A series of emails with malware attachments have been widely distributed in the last few days. The emails alert the recipient about a picture of themselves (or an ex-girlfriend) that has been circulated online. The text from three of the messages is shown below: Sorry to disturb you , –
Phony LinkedIn invitations are not a new phenomenon. What tends to change is the underlying delivery method used for the malware distribution – In this case compromised websites that unknowingly host malicious scripts. The LinkedIn reminders that are included in the attack include several variables such as names, relationships, and
Less than 2 weeks ago we reported the use of perfectly formatted AT&T Wireless emails that included multiple links to malware infested sites. These have now been followed up with similar emails – but the “carrier” has switched to Verizon Wireless. The Verizon emails also lead to sites hosting malware
Airlines are the current darlings of malware and phishing gangs, with several campaigns using airline-related themes. The most recent attack attempts to extract the username/password combinations of Brazilian airline TAM frequent flyers. The email promises free miles upon entry of a promotional code. Email and translation follow: Email text TAM
Large outbreaks of phony AT&T wireless emails have been distributed in the last 2 days. The emails describe very large balances ($943 in the example below), that are sure to get aggravated customers clicking on the included links. Every link in the email leads to a different compromised site that
I’m very excited about this email I received: “We have 3 male(Willy) (Ben) and (Max) and 3 Female ((Mimi) (Kiki) and (Baby Tina)ready for re homing to new homes .There are Outstanding AKC registered Siberian husky from multi-championship bloodlines with an awesome pedigree. Gorgeous wrinkles, nice rope across their nose,
In the swirling seas of spam emails that our analysts come across every day, the anti-stomach-fat/six-pack-abs theme repeats itself quite regularly. Unless they are tricked by some fiendishly clever social engineering (see here and here), most email recipients know better than to follow links to sites promising ultimate-waistline-thin-ness. But what
Maybe recipients of these emails ordered from Amazon recently – or maybe not. Either way we’re betting many people will click on the links out of curiosity or maybe to protest their order cancellation. The outbreak took place earlier today and was quite large (in the high millions). The name
We’ve had loads of phishing directed at Google Adwords customers. Today we present the equivalent phishing attack directed at Microsoft adCenter users. The phishing page is a completely convincing replica of the actual Microsoft login page. We had to be amused though by the domain set up for the phishing
