Blog

Less than 2 weeks ago we reported the use of perfectly formatted AT&T Wireless emails that included multiple links to malware infested sites. These have now been followed up with similar emails – but the “carrier” has switched to Verizon Wireless.  The Verizon emails also lead to sites hosting malware

Airlines are the current darlings of malware and phishing gangs, with several campaigns using airline-related themes. The most recent attack attempts to extract the username/password combinations of Brazilian airline TAM frequent flyers. The email promises free miles upon entry of a promotional code. Email and translation follow:  Email text TAM

Large outbreaks of phony AT&T wireless emails have been distributed in the last 2 days. The emails describe very large balances ($943 in the example below), that are sure to get aggravated customers clicking on the included links.  Every link in the email leads to a different compromised site that

I’m very excited about this email I received: “We have 3 male(Willy) (Ben) and (Max) and 3 Female ((Mimi) (Kiki) and (Baby Tina)ready for re homing to new homes .There are Outstanding AKC registered Siberian husky from multi-championship bloodlines with an awesome pedigree. Gorgeous wrinkles, nice rope across their nose,

In the swirling seas of spam emails that our analysts come across every day, the anti-stomach-fat/six-pack-abs theme repeats itself quite regularly. Unless they are tricked by some fiendishly clever social engineering (see here and here), most email recipients know better than to follow links to sites promising ultimate-waistline-thin-ness. But what

Maybe recipients of these emails ordered from Amazon recently – or maybe not. Either way we’re betting many people will click on the links out of curiosity or maybe to protest their order cancellation. The outbreak took place earlier today and was quite large (in the high millions). The name

We’ve had loads of phishing directed at Google Adwords customers. Today we present the equivalent phishing attack directed at Microsoft adCenter users.  The phishing page is a completely convincing replica of the actual Microsoft login page. We had to be amused though by the domain set up for the phishing

If you were to summarize 7.2 million spam subjects from a single day into a tag cloud – what would it look like?  er… like this! As you can see the main products being pushed today are fake watches, pharmaceuticals, enhancers and …. Xerox machines?? No – those belong to