Phishing Scam, that’s not really DocuSign

Written: February 14, 2019

Several times per week I receive official-looking emails from what appears to be a trusted company or email sender, so today I just received an email using a From Name of “DocuSign Signature”, which is a little odd because most email messages have an actual person’s name in the from field.

On first glance this email appears to be legitimate because of the logo, header, grammar and fonts used. Being suspicious the first step that I take is to click on the From Address to see who was sending the email, or at least pretending to be:

Bingo, the From Address is not coming from @docusign.com, instead it is coming from @srcpro.com, so I am 99% assured that this is yet another Phishing scam to entice me to click a link and end up at a site to steal my login credentials.

A second, but more subtle indicator that this is a scam email is that the message isn’t centered on the page, or left-justified. It’s centered off to the right, which a real corporation like DocuSign would never allow to be sent out.

A third point, if I just hover my cursor over the enticing button, Sign Invoice, it reveals a totally bogus and very unsafe web address:

Finally, the content of the email starts out with, “Dear Recipient” which is always a symptom of a phishing scam. A real invoice from DocuSign would have my complete First and Last Name, plus a known Account Number. This email has none of my account details, so it’s a scam, and I should never click the Sign Invoice.

So, stay safe with your email, be on the guard for clever phishing scams like this one that can at first glance appear to be legitimate, but with a few seconds of double-checking turns out to be unsafe.

Tags:

Reusing The Same Password on All Sites

Written: February 8, 2019

Online life is complex, so we may take a shortcut and use the same username and password for all of our online accounts, however if there is a data breach and the hackers find out that unique combination, then they may take over some or many of your online accounts. I have an account with Nest and they sent out a very information email alert this week that I wanted to share with you about this security issue:

Hello,

In recent weeks, we’ve heard from people experiencing issues with their Nest devices. We’re reaching out to assure you that Nest security has not been breached or compromised. We also want to remind you of a few easy things you can do to get the most out of Nest’s security features. 

For context, even though Nest was not breached, customers may be vulnerable because their email addresses and passwords are freely available on the internet. If a website is compromised, it’s possible for someone to gain access to user email addresses and passwords, and from there, gain access to any accounts that use the same login credentials. For example, if you use your Nest password for a shopping site account and the site is breached, your login information could end up in the wrong hands. From there, people with access to your credentials can cause the kind of issues we’ve seen recently. 

We take protecting our users’ security very seriously. For added password security, the team looks across the internet to identify breaches and when compromised accounts are found, we alert you and temporarily disable access. We also prevent the use of passwords that appear on known compromised lists. While we can’t stop password breaches across the internet, we’re committed to limiting the impact of compromised credentials on Nest Accounts. 

While we continue to introduce additional security and safety features, we need your help in keeping your Nest Account secure. There are several ways for you to protect your home and family. Here’s what you can do:

Enable 2-step verification: The most important thing you can do is enable 2-step verification. Security experts agree that 2-step verification offers an additional layer of security. You’ll receive a special code every time you sign in to your account. It’s easy to do – find the steps here.
Choose strong passwords: Create a strong password and only use it for your Nest Account.
Set up Family Accounts: Don’t let other people use your email and password to sign in to the Nest app. Invite them to share access to your home with Family Accounts.
Be alert: Be on the lookout for phishing emails designed to trick you into sharing your email address and password.
Protect your home network: Keep your home network router software up to date and only share those credentials with people you trust. Set up and use a guest network if your Wi-Fi router supports it.

It’s a great responsibility to be welcomed into your home, and we’re committed to keeping you and your Nest devices safe. 

If you have questions or need additional help, please reach out to Nest Support

— rishi
VP/GM of Nest

Tags: , ,

Thank You Notes

Written: February 5, 2019

In our modern era of digital technology the old art form of hand writing a thank you note seems to have been forgotten, except that I just received such a nice thank you note from the Tualatin Chamber of Commerce after renewing my annual membership. Enjoy your day, and maybe consider writing your own thank you note for a special client or person in your life.

thank you
Thank you
Tags:

Goodbye Google+

Written: February 1, 2019

Social media over the years has taken many twists and unexpected turns, so it was not too surprising to hear that Google decided to shutdown its social media platform named Google+. I did open a Google+ account for myself personally and a Google+ Page for my business, Tualatin Web. One of the issues that I quickly saw with Google+ was that they didn’t allow you to auto-post to their platform, unlike Twitter, Facebook and LinkedIn.

Google+

Here’s the official goodbye letter from Google:

You’ve received this email because you have a consumer (personal) Google+ account or you manage a Google+ page.

In December 2018, we announced our decision to shut down Google+ for consumers in April 2019 due to low usage and challenges involved in maintaining a successful product that meets consumers’ expectations. We want to thank you for being part of Google+ and provide next steps, including how to download your photos and other content.

On April 2nd, your Google+ account and any Google+ pages you created will be shut down and we will begin deleting content from consumer Google+ accounts. Photos and videos from Google+ in your Album Archive and your Google+ pages will also be deleted. You can download and save your content, just make sure to do so before April. Note that photos and videos backed up in Google Photos will not be deleted.

The process of deleting content from consumer Google+ accounts, Google+ Pages, and Album Archive will take a few months, and content may remain through this time. For example, users may still see parts of their Google+ account via activity log and some consumer Google+ content may remain visible to G Suite users until consumer Google+ is deleted.

As early as February 4th, you will no longer be able to create new Google+ profiles, pages, communities or events.

See the full FAQ for more details and updates leading up to the shutdown.

If you’re a Google+ Community owner or moderator, you may download and save your data for your Google+ Community. Starting early March 2019, additional data will be available for download, including author, body, and photos for every community post in a public community.  Learn more

If you sign in to sites and apps using the Google+ Sign-in button, these buttons will stop working in the coming weeks but in some cases may be replaced by a Google Sign-in button. You’ll still be able to sign in with your Google Account wherever you see Google Sign-in buttons. Learn more

If you’ve used Google+ for comments on your own or other sites, this feature will be removed from Blogger by February 4th and other sites by March 7th. All your Google+ comments on all sites will be deleted starting April 2, 2019. Learn more

If you’re a G Suite customer, Google+ for your G Suite account should remain active. Contact your G Suite administrator for more details. You can also expect a new look and new features soon. Learn more

If you’re a developer using Google+ APIs or Google+ Sign-in, click here to see how this will impact you.

From all of us on the Google+ team, thank you for making Google+ such a special place. We are grateful for the talented group of artists, community builders, and thought leaders who made Google+ their home. It would not have been the same without your passion and dedication.

Google LLC 1600 Amphitheatre Parkway, Mountain View, CA 94043

You have received this mandatory email service announcement to update you about important changes to your Google+ Page, product or account.

Tags: ,

Blog Tags

Recent Posts

Blog Directory & Business Pages at OnToplist.com