WINDOW LIVE TEAM -ACCOUNT ALERT- Another Spam That Attacking Hotmail Accounts

Watch out from this fake spam emails that says its from WINDOW LIVE TEAM and its asking about your personal information.

 

Its look like this in your inbox :

 

 

 

and the message content looks like this:

 

 

 

Finally, don’t reply to these kind of emails and mark it as spam.  - Take Care -

 

Watch out for new Type of Hotmail Spam Attack

I just received new spam message from one of my Hotmail contact (My friend), it’s with new type of message and most of people could be fall into it so watch out.

 

The message looks like:

 

Subject : Hii

Content :

 

???? I don’t know what is that mean.

 

Finally the trapped link that included in the message is redirecting the victims to another website and its asking for the username and the password :

 

 

When you insert your information, the site will spam and steal the information from you and all your contacts, so be careful.

 

 

Want to see who has viewed your Facebook profile? Take care..

I’m increasingly being asked by folks on Facebook if it’s possible to tell who has been viewing their Facebook profile. A number have been attracted to webpages and Facebook applications that claim to be able to give you a secret insight into who is spying on your profile.

 

Well, if you’re one of those people who are curious about who might be watching you online, take care.

 

Right now we’re seeing a significant number of Facebook users posting messages such as:

OMG OMG OMG... I can't believe this actually works! Now you really can see who views your profile!!! WOAH

and

See who views your Facebook profile in real-time!!!

 

However, like the “Justin Bieber cell phone number” scam and the “This mother went to jail for taking this pic of her son!” scam, the links pointed to in your friends’ status updates are not to be trusted.

 

If you make the mistake of clicking on the link to one of these pages offering to tell you who is viewing your Facebook profile, you will find that the people behind the “services” want you to do a few things first.

 

For instance, they’ll ask you to “Like” their pages (which means you are spreading the link to friends in your social network), and they will ask you to advertise their site by posting an “OMG” message (with a link) to at least five different places on Facebook.

 

After all that hard work you would hope that they would give you access to the powerful Profile Spy app wouldn’t you? But I’m afraid your luck is out.

 

They’ll next ask you to hand over your personal information by taking numerous surveys – before ultimately trying to trick you into handing over your cellphone number which they’ll sign up to an expensive premium rate service.

 

 

Remember, this scam doesn’t work as the result of clickjacking, or a vulnerability on Facebook. The scammers are achieving their ends because of human gullibility – pure and simple. If people considered what they were doing and thought twice about the possible consequences then we would see nothing like as many of these attacks occurring, and our news feeds on Facebook would see less spam.

 

 

Read More…

 

The Main Risks Associated with Spam

There was a time when spam was considered little more than an invasive annoyance. It was merely an attempt, albeit an unwanted one, to communicate information about a product or service to as many people as possible. But then hackers saw another opportunity. They decided to use this tool as a means to exploit consumers and businesses.

 

Spam then, can pose considerable risk to the enterprise. But what are the primary issues?

 

Productivity – If we estimate the time that it takes for an employee to evaluate and delete an unwanted email, and multiply that by the number of employees, we begin to see how costly spam is. While this scenario may not represent real dollars spent mitigating the problem, it does translate into productivity losses which can have a financial impact. Time spent dealing with spam is time not spent on company business.

 

Storage Space – Company managed anti-spam solutions typically include one or more servers and software. Some estimates indicate spam accounts for over 90% of email. What this means is that a significant portion of that server space is used to receive and sometimes quarantine suspicious emails. If messages aren’t deleted, space can be easily consumed, forcing the purchase of additional storage space.

 

Security – Unfortunately, many spam messages are sent with the intent to harm the receiver. Clicking on erroneous links or opening infected file attachments can result not only in damage to the computer, but loss of data as well. In an era where privacy laws protect consumer data, the loss may be further compounded by financial penalties and damage to company reputation.

 

Spam can no longer be viewed as a problem of convenience, targeted at potential consumers. Real loss of data, reputation or company services can prove costly. Based on these risks, businesses should invest in solid anti-spam service solutions. To further reduce costs, cloud-based solutions have proved that they are not only up to the task, but will also save your time and money in the process.

 

Additional Resources:

http://www.allspammedup.com/2009/10/taking-control-of-the-risks/

http://www.spamlaws.com/

http://blogs.computerworld.com/16285/outbound_spam_hard_data_illustrates_real_risks

 

This guest post was provided by Veronica Henry on behalf of GFI Software, a leading software developer that produces network and messaging security solutions for SMBs. More information about GFI anti-spam solution can be found at http://www.gfi.com/mes

All product and company names herein may be trademarks of their respective owners.

Contract_05_07_2010.zip – all you’ll contract is a malware infection

SophosLabs is seeing another widespread malicious spam attack being sent to email addresses around the world. The emails, which have a malware-infected attachment called Contract_05_07_2010.zip, pretend to be a legal contract – however, opening the contents of the file could infect your Windows computer.

