I have a suspicion that this is part of the process. This is how those beginners are learning and testing their abilities - those who don't have other hidden agenda.
@@gingeral253 moreso because corporate hiring structures are more exclusionary than inclusive... theyre more concerned with discerning why you font belong then figuring out if you could belong. And, they probably dont have the money to hire everyone so, it is what it is, but i think the mindset can definitely overlap though at time, it notoriously doesnt
The one thing the malware is most likely to do is keylogging. If you discover you ran a suspicious file too late, remember to check the startup folder and sign out or restart your computer.
This exact thing happened to me at work a few weeks ago, but what made it so pernicious, is that email came from someone I had gotten emails from before. The email sender had been spoofed. The blurred attached document was an invoice, and I do get invoices from this person, so it seemed legit. So I clicked on it. What it did, was started spoofing MY email address and propagating it all my contacts. Plus, it changed the settings in my Outlook so that sent email did NOT show up in my sent folder, so I had no idea it was happening until people started calling me about the email they were getting from me. Also, my network disabled my email address because it detected the spamming. It was a big mess, but we were able to clean it up. As far as we know it didn't do anything to our data or computer, because the IT tech checked everything out. It think it's purpose was just to propagate itself as a nuissance.
Sounds like you were lucky! That's good. But you really don't know for sure because, based on the events you mention, the attacker could have sent emails to himself with attachments from whatever your machine has access to (e.g. product drawings, specifications, personnel records, etc.), and you wouldn't know it because they didn't show up in Sent Mail. If you find out about it at all, it might be weeks, months or even years later when the information shows up in some unexpected way -- like a competitor has used your designs to make a new product your company was making. It can be pretty nasty when the effort of the attackers is focused with purpose, and not just a prank.
You're trying to hide behind social conditioning, but you were just dumb. Even tho it just happens that the person was sending you invoices.. they probably didn't do it in one note blurred and have an attachment inside behind a button, which then pop ups the warning about the said attachment. Here's the question: Which legitimate person would do this and for what reason? If they used to send it as .pdf before, why did they send it in this unusual way, where I have to click a button and open another file? The questions that never gets asked by people, who lack common sense and they proceed anyway. Also the microsoft outlook... your company really needs better IT that will install better email clients that detect and warn about spoofed emails and that wont allow malware to send emails from your end and hide it too.
@@beardsntools Well, one detail I forgot to mention, is that this email was actually forwarded to me from my boss, the owner of the company. He was actually the first one targeted, and just forwarded it to me as he normally would for an invoice to approve. So I had no reason to doubt it. Maybe it's not helpful to insult a victim.
honestly just dont check emails anymore lol. i only use mine for verification codes and havent had an issue yet. still good info to know, but extremely easy to not fall victim to this stuff, to the average PC user tho, this information is extremely important and im glad YT is recommending this video
Microsoft should not have file extensions off by default, and as an added measure, they should have the file extension in bold to differentiate it from the file name itself.
You also need to talk about those Telegram scams that are popping up all over RU-vid And RU-vid isn't doing anything about them. RU-vid security is absolute garbage
RU-vid "security" is mostly just automated systems these days - the cost of becoming a behemoth. This is a large contributor to the problem as it takes human intervention to reprogram / retrain / rerule the automated systems and this, of course, takes time.
Imagine if these intelligent hackers would use their gifts and talents to expose evil vs using it for evil, what a different world we would live in. Also if I'm doing the IT myself how would I block and prevent these scenarios?
Holy shite! Using a computer at all is like running through a minefield. I'm thinking of just going back to a typewriter, letters and postal mail. So sick of malware and scumbags who delude and mess with people like that. They are destryoing entire lives.
This seems to be the case for a lot of people, something has changed with the phishing tactics recently as I didn't get more than 1 or 2 a month for 3 years, now sometimes 5-6 a day. My security habits have not changed nor my mail client, combine that with the increase others have mentioned and phishy spam seems back on the menu for the moment.
Thank you for this information. You covered some very important points. I was once a corporate customer of Acronis and it was a horrible experience. The only parts that I will share is that they have no U.S. support and their developers are in Russia. No politics here, just sharing facts that you can use to make your own decisiond.
Thank you Thiojoe another thumb up for you. Thiojoe is literally the only youtuber I trust when it comes to tech. Your videos have always been so helpful. Still watch the old satire ones to as well just for kicks. Thank you man
Nah, the Unicode character is necessary for languages that read right to left, it’s not there for the shits and giggles. People who read those languages need to name their files too. I do agree that hidden file extensions should not be the default.
