JISCMail - CCP4BB Archives

Overall this board is relatively spam/scam free.  I think most users can figure out what is a legitimate post vs. something malicious.  I doubt restricting post with pdf attachments will make a big difference.  There was a time when any attachment was discouraged but that seems to have fallen by the wayside over the years with larger band width and more overall storage room.

That being said, I have this great deal if you just send me all your personal information plus rights to your grandchildren and a prospect to be named later....  :-)

Len
________________________________________
From: CCP4 bulletin board <[log in to unmask]> on behalf of Frank von Delft <[log in to unmask]>
Sent: Tuesday, December 13, 2016 8:17:55 AM
To: [log in to unmask]
Subject: Re: [ccp4bb] {meta} posts with pdfs

I thought the whole point of the BB is to educate on human gullibility.  Admittedly on a slightly different topic, but apparently it's effective.  Hurrah.


On 13/12/2016 14:13, Ian Tickle wrote:

Clicking a link to a bogus PDF would have the same effect as clicking the PDF itself, i.e. the goal is to get you to what's made up to look like a login page for Googledocs or whatever, but actually steals your login details.  So although it's true that blocking PDFs would stop this particular hack it's not a general solution.  To be absolutely sure you would also have to block all WP documents, as well as _any_ link in an email.

It's not clear why the scammer in this case even bothered sending a PDF, he could equally well just have sent a link.  Maybe he thought seeing an actual PDF would lend it some authenticity (though for me it just rings alarm bells).

Sadly, as with all 'social engineering' scams, the only real solution is user education, but unfortunately there's no easy fix for human gullibility!

Cheers

-- Ian


On 13 December 2016 at 13:50, Jon Agirre <[log in to unmask]<mailto:[log in to unmask]>> wrote:
Better.

Article requests can always be dealt with off list, unless they're open access, in which case providing a link would be a better option for publishers, authors and uninterested recipients.

I think it's a win-win scenario.

On 13 December 2016 at 13:35, Paul Emsley <[log in to unmask]<mailto:[log in to unmask]>> wrote:
Would this mailing list be better or worse if mails with pdfs were blocked?



--
Dr Jon Agirre
York Structural Biology Laboratory / Department of Chemistry
University of York, Heslington, YO10 5DD, York, England
http://www.york.ac.uk/chemistry/research/ysbl/people/staff/jagirre/
+44 (0) 1904 32 8270