Spammers are not afraid to abuse community sites or blog creators like blogspot.com in their spam campaigns. In some cases, the content is published on these site or a redirect is embedded and forwards the visitor to the web site of their choice offering porn, pills and other stuff.
MX Lab noticed an increase the last [...]
Web site creator hosts are being abused in spam campaigns
Twitter accounts abused by spammers
MX Lab detected a spam campaign where Twitter is being abused by spammers to promote online drug stores.
The campaign is sent from random spoofed email addresses and has similar subjects like:
7U1 An amazing selection of brand name medications, all for incredibly low prices!
2F9 Looking for Hytrin? 7N8
6W3 Looking for Abilify?
5Z2 Looking for Fosamax?
4G5 Do you [...]
Can a spammer be creative?
Yes, that is the answer we have today. MX Lab detected a nice piece of spam and we didn’t wanted to hold this one back for you.
It’s not image based, no ASCII art but the text is constructed and formatted by the character “#”. It didn’t render well in Entourage on Mac so it needs [...]
Death of Michael Jackson inspires spammers and malware distributors
Spammers and malware distributors are trying to take advantage of the death of Michael Jackson by sending out email campaigns with subject and/or body related to Michael Jackson while malware distributors try to infect computers by offering a URL to a site that offers a video of the death of the “King of pop”. Here [...]
Health.com branding used in spam
A few days earlier we reported that the branding of Auslogics Software was being used in a spam campaign. We now noticed that Health.com has been subject of such abuse.
MX Lab intercepted spam messages with a Health.com branding. The image below shows us a mailing template with the Health logo, an image for viagra and [...]
Belgian court condemns 18 persons regarding Nigerean spam
The correctional court of Brugges, Belgium, condems 18 persons with prison sentences from 2 to 6 years for sending out fraudulent spam between Februay 2007 and November 2008.
In the Nigerian spam emails they claimed to have a fund in Ghana where a substantional amount of money was blocked after a woman died in a car accident. The small [...]
Auslogics Software logo used in spam
When spammers send their messages they try to hide their tracks by spoofing the From address in each message. Sometimes using valid domains or even real email addresses. In some cases they also try to gain credibility by using a brand, a logo or any other style of a real company.
In this case, the victim [...]
The latest spam campaigns on the net
Spam regarding meds and pills are still taking a serious part of all the spam messages worldwide. The latest spam messages are some fine examples.
Google Groups spam
The following spam message is using Google Groups again to get the visitor attracted.
Hi!
Feel Better Now!!
hxxp://groups.google.com/xxxxx/robertomrlg860/web/mariana
We’re always here for you!
the past is immutable: forget it, sheep dismantler
This is the [...]
Rustock is back online, spam levels rise again
UPDATE, Nov 27th: One of the new CnC servers, ’sdx3Fs5B.info’ was resolving to 72.233.114.74 at LayeredTech. FireEye sent an abuse notification to LayeredTech when the CnC servers went online and they have pulled out the server.
—————-
Yesterday, Nov 24, 2008, I noticed a sudden spam rise. When checking some samples I found that the ‘Canadian Pharmacy’ spam is [...]
McColo up and down again, C&C servers to Russia
McColo, the ISP that has been taken down because of their malicious activities, was back online during a brief period thanks to the Swedish ISP TeliaSonara AB that has a router in San Jose. The peering was revoked after complaints to the abuse email address by security from Sophos and security researcher Atif Mushtaq.
During this time Rustock admins [...]