I got one if these from a legitimate source. They were hacked. It created a onenote file in the onenote cloud folder. It was invisible for the Windows browser but one note could see it. It created another file which fortunately i did not click. The onenoe malware could not be deleted and if one tried to open it it would create an additional file. IOS could see the malware file but not delete it. Windows did not see it. I reached out to Microsoft, they escalated the issued and after some time they were able to delete the file from my account. This was well over a year ago so I am describing this as best as I remember.
3:46 That stock video LMAO "Your file is ENCRYPTION Pay 10,000 USD FOR RECOVERY your file" with a 20 second timer. Even the fake tech support popups do better than that, come on. Didn't even start with the usual "OoOoPs, ..." 😆
As much as I hate scammers, it is really interesting seeing how they keep adapting constantly. It's like a nuclear arms race between them and cybersecurity professionals.
Thanks for sharing your experience with us. It really is baffling how far phishers go to scam people, specially the elderly. I'm like another layer of security for my relatives when they have doubts (which is like a 90% of the time). How I loath needless strife... 🙄
Ngl this would seen fun to do on a vm. Also I’m actually trying to learn how to hack and I hate the ‘stereotype’ (if u can even call it that) of ‘all hackers are bad and have malicious intentions’ when that’s not true.
So you're learning to be a white hat hacker?(a name for the opposite of the black hats which do the malicious stuff) (black hats do the malicious stuff and white hats dont
The letter from DHL at 0:43 is so obviously a fake, you'd be a fool to take it seriously. It begins with "Our dear customer" and it comes from the "Customer's Care" department. The language of the main sentence is also implausible. Anyone who doesn't spot this is really, er... too stupid to own a computer.😅
Hi, Thio. I have seen something similar in work emails. I’ll get an email with an Excel attachment but when I preview the file in the email it shows a blurred image in the background of an Excel spreadsheet but has an image of a PDF link in the forefront. I just ignore these emails because it’s suspicious.
yo joe your making huge amounts of money of these videos as it is, now we have to listen to your infomercials on your videos which pay u even more money, as a result of forcing me to listen to your infomercials every video gets a thumbs down, I give all youtubers a thumbs down when they force viewers to watch Infomercials that sponsors are paying you huge amounts of money for.
I have to disagree with the safe part of any program that uses the cloud. If you, or anyone thinks cloud systems are safe, you need to dig deeper. Stop storing your stuff on online clouds. Get a personal cloud if you need one that bad.
I tested it on MacOS and it only reverses the characters in front of the file extension. The file extension (as well as the point) is always shown last and in left to right order. So no problem for MacOS 👍😊
yes, most (outside of social engineering with is beyond the computer and pebkac) stuff that affects one platform doesn't really directly translate over - but good job, the cult leader thanks you for your post.
The emphasis is the command to grab the virus from an online server. That’s how you can bypass so many anti-virus software and preliminary scans only check known recognizable patterns.
Depending on your settings, SmartScreen and/or other "defender" related security stuff would stop it. There would at least be one or more prompts promising the sky is going to fall.
@@patsh1 well, windows is the only OS that even needs a file extensions. Linux and Mac have some file header that manages the file type. This header gets lost on NTFS so I think Mac still parses the file extension for compatibility or something, but I’m not sure. So Microsoft should upgrade their file system, potentially breaking backwards compatibility for increased security. But if you have your file explorer on details and look in the type column, it still states the correct file type as an executable.
0:15 We're talking about 30 years ago, right? I remember getting a naughty word document from a friend in 1998, and when I opened it, Word '97 told me that the document had macros in it and that they were disabled by default because they possibly posed a security risk (and then prompted me to decide between keeping them disabled or take the risk and enable them). As far as I know office blocks macros since the beginning of times...
You are right but I do believe, I may be wrong (old and tired), that one of MSes versions of Macro (currently version 4.0) had a bug which allowed circumvention of the built in check, hence it becoming a widely known issue.
1:50 - RIP all the frequent one-note users that clicked "Don't show me this again" previously when viewing a known non malicious document attachment. So i can see how this may be effective.
In that warning dialog box, buttons say: OK or CANCEL For me that's ambiguous. Does OK mean: "OK, I understand, I won't open the attachment" or "OK, go ahead and open the attachment" ?
