Spam Wars - Our Last Best Chance to Defeat Spammers, Scammers, and Hackers

Book Cover

The Music Video

You've got to see it to believe it: Check out the "Mister Spam Man" video at YouTube.

Search Dispatches

Archives

May 2019

March 2019

August 2018

July 2018

June 2018

May 2018

April 2018

August 2017

July 2017

March 2016

May 2015

April 2015

April 2013

August 2012

July 2012

June 2012

May 2012

April 2012

March 2012

August 2011

July 2011

June 2011

May 2011

April 2011

March 2011

August 2010

July 2010

June 2010

May 2010

April 2010

March 2010

August 2009

July 2009

June 2009

May 2009

April 2009

March 2009

August 2008

July 2008

June 2008

May 2008

April 2008

March 2008

August 2007

July 2007

June 2007

May 2007

April 2007

March 2007

August 2006

July 2006

June 2006

May 2006

April 2006

March 2006

August 2005

July 2005

June 2005

May 2005

April 2005

March 2005

Dispatches RSS Feed

Powered by Movable Type 3.121

Home

The Book

Training

Events

Tools

Stats

Web log archive.

A Dispatch

« The "Banks Documents" Malware Ploy | Main | Medz Spammer Wants Orders NOW »

September 30, 2009

More Twitter Invitation Malware Lures

Just saw a blast of faux Twitter invitation email messages. Their look hasn't changed from earlier campaigns:

Lower down in the message is a link to a (dot.sub-hosted) video that explains Twitter, followed by a login form. Although you might suspect the form is phishing for login credentials, the form actually submits to Twitter. No, friends, this isn't a phishing expedition. It's a malware delivery vehicle, where the payload is in the attached file named Invitation Card.zip.

Why should the crook bother grabbing just one set of login credentials when the Trojan that gets installed can load a password stealer for all your logins?

Posted on September 30, 2009 at 10:20 AM