Denver, CO – December 20, 2011 – An email scam using the Better Business Bureau’s name and logo continues to proliferate across North America, and even to some overseas addresses. Most of the emails carry the famous BBB torch logo and come with the subject line “Complaint from your customers.” The emails have a link or an attachment containing malicious phishing malware that steals information, often with devastating results.
Larry Andrus is a member of the board of directors of BBB Western Michigan and also the CEO of Trivalent Group, Inc., a BBB Accredited Business that helps its clients manage, access, protect, and store their data. One of his firm’s clients opened the affected attachment, which launched malware that quickly found the accounting office’s computers, accessed bank numbers and passwords, and nearly completed a fund transfer from the company’s account.
“We had to completely wipe the computers in order to contain the damage to our client,” said Dawn Simpson, Trivalent’s vice president of marketing and business development.
Because of experiences such as this one, BBB has updated its advice and recommends the following to anyone who receives the email:
Previously, BBB had recommended running a full system scan only if the recipient had clicked on the link or opened the attachment. But due to the virulent nature of the virus, the new recommendation is for everyone who receives it to do the scan. In offices or homes that are networked, all computers should be scanned.
Chris Garver, Chief Information Officer at the Council of Better Business Bureaus (CBBB), recommends that all domain owners set up a sender policy framework (SPF) and set their spam filter to use it. “Using the SPF standard helps fight spam and phishing attacks by allowing your email servers to verify whether an email is legitimate…or not,” he says.
Microsoft offers a simple, four-step process for setting up an SPF: www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard/
If you receive an email saying your business has a complaint filed against it with BBB, there are several things you can do to authenticate it:
CBBB is working with federal law enforcement agencies to identify the perpetrator of this fraud, and is also looking into other measures it can take to help prevent future phishing scams from spreading.
# # # #
About the BBB
The BBB is an unbiased nonprofit organization that sets and upholds high standards for fair and honest business behavior. Businesses that earn BBB Accreditation contractually agree and adhere to the organization’s high standards of ethical business behavior. The BBB provides objective advice, free BBB Business Reviews and BBB Wise Giving ReportsTM on charities and educational information on topics affecting marketplace trust. To further promote trust, your BBB also offers dispute resolution services for consumers and businesses. The first BBB was founded in 1912. Today, 125 BBBs serve communities across the U.S. and Canada. Please visit www.denver.bbb.org for more information.