Vicenza MWR Marketplace Terms of Use

VICENZAMWR MARKETPLACE WARNING ABOUT PHISHING SCAMS

In computing, phishing is an attempt to criminally and fraudulently acquire sensitive information, such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication. eBay, PayPal and online banks are common targets. This web site is no different. Please be aware that if somebody sends you an email that seems to be good to be true, it probably is. Phishing is typically carried out by email or instant messaging, and often directs users to enter details at a website, although phone contact has also been used. Phishing is an example of social engineering techniques used to fool users. Attempts to deal with the growing number of reported phishing incidents include legislation, user training, public awareness, and technical measures.

Phishing with you as the "bait"
Recent spikes in phishing, spearhead phishing, and recently more sophiscated phishing, requires educating the public on the risk associated with clicking on embedded links in an Email and providing personal information to a web site. We all hear about, but do we pay attention? And, if you know personally, have you educated your friends, family members, and others close to you? Millions of Emails move about the internet everyday, and an increasing percentage of those Emails are scams. These scams usually offer get-rich-quick schemes, or tell you that your bank account is expiring or that you've had a recent upgrade to your account requiring you to log on, and the list goes on.

The best thing to do: NEVER click on any link in an Email, but instead you should type the bank or company website directly into your web browser. Then, query the bank or company to verify the information in the email, visit web sites that show you the latest schemes. Whatever you do, be very wary of clicking any "Click here", "Register here" or any other link in an incoming Email.

Frequently asked questions:

Should I reply to Emails, or pop ups?
If you reply to their Email, they've now got confirmation of who you are. If the Email or pop-up messages ask for personal or financial information, don't reply and don't click on links in the message. Do not cut and paste a link from the message into your Web browser - phishers can make links look like they go one place, but they can actually send you to a completely different site. Be extremely cautious about opening any attachment or downloading any files from Emails you receive, regardless of who sent them.

How do scammers fool us?
Scammers send an Email that appears to be from a legitimate business and ask you to call a phone number to update your account or access a "refund." They will try to ask you to provide personal information such as your SSN, credit card number, bank account number and address. If they provide a telephone number, the area code they want you to call does not necessarily reflect where the scammers really are because they can use Voice Over Internet Protocol technology. If you need to reach an organization you do business with, call the number on your financial statements or on the back of your credit cards, or type in the web address yourself.

What can I check that may warn me that I may have fallen victim to a phish?
One factor that should tip you off is the use an "old" Email address. Example: smithj@hq.5sigcmd.army.mil. Most recipients haven't used this Email address format since the establishment of AKOl. An old Email address should make you suspicious. Several USAREUR Email accounts were recipients of a sophisticated Email on 26 September that was carefully targeting unique IT interests. This Email came from "defenseforum.awardspace@yahoo.com" and the subject was "Your account at DefenseForum - Tloma". The Email starts off with an apology informing the recipient that a malicious user modified the Defense Forum mail system, and that it is possible their account was erroneously enrolled in their forum. It informed the recipient that all they needed to do to correct this problem was click on the link provided. It included links to subscribe or unsubscribe from the Forum, but the links didn't match. Two links were to a dot com (.com) and two were to Canada (.ca).
Be sure to review credit card and bank account statements as soon as you receive them to check for unauthorized charges. If you find that you have been scammed, visit the Federal Trade Commission's Identity Theft website at www.consumer.gov/idtheft.

Is there a place I can send phish Email to warn others?
Do not forward a phish Email to any friends and family. If you want to warn others, forward the information that you have received a phishing Email to spam@uce.gov and to the company, bank, or organization impersonated in the phishing Email. You may also report phishing Emails to reportphishing@antiphishing.org. (The Anti-Phishing Working Group, a consortium of Internet Service Providers, security vendors, financial institutions and law enforcement agencies, uses these reports to fight phishing). You may also notify your IAM/IASO so the incident can be reported, but do not send them the Email. This is important even if the next move is to delete the offending Email. Our best defense against Phishing attacks is to keep the community aware and work to prevent exposing personal or official information to the wrong group, or person.

How do I protect myself financially?
Don't Email any personal or financial information. Contact your bank or credit institution if you find changes or charges to your accounts that you do not recognize. Periodically check your credit report. In some cases, these changes or false charges could affect your credit rating; and, you may have to contact the bank or company to assist with getting any dunning notice removed from your credit report.

How can I protect myself with software?
Use anti-virus and anti-spyware software, as well as a firewall, and update them all regularly. DoD offers free anti-virus software to DoD personnel to use on their home computers, as well as other protection software available to DoD employees at reduced prices (Spam Killer, Personal Firewalls, Privacy Service, etc). This service is offered to DoD employees at:
http://us.mcafee.com/root/landingpages/afflandpage.asp?affid=106-01&lpname=default&cid=7236

I'm still not sure what Phishing is. Where can I find out more?
Go to this URL to take the Phishing Quiz:
http://www.onguardonline.gov/quiz/phishing_quiz.html (It is legitimate).

A perfect score means you probably know what you're doing. CONGRATULATIONS! Now, tell your friends and family to be cautious and always aware.

Now, all of that being said, please be aware that there are bad people out there that will do anything to part you and your money. VicenzaMWR is not responsible for anything that goes on between users of this web site. By placing ads for all to see on the internet, your email address is also available for all to see. If somebody sends you an email that seems to good to be true, it probably is. Don't get caught in a scam because your eager to sell your car so you ship it to some foreign counrty in exchange for a check that you won't be able to cash. Here is an example of a bogus email that was recently sent to many of the users on this web site:

__________________________________________________________________

From: mikemary1911@hotmail.com
To: XXXXXXXXXXXXXXX
Subject: Reply To Your Ad at the MWR Marketplace

[1.] Do you accept a ( Cashier Check / Money Order ) as a mode of payment?

[2.] What is the final asking prize you can go at last?

[3.] Will you let our shipping company to come to you house for the pick up of the item cos we don't want you to worry yourself about the shipping of the item.

[4.] You are to send your NAME,ADDRESS,TEL # to mail out the payment today.

[5.] Will you be able to send the excess fund back to the shipping company via western union money transfer same day you receive and cash the check for the arrangement of the home pick up from your house down to my client.shipment. I'll like this transaction to be kept in utmost trust

Thanks

___________________________________________________________________

If you have received this email, we apologize, but, again, we are not responsible for what users access the site and what emails they may or may not send you. To read the current Terms of Use for the MWRMarketplace.com please click here.