Current Articles

.ASIA Scam: Domain Registering In Other Countries


    

.ASIA Scam Some things will never change and that’s where the .ASIA scam comes into play.

The scammers try to social engineer you into thinking something will happen if you don’t act, and they get whatever it was they were after from you.

In this case, and it’s for people who own domain names, we have the infamous .ASIA scam trying to get your domain registered in other parts of the world.

What Is The .ASIA Scam?

Generally the email they send out to people looks like a warning telling people that if they don’t act now that their domain will be registered in an Asian TLD (Top Level Domain) such as .cn, .co.jp and .asia.

The .ASIA scam works by telling you that unless you register your business domain it will be lost to another company.

Of course, this doesn’t come free and if you reply to the e-mail then you will be asked to pay a fee or even possibly participate in a fake bidding war for your domain. If you ask who is trying to buy your domain, they will tell you that information is private (in other words: doesn’t exist).

In the end, you gain nothing and the scammer gains your money without having to use malicious software or a virus, just simple social engineering.

How The E-Mails Get Pass Your Filters

Most believe that any scam e-mails will be caught by your spam filter and anything legit will go to your inbox.

Especially when it comes to something such as your domain renewal. But every once in awhile you will get one that comes through to your inbox, undetected by spam filters.

Why? Because spam filters cannot read text in pictures.

So the new line of thinking the .ASIA scammers have is to put the URLs into clickable pictures. If the URLs they use are put in text in the email the spam filter picks it up and files it as spam for you. Therefore, the images allow for the e-mail more likely to be placed in your inbox.

Protect Yourself From Social Engineering

At the end of the day this all comes back to being socially engineered.

Assuming one of these emails did hit your inbox they can be ignored (or better yet, report as spam.) If you believe these emails to be legitimate, even though they likely are not here are a couple of things you can do to verify the authenticity of the sender:

bullet Hover your mouse over the URL or picture but don’t actually click it. Look at the URL that comes up when you hover your mouse over it (in web browsers down at the bottom and in mail clients like Outlook it should come up as a tooltip at your mouse.)

Does the URL that shows up match the URL that was given in the email? If no, this email can be thrown out as it’s not just scamming it’s also phishing.

bullet Check the email address that the scam email is being sent from. No one should be taking an email that tells you to act now from someone with the domain of hotmail.com (or for that matter any domain that ends in .ru or .cn)

Have you received a .ASIA scam e-mail to your inbox? What did you do when you received it? Share your experience in the comments below.

Have an idea for our next post? Let us know!

Tags: , , , ,

This entry was posted on Wednesday, October 2nd, 2013 at 2:05 PM and is filed under security. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

Leave a Reply

 

Infinitech
470 3rd Street #103 | San Francisco, CA 94107 | 415-449-8900
© Copyright 2007-2013 | www.infinitechusa.net

Infinitech, a San Francisco IT support firm, serving small business computer tech needs throughout the San Francisco Bay Area, including Berkeley, Oakland, San Jose, and North Bay locations.