout it was some xxxx.kz or xxxx.ru link (Russia or Kazakhstan)
My National IT Security Manager sits right next to me and I got him over to have a look and he said “don’t click on that, you have been the subject of a “targeted spear phishing attack””. (Google it :-) )
He said this is pretty sophisticated as it means someone is tracking people registering for Auspost parcel tracking emails and then sending the bogus email to attack their machines – he said if I had of clicked on the link it would have locked my machine where they ask for ransom money to unlock etc.
There is an alert (auscert) out about the bogus emails – but not about them somehow figuring out you are expecting a parcel (this is the sophisticated bit).
Moral of the story – be very careful of stuff looking like it comes from Auspost – and try and hover over the links and if they are not auspost.com etc then delete immediately.
If unsure delete immediately.
Cheers
Gregg
|
-
Advertising
07-13-2015, 09:45 PM
|
|
CC Member
|
|
|
Join Date: Jan 2007
Location: Melbourne,
VIC
Cobra Make, Engine: Harrison, 6.0L Chev
Posts: 2,513
|
|
Not Ranked
Thanks for the heads up Gregg, I use the AusPost email service quite often. I would report this to AusPost because they have an obligation to protect your privacy and it's very simple for them to do so (install SSL).
The AusPost tracking page (below) is not using HTTPS (secure HTTP), meaning scammers can eavesdrop on traffic between your web browser and the AusPost website. When you enter your email address and click "Subscribe", your email address is sent to the AusPost website and it is not encrypted. Anyone scanning the network will be able to read that information if they know what they're doing.
Track your item - Australia Post
General rule - if you don't see a padlock icon next to the URL or down the bottom of the page, any data you send to the website is open for attack.
If you're on a desktop you can always right-click inside the browser and select "view page info". Google Chrome will tell you "your connection to this site is not private".
__________________
"A spectacularly fast car in a grand if dated tradition."
Last edited by sambo; 07-13-2015 at 09:48 PM..
|
07-13-2015, 10:07 PM
|
|
CC Member
|
|
|
Join Date: Apr 2008
Location: Melbourne,
VIC
Cobra Make, Engine: Classic Revival CR 3505, LS1, T56 6 Speed, VE 3.45 LSD Rear, 6 Spot AP Fronts, 4 Spot Wilwood Rears
Posts: 1,121
|
|
Not Ranked
Hi Paul, Yes our IT Security Manager is reporting it to Auspost and Auscert etc.
Pretty crazy how they don't use HTTPs/SSL encryption etc
cheers Gregg
|
07-14-2015, 12:03 AM
|
|
CC Member
|
|
|
Join Date: Mar 2008
Location: Gold Coast,
QLD
Cobra Make, Engine: Harrison #69, HSV LS2, T56, Custom rear suspension
Posts: 604
|
|
Not Ranked
Thanks Gregg,
Was just reading your post to my wife, she said she got such an email this morning. Fortunately our antivirus flagged it and she deleted it immediately.
Cheers
Geoff
__________________
Geoff
Cobra Car Club of Qld - UAE Chapter
|
07-14-2015, 08:03 AM
|
 |
CC Member
|
|
|
Join Date: Nov 1999
Location: Brisbane, Australia,
Q
Cobra Make, Engine: Contemporary CCX3117 427FE
Posts: 4,381
|
|
Not Ranked
Virus emails have gone nuts lately. The company I work for has received more than 80,000 emails supposedly from Aust Post, ATO and Westpac just in the last week. Crazy!
__________________
Craig
|
07-14-2015, 04:12 PM
|
|
CC Member
|
|
|
Join Date: Apr 2008
Location: Melbourne,
VIC
Cobra Make, Engine: Classic Revival CR 3505, LS1, T56 6 Speed, VE 3.45 LSD Rear, 6 Spot AP Fronts, 4 Spot Wilwood Rears
Posts: 1,121
|
|
Not Ranked
You're right Craig, Chatting to my peer who consults on IT Security yesterday, he said its got to the point where "bad guys" can subscribe to a "online Service" that does it for them. Scary stuff.
Theres two places I always use when I am a bit suss:
Hoax-slayer - website for low level hoax emails etc
auscert.org.au - a bit techy though
Be careful out there.
Its much safer working and driving our Cobra's :-)
Cheers Gregg
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -7. The time now is 11:37 AM.
|
|
Linear Mode
