As we discussed in yesterday’s article, “Wrong transaction” hotel spam, the UAB Spam Data Mine now has an ability to provide early alerting when a new spam campaign is directly linking to executable files.
This morning we have a new example of this capability in the form of the two…
Posted on July 28, 2011 in Malware
We have encountered another LICAT variant that is being spread via fake IRS spam to people under specific organizations, including Trend Micro. As you may recall, LICAT is known for its use of dynamic domain generation algorithm (DGA) technique.
In the spammed message, recipients are informed of an issue…
Posted on July 28, 2011 in Malware
One of the features in the new version of the UAB Spam Data Mine is the ability to quickly run “malware links” and “malware attachments” reports for the current day, the previous day, or a date range.
The objective of this functionality is to provide as close to “real time”…
Posted on July 28, 2011 in Scam
As a feminist who sees an above-average amount of spam (due to many years in the Internet security space), the spam sample below caught my eye and elicited a chuckle.
It’s dating spam with sense of humor: the spammer sent a “looking for sex on the side” spam message with a spoofed from address…
Posted on July 25, 2011 in Scam
In the last days we have seen a large amount of spam being sent with the subject „Facebook Administration has sent you a message“.
The email is of course a fake because the links are spoofed and point actually to an online pharmacy which sells mainly potency pills.
This is not the first time we…
Posted on July 14, 2011 in Scam
Cybercriminals targeting US taxpayers have launched a second wave of phony “tax payment rejected” emails. As before the emails warn recipients that their tax payments, submitted via the IRS’s electronic payment system, have been rejected. To understand why, recipients are provided with a link…
Posted on July 7, 2011 in Malware
We are currently seeing a large scale malicious spam campaign that claims to be a “Credit Card Overdue” notice. The campaign is originating from one of the Cutwail spambot variants. The theme has no specific credit card brand, possibly because the spammer thought a generic template may entice more…
Posted on July 1, 2011 in Malware
In the spam sample below related to the new release, spammers are offering free tickets to Part 2. The message says the offer is valid only in the U.S. and that there are limited supplies of the tickets. The email header shows an example of header spoofing, whereby the email purports to originate from…
Posted on June 18, 2011 in Scam
The spam monitoring systems at Barracuda Labs have uncovered an especially objectionable spam campaign that poses as a sign-up email from the Chase Bank credit card processing service Chase Paymentech.
We see lots and lots of spam at Barracuda Labs. Even if the sender isn’t suspect it is still generally…
Posted on June 18, 2011 in Scam
This year, Father’s Day will be celebrated on June 19th. Of course, this is an occasion that is used to express feelings towards dads for all of their love and support, often accompanied by the giving of exclusive gifts. Sadly, spammers don’t forget to send out their fake offers to target this special…
Posted on June 17, 2011 in Scam