Another Spam Campaign Hits eBay Users, Webroot Warns
Following the scam email apparently sent by an disappointed customer, eBay, a famous online shopping website, sellers are under fired by scammers again. And, during the first scam endangered with unenthusiastic feedback, this email scam attracts with the guarantee of large sum of money purposely made obtainable to the recipient, security experts of web root warned.
And if the entrenched link is clicked by the users, they are in use to a page sporting the "Loading your transaction details..." caption that also hosts the black hole exploit kit.
During this time of waiting, the kit also attempts to utilize an Adobe reader and acrobat susceptibility, also a Microsoft windows help centre flaw.
Then a computer Trojan is implanted onto the system, and phones home to a C&C (command and control) server that has been utilized in other previously profiled spamvertised campaign, web root security researcher's points.
Commenting on the recent malware ridden spam campaign, Dancho Danchey , security expert at web root said: "according to the observing, we can effortlessly conclude that a single cybercriminal or a group of cybercriminals is methodically introducing unnoticed malicious executives and rotating the client side use serving URL'S, after imitating popular brands in an effort to socially engineer users into interrelating with these spiteful emails", as per the news the news published by blog.webroot.com dated July 31, 2012.
This is the second eBay themed spiteful campaign that we have catched and outlined in recent months. We observe that because of the noticeable high click- through rates thanks to the systematic rotation of the spiteful domains and imitating brands, we will observe more campaigns violating their trusted web repute," Danchev warned.
Also incidents like these also showcase that black hole exploit kit is increasingly being a favorite among scammers especially in launching spam campaigns, commented by the security experts of the security firm.
Phishing email supposing from AT&T and informing the users that their bill is ready to view are spotted in the second week of august 2012. These emails are same as the real bill and web sense researchers said that users who fell for these are taken to a site hosting the black hole exploit kit.
Related article: Another IE 7 Bug Made An Appearance
» SPAMfighter News - 10-08-2012