Blog comment spam. Is it worth the effort?
My first article published on Kevin Townsend‘s ITSecurity.co.uk blog: Blog comment spam. Is it worth the effort? or go to this link: http://itsecurity.co.uk/2015/01/blog-comment-spam-worth-effort/
meds
And now Amazon is being used to advertise the Canadian Pharmacy
Remember this post about emails which looks like Facebook and Twitter phishing at first signt ? http://msorin.wordpress.com/2010/05/20/facebook-and-twitter-phishing-on-first-sight/ Now Amazon.com got hit quite massively: Read more here in the Avira Techblog
Facebook and Twitter Phishing (on first sight)
The source of the articles is in the Avira Techblog: Twitter Phishing (on first sight) Facebook Phishing (on first sight) Twitter Over the weekend our spam traps received a massive wave of emails looking like the one below: The emails seem to stem from “Twitter Support” (support@twitter.com) and are addressed each to exactly one unique email address. The link in the email seems to be unique for each email sent, too. Quite an effort to make the email look more legitimate. The target link is always a compromised website holding an html page. Amazon: Bestsellers Electronics and Photo After clicking on the URL, a multiple stage redirection takes place. On some of these redirection websites, the intermediate page raises alerts because our engine detects encrypted content in JS. Finally comes the surprise: The target website at the end of the redirects is not a phishing website but a Canadian online pharmacy. For me personally this was a “Wow!” moment. Why did the spammers choose to send the emails as Twitter phishing? I think that the explanation is simple – they did it because nobody did it before. As usual, users of the Avira Premium Security Suite and the users of…
Stupid spammers
Don’t you just hate them ?! I do… They are just wasting my CPU power and bandwidth to detect such stupid evasion techniques. I mean… look at the picture below: Why the hack would I send to myself a picture with all kind of meds and then, write at the end some text from a Microsoft newsletter ? Can there be any clearer sign of spam than this ? Interesting : there are 4 different links in the email. All of them are subhosts from youuljn.cn (CHINA). Here are the spam reports from Avira Antispam: X-Avira-SpamScore: ata: 7.600 bayes: 1.000 final: 11.737 ATA is the Automatic text analysis which check for spam techniques. And with 7.6 points, there are many. Bayes gives a plain round 1 which is 100% SPAM :)))