The Lowdown

Keep alert - email scammers continue to get more convincing!

UPDATE (30/03/2017) - Although this article is more about dealing with email scams, social media scams are also on the rise - have a read of this article to see just how clever the scammers have become.

Did you know that phishing attacks (the name given to an email scammer trying to "fish" for personal and financial details from an unsuspecting recipient) are now the most common source of ransomware and malware? According to Barkly, 85% of organisations have been the victim of a phishing attack, and 60% said that the rate of phishing attacks being received has increased since 2014. It's vitally important to be aware of the risks and the warning signs!

Yesterday, I received an email at my home email address that was worded as follows (names have been changed to protect the innocent!)

Good day to you, Gareth!

I am bothering you for a very urgent occasion. Allhough we are not familiar, but I have significant ammount of information concerning you. The fact is that, most probably mistakenly, the info of your account has been emailed to me.

For instance, your address is:

[redacted]

I am a law-abiding citizen, so I decided to personal information may have been hacked. I attached the file - Griffiths.dot that was sent to me, that you could learn what information has become obtainable for deceivers.

Document password is - 2412

Sincerely,
Rio Sonnenthal

Being knowledgeable about this sort of thing, alarm bells immediately rang. An unexpected email, from someone that I don't know, with an attachment? This meant it was almost certainly a virus or some other sort of malware. However, the presence of my real postal address in the email (which has been redacted above for obvious reasons) is something that I've never seen before on an email like this, and I'd be lying if I said that it didn't make me consider the possibility that it may be genuine.

Subsequent inspection of the attachment shows that it is a Word document template that downloads a couple of image files from the Internet, one of which contains a malicious program designed to sit on your machine harvesting banking and financial details - definitely not something you want on your computer!

The fact that the document is password protected is also a method of trying to hide the presence of malware - the file is encrypted and is therefore harder for anti-virus and internet security packages to identify as malicious.

How to avoid being the victim of a phishing attack

As the scammers get more and more sophisticated, it becomes increasingly difficult to separate legitimate emails from the scammers. However, there are always warning signs and elements of phishing emails that should ring alarm bells:

  • Is the email from someone you know? Check the email address the email is being sent from, not just the name. Also, even if it is from someone you know, keep in mind the possibility that they may have been hacked and look out for other warning signs - perhaps contact them through other means to check if they sent the email, you may be doing them a favour as they may not know their account is sending out scams.

  • Does the email address you by name? Most phishing scams out there will not address you by name, instead starting with something generic like "Dear Account Holder" or "Dear Customer". However, as you can see from the email above, the scammers are now catching on to this and are stepping up their game!

  • Does the email have attachments on it? If you receive an email with an attachment that you are not expecting, do not open it! Even if the email seems innocuous and just claims to contain some funny pictures of cats, most attachment types can harbour malicious software.

  • Is the email asking you to sign in to an account, enter personal details or telling you to change your password? If you receive an email asking you to do this, never click on any links in the email - instead go directly to the website in question by typing the address into your browser. A link in an email like this is more than likely to be fake, and take you to a page that looks identical to the website in question - but it will harvest your details and then sell them to criminals.

  • Is the email asking you to transfer money? This is a very common fraud tactic, not only against personal users but also against businesses - so called "CEO fraud" - a member of staff will receive an email claiming to be from their CEO asking them to urgently transfer money to a specific bank account for a plausible sounding reason. In reality, the "CEO" is just a scammer specifically targeting organisations. Over 35% of companies have fallen victim to this scam - don't be one of them!

  • Is the email badly worded and littered with spelling mistakes? English is often not the scammer's first language. Poor spelling and sentence structure is a sure warning sign of a scam, but is also sometimes used deliberately to try and avoid spam filters and other email blocking software - stay alert.

  • Is your anti-virus/internet security software up to date? In an ideal world, you'd be able to spot scams before falling victim to them and opening their attachments - but sometimes, just as I almost did yesterday, something might slip through. In these instances, it's vital that your computer's anti-virus/internet security software is kept up to date - it's your last line of defense.

Above all else - if you are in any doubt whatsoever as to the veracity of an email you have received, delete it!.

