DO NOT open this email! 

and thank YOU for everything you do. Always learning so much and realising just how much I still have to learn when I watch your channe! Thank you for the education! 🔥🔥🔥

@@LironSegev Oh yeah John Hammond's video you do learn so much, about digital awareness.

appreciate you!

Exactly

Moustly and especially those UNEXPECTED!

Epic. Mahalo

thank you and thanks for being here!

nice!

I do that to most websites, but I should start doing that for my email sites.

Much appreciated

Awesome, thank you!

Howzit - thanks for watching!

thank you!

No worries!

Glad it was helpful!

You bet

Thank you kindly!

Very welcome

Any time!

😂

Always happy to make you laugh and smile! Hugs!

My pleasure

So many free tools these days

Thanks for watching 🔥

true - just be very careful not to click on the attachment

​@@LironSegevBelieve me Liron Ive been trying to get my sister to log out of everything and not open attachments. In fairness she has calmed down a lot. Only because I got fed up fixing her computer 🙄 But Im going to show this vid to her. Hopefully it will knock a bit of sense. Thanks for the vid. 👍

Thanks for being here 🔥

Not just by opening the email - but opening the attachement. Its not a real PDF or a MP4 file, its an executable file that runs like any other program

np

Smart. Window defender isn't perfect but has come a long way since it was crap. I typically have an anti virus on a phone too

I like to remove them so I don't by mistake click on it.

depends on the malware and what is does

You are so welcome!

Descktop clients. You can't preview an attachment in mobile app (at least not in any app I have seen). It is also typically aimed at Windows machines not mobile systems. When you click on a PDF or a Word document - not doulbe click - it opens the document inside your email so you can see it. Malware uses that to trigger. The Anti virus can get disabled and there are ways for it to add itself to the "do not scan" exception list so your anti virus wont stop it.

@LironSegev thank you! So if we're just using email via a web browser or mobile app, this really isn't a threat/issue, as long as we don't download attachments? Thanks so much for your response. Love your channel. Keep up the great work!

​@@NorbertFarley I would not say that. Yahoo Mail has a preview feature for various attachments, so I could see this malware getting triggered.

@@fredericapanon207 hmm... is there a way to disable that setting?

@@NorbertFarley on the desktop, you need to select the Preview option in the menu that appears over the attachment when you hover your cursor over the attachment. The other option is to Download. So just don't select the preview. @LironSegev, can malware files disguised at Jpegs be inserted inline into an email? That is the one way that pictures files display upon opening an email that I can think of. I would suspect not, but I don't know.

all anti virus checks email attachements. If yours doesn't, it time to get a new one

thanks for being here

M.T LA million @@LironSegev

actually have one coming up soon

not a great attitude as that makes the was "us" ie the tech savvy people vs the "them" the not so tech savvy. That is not right. It is "us" vs the "hackers". We need to educate not make people feel like they are dumb for not knowing. I don't know anything about my car, so I go to a mechanic. We all don't know everything about everything.

@@LironSegev Sorry dude, but the guy has a point. This is nothing new or sophisticated, it's kids stuff phishing that's been going on unchanged for over 30 years. It's not as if nobody has ever been warned about scam emails, calling it "hacking" merely shifts responsibility for security away from the user and it's a fashionable excuse. I do repairs etc for a small technoshop with a fairly large catchment area, I get around half a dozen of these cases every year and the first thing I'm told is "my email/bank/card/other online service account has been hacked". My immediate response is "no it hasn't, you've given that information away, now let's see what you did" and generally within 30 minutes we've identified the email they fell for, the red flags in the email, and exactly what the user did to give their information away. The killer question in a lot of these cases, particularly with the fake login/update emails is "Why did it not occur to you to ask yourself why (for example) Microsoft Customer Services has sent you an important update or a login verification request email from a Gmail address?" As a matter of routine these days I ask my clients if they store their logins on their computer and advise them not to for the very reasons given in the video, very few of them stop doing that even when I tell them I can give them their complete list of logins in 60 seconds and if I can do it anyone can. Every now and again (with the permission of the victim and with their details removed) we highlight one of these emails on the shop's Facebook page along with every detail that shows them to be fake. That appears to have little effect. Finally, for the last 3 years we've run a free Fake Email Checking Service (also featured on the shop's Facebook page), just forward the email to us and we'll check it out. Nobody has used it. I fully agree with you that the war is against the bad guys and that we need to educate people about them but we also need to recognise that we live in a world where people have to be told that their coffee may be hot and that their nut-based comestibles may contain nuts, and that there are times when the only effective form of education is to call out dumb for what it is and let dumb go do what it wants and suffer the consequences.