Windows is a complete burning mess with several pretty coats of paint over it, with older decade-old layers seeping out as each time they cover it with less and less paint
Anybody else still thinking about the times where he used to make videos trolling people (I really laughed with those old formats) but he doesnt do it anymore but one isnt shure sometimes when starting the vid?
@ThioJoe - no, it isn't difficult to create the attachment, so long you've a Desktop-Variant of One-Note. You simply export the page… The app-variants (OneNote for Windows, iOS and Android) and the web-variant are all online-only and can't export this files and ONE-files.
Most versions of OneNote won't allow to create local OneNote-"files". They are usually cloud-only. Old versions might still be able to create them. So it is indeed unusual to get such a file.
That's the issue with this world is it's all just to get money in the end for a while I had friends who did this type of stuff for money to help their families pay for Bill's
@@Der_Rotsteiner nope doesn't work like that buddy wait till you get to the real world its cruel and you aren't getting stuff handed to you like all these billionaires and millionaires
people using other OS's, for various moronic reasons, feel second class - and they can get help in being dumb online from people who DO use windows but dont look at it as tool and develop complex emotions about it (a form of insanity, actually) and MS. People feel powerless, I guess this and other studid things invoked feelings of power to compensate. Or you know, you could vote better and make different life decisions. But that might actually work, and we dont want that - fanboyism instead!
AI art is now being overflowed with malware? Glad you gave me another reason to still draw with my own two hands instead of procedurally generating some random artificial art.
Here's a tip. If you right click on a supposed document, and you don't see the "Open with" option in the context menu, it's very likely a virus. Files that are *not* executable will pretty much always have that "Open with" option in the context menu versus, for example, "Run as Administrator"
Hi Thio! I really appreciate what you told us about. This single video might've helped many of the people because that's really an intelligent trick and anyone can fall for it. Personally, I don't open any Email attachments until I know who has sent me that file. I would like to repeat "avarice is the root of all evils".
Sounds like with that text reverser, if you're savvy enough, it might be safer to have file extensions hidden. I usually have it off and have questioned files in the past that have shown an extension. It's like, you aren't supposed to be showing, so let me check you're real extension, and usually then delete.
Even WinDOHs can be sort of usually kind of reasonably secure, if the user uses good computing practices. Clicking all sorts of crap is not good computing practice.
thats default - but imagine a lot of people who consume content have certain settings that just stick around update after update (to new versions of WIndows, etc.). I recommend people do clean installs once they are confident on the new os and just US PC mover to only move over the stuff you really need (and no everything it will, because that cause issues, actuallt).
I love the crypto scammer emails. I wasn't stupid enough to buy crypto or NFTs to begin with so dumbasses telling me I need to log into their bullshit website so protect my non-existent crypto accounts gives me such joy.
My question: WHAT problem is 1Note trying to solve?!?! (Skeptical engineering question that should be asked for anything new) I GET that 1Note has lots of functionalities, I see that; BUT, NotePad or some simple text editor is not “broken” enough to warrant “MS Word Lite” (1Note) Seems like a bunch of MS engineers trying to justify their jobs by creating solutions (1Note) to solve problems that weren’t there (notePad or any other simple text editor) 1Note sound like MSWord “lite”
Really you yourself, ThioJoe would have fallen for a malicious Onenote e-mail attachment? That's really, really hard to believe. No person witch decent IT knowledge should open that attachment without sandboxing it. It's got RED FLAG written all over it.
ThioJoe, why would you endorse Russian software company for cyber protection, especially when they are known for participating in a cyber warfare agains US and EU?
"Something new"???? Lmfao none of this is new whatsoever at all. You're seriously just *now* learning about Right to Left Override? It's literally more than 20 years old 😂💀
True Image (Your sponsor) used to be great software until they switched to the "As a service" model. Now it's overpriced crapware. Rather buy a lifetime license of Macrium Reflect.
I got a "thank you for ordering" letter and it was in a PDF file. I opened it. They said I bought bitcoin and they're going to charge my PayPal account. I don't think I have a PayPal account, but unsure because I use too many email addresses. Anyone? Should I be concerned? I am nervous... And where do I go to check it?
Really? Was really looking forward to this video until you brought up the anti-mailware BS. You don't need an anti-mailware software, if you just use common sense and stop visiting them websites that are not safe.
Microsoft 365 Defender could go a long way in combating these kinds of malicious document payloads by "detonating" the document attachments in the online sandbox first before allowing it to even reach the recipient's mailbox. Simply scanning for email attachments is no longer sufficient. Microsoft must evolve their defensive techniques to match where the attackers are moving.
