Explore the latest news and trends  

Sign up for our weekly security newsletter


Be the first to receive important updates on security





Send

Scam E-mails Target ‘ShopNBC’ Visitors

AppRiver, a Web security company, reports that a fresh phishing e-mail is presently aiming at people using 'ShopNBC' e-flyer, a website where shopping can be done online.

The researchers at AppRiver states that the phishers possibly used an authentic ShopNBC ad e-mail and modified it to their requirement. Consequently, all web-links embedded on the original ad e-mail currently lead to a website which has no connection with the actual website. Moreover, the modified or phishing e-mail appears to have its headers forged as they show the key signatures of the NBC.com domain.

Most users are likely to simply erase this e-mail thinking it is a spam. However, there may still be some who get attracted to it. Besides, some others may attempt to "unsubscribe from these unsolicited e-mail. But once a recipient tries doing any of these things, he'll only have his computer infected immediately.

If any recipient follows a web-link inside the fraudulent electronic mails, he'll be led to a site which downloads a malicious JavaScript. This script looks for security flaws for exploitation in the expired versions of well-known software on the victim's PC. In case the exploitation is successful, a malware downloader gets installed on that PC where it's also run, explains AppRiver, as reported by Pitchandship on July 13, 2010.

Curiously, the above assaults based on Web-exploitation called 'drive-by downloads.' These are a frequently used technique for malware dissemination, said AppRiver researchers.

However, the researchers recommend one solution for avoiding the scam. Users can hover their mouse over the web-links and see the site names where the links really lead to prior to clicking on them. Unfortunately, in the current instance, users will find that once they hover the mouse, the links lead to nowhere close to an NBC site. Apart from this, users in general should ignore uninvited e-mails.

Lastly, they should always maintain up-to-date software on their computers and ensure that their most recent security patches are installed, particularly in the case of the most popular software which are otherwise effective targets for attacks.

Related article: Sixem Worm Striking World Cup

» SPAMfighter News - 7/24/2010

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page
Next