While I agree that DO NOT DRINK labels on pain tins kinda tell a story about the people, I am still a big fan of not making it about smarter tech people vs not-so-smart tech people. It doesn't matter how long we have been educating, I still can not tell a 68-year-old man who just lost his life's saving "Tough shit - now you learned the hard way not to click on links." An entire generation didn't grow up with tech and is being taken advantage of. And to make them feel stupid for it is just wrong. It's not how they are wired to think because it's not in their psyche. There is also an entire set of people where tech is just not their world. They had no idea about Apple Vision Pro, couldn't give a shit about AI, and have had the same phone for 5 years since it still works. So when they fall for a scam, are you really going to blame them and not the scammer? A waiter/ waitress working three jobs trying to survive is the problem because she thought her bank needed her to verify her PIN - so she is the problem because she isn't up to date with all the tech in between her jobs and she is dumb and should suffer the consequences? Sorry, but I can not get on board with that. That is why I keep making these videos - in the hope that someone will have a conversation somewhere and they would warn others about whatever scam is going on. We have to keep fighting the threat actors and not the "dumb people who fell for it"

@@LironSegev Thank you for taking the time to reply. To be clear, I'm with you on the tech elitism thing, I've been against it since I started working with and on computers. I tell my clients that what I do isn't sorcery, they can do anything I can, and have talked myself out of a good few dollars by teaching people how to forestall or fix problems. I also don't pile on to people who have lost out as the result of a scam, but for every example you can give of someone who has understandably been scammed I can give one of someone who has been scammed because they don't give a moment's thought to the security of their tech or their information or apply even basic principles of common sense. Probably the most important lesson I ask my clients to learn is that the security of their tech and information is entirely their responsibility, everyone knows scams exist and everyone has a responsibility to do their best to avoid being scammed. The internet is awash with good advice (including yours) on how not to get scammed, but time and time again we see the results of that information going unsought or unheeded. There will always be one born every minute, and no amount of education will fix that. Depressing, really. All that said, another good video, I hope it hit the target somewhere, and a belated congrats on a million subs.

true story - you can't fix everyone! Thanks for helping to spread the word and keeping people safe. We can do what we can but can't save everyone unfortunatly. Appreicate the "chat" 🔥

Fails to understand the difference between Advance Proftection and Enhanced Safe Browsing....but ok - lets go with it. So you are on Google Chrome, trying to log into Google account and your concern is that Google will know? eh... ok.

Depening on the site, but if you choose Rememeber Me it shouldnt even ask you for the username. It will just like you straight in. That is literally the reason for that checkbox.

just having it in your Outlook doesn't mean it is opened. When I say preview is when you click on it so it loads up inside your email without having to double click on it.

He means don't open or click on an ATTACHMENT

really depends on the malware - some load immediatly. Others download software in the background without your knowledge. Others are not actually MP4 files but they are the malware.

*If* it is an .mp4 it is _never_ malware and you will _never_ get an infection when you play it by means of File->Open in the .mp4-player. The problem is, that some .mp4-files may be disguised executable files (like e.g. .exe). If you open it by doubleclick they will get executed imstead of being played in the .mp4 player. This is different for filetypes that are designed to _contain_ executable code (like .pdf, word, excel, ...). There the code will be executed by the corresponding application. This means you may be infected by those even if you use File -> Open from within the application. I receive and open daily several files by email for 30 years now (including tons of .pdf and word or excel) and and was _never_ infected. It is all a matter of correct user behavior and correct system configuration. My Windows OS is always set to show file extensions (file types) and e.g. my .pdf reader has the execution of code disabled.

Please show me an incident where it does and doesnt get removed.

@@LironSegev well I'll try again. Since YT won't even allow links to YT. A channel named woodgears had a video from 9 days ago showing how he he got compromised via Dropbox.

ahhh that is different. In this case it was RAR file. Its the same as having a password protected ZIP file. Those systems will not scan those documents for privacy reasons and some technical reasons too. If you try to download a large file from Google Drive, it will literally tell you on the screen that is will not scan it. If you get a PDF or a Word document in a cloud storage system, it will scan those first and send you a link so you can view it in the browser. Then you can download it. Imagine if you had your confidential information in a zip file and google found a virus in it. People would be outraged at Google for "looking" inside their files.

@@LironSegev can't see who you're replying to, but it sounds like as long as the file is too big or is password protected it could be malware.

@@Plasmacore_V it looks like he deleted his comment. and yes - never download or accept any password-protected files.

thetechieguy.com/ask

k

You're welcome 😊

Nope. That only takes care of a tiny fraction of the issue.

what about them?

@@LironSegev small enough to get virus inside the computer it can be info stealer ?

Preview the attachment not preview the email. Literally said that 2:49 🤦

🔥

there are always hackers who develop systems to bypass security - so its def possible. But if the file is a PDF and not a zip file then this is less of an issue.

nope

yup

When you click on a PDF or a Word document - not doulbe click - it opens the document inside your email so you can see it. Malware uses that to trigger.

@@LironSegev OK, but just looking at the email, without clicking or double-clicking on the attachment should not be an issue.

Yes. Because a password manager will put the password in for you. If they steal the tokens then they get an already logged into website.

​​@@LironSegev the password manager makes it easier to re-enter usernames and passwords. What you are saying is that this needs to be combined with logging out of EVERY session. Please correct me if I'm wrong.

you are def safer (although there are hackers groups who are specifically targetting Linux too)

if its not somethig you are expecting - delete

@@LironSegev ohh I am well aware.

yup - mostly. However, be aware that there are groups who are specifically attacking Linux so its not immune, much like Mac isn't when hackers realized there is value there.

@@LironSegev True, but I still have the habit from my Windows days of never opening an unexpected attachment, and don't do preview in Thunderbird, so it should be cool.

appreicate you

haha lets not get too crazy

Do you logout every single day from your Google account on all your devices? 🤔

I confess that I use "remember me" for my webmails: YahooMail, GMail. I cannot think of any other sites where I use "remember me".

You are so welcome! Still need to make a trip down under

@@LironSegev you really do need to visit many people don’t realise how big Australia is. Look after yourself. 🦘🐨🇦🇺💐