UX: User Experience

How many times have you visited a website which you’re certain offers what you’re looking for, but you’ve been infuriated by how the website works? Hard-to-find buttons, menus that don’t work properly, and information obscured by popups or rubbish layouts are common complaints.

the importance of usability online

There are now more ways to browse the Internet than ever - your desktop computer or laptop, a tablet, your smart phone, even some watches! It is imperative that your website, whatever your offering, is easy to use and browse for your visitors. This is what we mean when we talk about User Experience (UX).

Every decision made when designing your website is an opportunity for improvement! Will my main menu be easiest to find at the top of the page, or will users find it useful if it sticks to the top of the window? Does this paragraph of text need to be displayed straight away, or should it reveal itself when the user moves their mouse cursor over this image? Will my customers expect to be returned to the home page when they click my company logo?

browse our browsing tips

  • Your website’s job is to give people the information they’re looking for as quickly as possible, with a minimum of fuss. Strike a balance between offering routes to that information, and not overloading visitors with too many options!

  • Keep your page layouts tidy and consistent. That concept for a different-shaped-page-where-the-text-runs-in-a- spiral-from-the-inside-outwards may be on brand, but how likely is it that the average user will stop and spend a minute wrapping their head around it?

  • Don’t try to squeeze too much in. Like we mentioned about not overloading visitors with options, it is often counter-productive to feature too many products or services at once. After all, not everything can be the most important thing on the page! This is particularly important for mobile website layouts, where space is at an absolute premium.

  • Usability before user ability. Remember, no matter your industry, you’re catering to a wide range of computer literacy. Your website should offer speed and reliability to your more capable visitors, and gently guide those that know what they need but require help getting there.

Out with the Old

We hope 2017 is being kind to you so far. In (great) anticipation of next month’s start to Daylight Saving Time, Source is having a ‘spring’ clean. Since moving to our current offices in 2014, we’ve seen an influx of new clients and exciting projects. Many of these include packaging and photography, and with these types of project come prototypes, props and equipment. Over time it adds up!

Virtually Reality

2016 was the year virtual reality became, well, a reality. You might have seen people wearing these oversized headsets, a futuristic gateway to a digital world that leaves you looking like a muppet to onlookers...

Our designer James hits a virtual villain with a frying pan.

Our web developer Kit dodges digital bullets!

Charity competition a winner at Source

A leading Shropshire design agency came up with a novel idea to celebrate 25 years in business with an interactive online competition, not only raising money for a county charity but also raising awareness of their clients’ products and services.

Shropshire creative agency celebrates 25 years in business

A Shropshire creative agency launched by a young woman with just one client – and now boasting an impressive list – is celebrating its 25th successful year in business.

Managing director of Shrewsbury-based...

The Source team, from top left: James Musgrave, Zara Pritchard, Glenn Millar, Kirsty Smith, Lauren Quayle, Kit Evans, Steph Campbell, Gareth Griffiths, Sally Tringham and Paula Savage

A Beginner's Guide to SEO

If you’re new to SEO and need a simple guide to the concept or just want to brush up your SEO knowledge, our Beginners Guide will definitely be of use to you! Here we ask the questions you want to know the answers to.

Marketing in the era of Pokémon Go

By now, you’ve likely been exposed to Pokémon Go in one form or another - whether you’ve seen gaggles of kids (or adults) gathered around trying to catch a Pikachu, or if you yourself have felt the call to catch 'em all! The game is already a phenomenal success, with an estimated 10 million players worldwide, and as of writing it has yet to be released in the franchise’s home country of Japan.

A wild Pokémon appears in the game's AR view

The in-game view of Shrewsbury, leveraging Google Maps data to recreate the town

Bang! On….. with a shooting industry award for best website 2016

Source are delighted to announce that Boxall & Edmistion gunmakers have been recognised by the UK’s shooting industry and awarded the ‘best website 2016’.

The prestigious Shooting Industry Awards are held annually by Time inc....

Source Sponsor a high flyer

Source are pleased to announce their sponsorship of Wing Cadet Warrant Officer Hope Millar (pictured today with Honorary Group Captain Carol Vorderman RAFVR(T)) for part of her fourth coming trip to Canada as part of the International Air Cadet Exchange (IACE) program which links the Air Cadets with the world.

Share this page...