Trustwave Vulnerability Scan Scam

This one is potentially a better attempt at a phishing scam than most.

Supposedly from TrustWave, it tells of a failed vulnerability scan on my network and to view the results online.

Visiting this site potentially loads Malware, or tries phishing techniques to get access to your systems.

One interesting aspect of this is it predicts IP ranges that will attempt to access your network, which makes me lean toward a malware attack.

This is an automated email message to prevent you that the scheduled TrustKeeper vulnerability scan of YOUR NETWORK SYSTEMS has completed and is not compliant.

IMPORTANT: During the scan, TrustKeeper Discovered several Unsecure systems. Trustwave strongly recommends you review these findings as your overall PCI DSS compliance status may be affected.

TrustKeeper generated a vulnerability scan report. You may view these results by accessing TrustKeeper at:

https://login.trustwave.com

User Name:webmaster@deepweb.co.nz

You will receive an e-mail confirmation when the scan completes and your results are available. Please note that this can take up to three days.

Note: If you monitor your network for activity, note that the TrustKeeper scan may originate from IP addresses in these ranges:

200.16.208.0/24
61.37.230.0/24

TrustKeeper is a certified remote assessment and compliance solution created by Trustwave and designed to help merchants meet the PCI DSS and achieve compliance with the associated programs of VisaŽ, MasterCardŽ, American ExpressŽ, DiscoverŽ, and other credit card associations. The TrustKeeper solution is an integrated easy-to-use tool that removes the challenge of navigating the complex PCI DSS requirements and provides a “one stop shop” for merchants to certify compliance.

DO NOT REPLY TO THIS MESSAGE VIA EMAIL.

This mail is sent by an automated message system and the reply will not be received. Thank you for using TrustKeeper.
This email was sent to: webmaster@deepweb.co.nz
This email was sent by: Trustwave
80 West Madison Street, Suite 1080, Chicago, IL, 60408, USA

We respect your right to privacy – view our policy

So a new attack method, using fear to cause people to click the link and open themselves up for the real attack.

Posted in Email and Web Scams | No Comments »

Instructions for Adding an Email Account

I get lots of requests for setting up an email account in different email programs, so I thought I would provide a list of the best instructions I have found that I pass on to my clients.

All thanks to those that have provided these resources, it seems silly to replicate these over and over on the web.

If you know of a better one than what I have listed, let me know in the comments and I can look at them and add them in.

I am only listing one set of instructions for each Mail program version that I think is the easiest to follow.

Remember, these instructions will need to be supplemented with your own specific settings such as login / password and mail server settings. Contact your hosting provider for these things.

Mac OS

• Mac Mail
• Outlook

Windows

• Thunderbird
• Outlook 2003
• Outlook 2007
• Outlook 2010
• Outlook 2013
• Outlook Express
• Windows Live Mail

So if you have other clients, other operating systems, let me know and I’ll add them to the list.

Posted in Howto, Software | No Comments »

New Sites for May

School Holidays are upon us, but the work never ends…

Here are some new and updated clients sites we have completed recently.

• Ruffinos Pizza and Pasta – Our favourite Pizza place in Paihia
• Law Tune Up – marketing and library services for Lawyers
• Wils0n Trollope – Fashion site we assisted in E-Commerce setup and template customisation
• Bay of Islands Blog – Stories from around the bay
• Theresa Reihana – Maori Artist from Northland
• Te Whare Whiri Toi – Artist collective
• Koruhealth – Air New Zealand Health Scheme
• Gold n Gifts – Paihia Gift Shop
• Peppertree Lodge – Backpackers in Paihia
• Toptrail – Ride the Cycleway in Northland
• Mason and Mason - Monumental Masons in Kaikohe

Posted in Web Design | No Comments »

Shopify and Payment Express

I have been doing some work for a client in Shopify. First time I have worked with it and so far it’s not too bad.

However, some things have had me scratching my head.

One in particular was trying to test the payment gateway to DPS’s Payment Express. (PxPay)

After choosing the right one (There is PaymentExpress and Payment Express???) I kept receiving the error message:

“error – failed to get token – message was MerchantReference too long”

The problem lay in this instance with the Shop name.

The client had a shop name that was 42 characters long, I reduced it to just 15 characters and this worked.

Given the Reference limit is 64, there is obviously other information added to the end of it, what this is I am not sure yet it may appear on the clients statement, but may include product name or a unique code.

Unfortunately, DPS did not write the code and so they are not able to provide any help with any issues connecting to their product via Shopify. I haven’t tried the Shopify support, but I am not sure if anyone in their employ wrote the code either.

Posted in Coders Stuff, Software, Web Design | No Comments »

So Much To Look Forward To

Well it is now the new year, resolutions have come and (for many) gone.

Following on the from an interesting end of the year, this one carries much promise.

New contacts, new partnerships and a bunch of amazing clients mean it will be a most interesting year.

Taking a wider view, upcoming and recent events including Mr .Com’s new initiative to seemingly circumvent copyright and, from the coverage of CES this year, the convergence of many of the areas of tech.

Further through they year, we will get our obligatory iWhatever release, of which we are certain the features that could have been released this year (but held back) will make an appearance.

Will they be thinner, will they be lighter? Probably.

Who will die first? RIM when Blackberry10 fails or Nokia, when Windows 8 doesn’t bring them the sales they need.

Will Apple buy their way into mapping that won’t get you lost?

Will WindowsRT disappear as soon as the Pro (read: actually ready) version ships?

So many questions, so much meh!

I want to be wowed by something that stands out, makes everyone sit back. Everything so far seems to be all about minor upgrades to suck the last of our upgrade dollars from us.

Who do you think will provide the spark? Apple? Google? Amazon?

Posted in Soapbox | 2 Comments »