My first article published on Kevin Townsend‘s ITSecurity.co.uk blog: Blog comment spam. Is it worth the effort? or go to this link: http://itsecurity.co.uk/2015/01/blog-comment-spam-worth-effort/
Remember the Spammer’s Compendium (where I have a spam method named after me: (UH!Mustaca!HTML))? There is an entry from 2003 called “Ze Foreign Accent“. Back then it was rather primitive, but now it comes in a much improved (if we can say that) form: The link on “Click here” goes to a Google Drive hosted site which was erased in the meanwhile. Fortunately, GMail detects it as spam as you can see in the picture.
It seems that the most research on social engineering is done these days by spammers. Using the text “You haven’t been to Facebook for a few days, and a lot happened while you were away”, the spam message contains the trigger which will make many people click on the message: “Your messages will be deleted soon” Ohhhh, so, if you don’t click on “View messages” then the messages will be deleted?. This is a good one. To all those who really think that something like this is possible: Stay calm, nobody is ever going to delete your messages. And, Facebook is not sending you such messages anyway. It is just a spam that redirects you to an online pharmacy store.