« Bogus Microsoft Infection Alert | Main | Medz Spammer Amazons »
| Home | The Book | Training | Events | Tools | Stats |
Web log archive.
A Dispatch
April 21, 2010
Medz Spammer TwitsThe medz spammers have been trying additional social engineering tricks lately, including the fake Apple Store order advisory and such. Today I saw them using a phony Twitter come-on:
The message uses Twitter's own images to give a sense of legitimacy. Multiples of this message have shown up with different Subject: lines, such as "Undelivered Message 665-88."
If you scan through the message quickly, you may miss the horrible grammar mistake: unreaded.
UPDATE: Apparently the Chinese spammer had someone with a second semester of English under his belt proofread the message. The mistake has been fixed by changing the phrase to: "You have 3 information message(s) from Twitter".
Hidden links in the messages go to hijacked web sites, where the inserted pages use a JavaScript redirect to reach the actual spamvertised medz web site.
Posted on April 21, 2010 at 09:12 AM