 

A typical email reads:

Subject: Permit for retirement

Message body:

Good day,
We have prepared a contract and added the paragraphs that you wanted to see in it.
Our lawyers made alterations on the last page. If you agree with all the provisions we are ready to make the payment on Friday for the first consignment.
We are enclosing the file with the prepared contract.
If necessary, we can send it by fax.
Looking forward to your decision.
"<name>

Attached file: Contract_05_07_2010.zip

 

 

Read More…

 

Beware ‘Your log 05.07.2010′ emails – they carry malware

Malicious hackers are spamming out emails around the world disguised as a changelog, with the intention of infecting recipient’s Windows computers with the attachment.

 

A typical email reads as follows, although there can be minor variations in the message body:

 

Subject: Your log 05.07.2010

Message body:
Dear Customers,
as promised your changelog is attached,
<name>

Attached file: Changelog_05_07_2010.zip

 

The emails, by the way, are always signed off by the first name of the person who is mentioned in the message’s from: field. That field is, of course, forged – it’s not really that person who sent you the email so don’t blame them if you get infected!

 

Read More…

 

Backdoors in Twitter, Now in Arabic

Twitter is becoming a common medium to spread spam, malware and all kinds of badness. Just a few weeks ago, we wrote about FIFA and the Gaza attacks being used as social engineering leverage by Trojan creators, and there are no signs of them stopping any time soon.

 

Over the past two weeks, several Twitter accounts were created for the sole purpose of tweeting Poison Ivy or Bifrost download links. Both Poison Ivy and Bifrost are backdoors, malicious programs that allows an unauthorized user access to the infected machine. Interestingly, these backdoor programs are uploaded at either freewebtown.com or leadhoster.com, both free web hosting sites.

 

For some of our readers, these things aren’t new, but what caught my eye are these tweets written in Arabic:

 

Cybercrime groups it seems, are broadening the scope of their social engineering by employing localization techniques. Quite clever huh?

 

Lastly, these rogue Twitter accounts either have very few or no followers and following, which means the only way for potential victims to see the backdoor URL is to do a Twitter Search with the appropriate keywords. Hmmm… blackhat SEO Twitter style anyone?

 

‘Teacher nearly killed this boy’ – rogue spamming Facebook app at large

Over 190,000 people have so far clicked on a link sent by a rogue Facebook application, which tempts users into giving the application access to their Facebook profile in exchange for seeing a “shocking video” of what is alleged to be a teacher physically assaulting a boy.

 

A quick search on Facebook reveals thousands of users are promoting the link on their newsfeeds, encouraging their friends and acquaintances to also add the application:

A typical message reads:

I am shocked!!! The teacher nearly killed this boy: http://bit.ly/aWeBMl - Worldwide scandal!

 

Clicking on the bit.ly link redirects Facebook users to a page promoting a Facebook application called “Teacher nearly kills a 13 year old boy. SHOCKING!”, which offers what appears to be a video thumbnail of the attack and the encouragement to “Click here, then ALLOW, to see the shocking video”.

 

 

However, if you are tempted to follow the on-screen instructions to view the video you will also be allowing the third-party application to gain access to your profile, and to repost the spam message to your own wall.

 

READ MORE…

 

Changelog 07.06.2010: Hackers spam out malware attack

Updated Have you received a curt email in the last 24 hours with a mysterious attachment called Changelog_07.06.20010.zip? If so, you could be at risk of falling victim to the latest attack launched by malicious hackers.

 

Poisoned emails have been spammed out worldwide, posing as a legitimate communication.

Typical emails have the following characteristics:

Subject: Changelog 07.06.2010
Message body:

Good afternoon,
as promised,
<Name>

or

Dear customers,
as promised,
<Name>

or

Good morning,
as promised,
<Name>

or

Good day,
as promised,
<Name>

Attached file: Changelog_07.06.20010.zip

 

where <name> is the first name of the supposed sender of the email. In other words, if the from address says that the message was from “Peter Bathurst” then the email will be signed “as promised, Peter”.

 

Read More…

 

Bad tidings as Greeting_Card.zip spam spreads malware

SophosLabs are intercepting a major new malicious spam campaign which is disguising itself as a greeting card from “someone who cares about you”.

 

The messages, which have been sent to email addresses around the globe, typically read similar to the following:

Good afternoon,
You have just received a postcard Greeting from someone who cares about you..

Please find zip file with your Greeting Card attached to this mail!

Thank you for using www.Greetings.com services !!!
Please take this opportunity to let your friends hear about us by sending them a postcard from our collection !

 

The messages come complete with an attached ZIP file (Greeting_Card.zip) which contains a malicious payload, designed to infect Windows computers.

 

READ MORE…

« Previous Page — Next Page »