Spam Campaign Hitting Internauts’ Mailboxes Masquerade as Sky.com, Caution Specialists
Researchers from ThreatTrack Security the security company along with Conrad Longmore Security Blogger at Dynamoo's Blog have cautioned Internet-users to be wary of one new spam campaign impersonating Sky.com, while adding that the spam mails show the sender's address as firstname.lastname@example.org, which's actually spoofed for making them appear as being sent from the Sky.com site, published softpedia.com dated March 13, 2014.
It maybe noted that in UK, Sky.com provides free-to-air broadcastings of the widest range that comprise news, sports, entertainment and many more channels.
The fake e-mails captioned "Statement-of-account," tell the recipient that his account's statement is attached so he may send the December invoice's payment which stands pending.
The messages further tell that the current electronic mail is private as well as secret. Incase it has come to the user erroneously he's requested to inform the sender before erasing the message wholly. As electronic mails are likely to have viruses, the current e-mail's sender isn't liable for any such malware, which may get transmitted via the message alternatively its attachment, the messages state at the end.
The electronic mails that ThreatTrack caught are signed from someone named 'Dale' paying 'Regards' whereas those that Conrad Longmore's blog caught are signed from 'Carmela.'
Furthermore, inside the attachment, there isn't any invoice rather a condensed file concealing one .scr named document, which's malware that merely nine anti-virus solutions from VirusTotal could detect.
The said spam mails first emerged during late-October 2013 followed with another run during December-beginning 2013, while those appearing last time landed in January 2014.
In all the cases, the e-mails show a different month as well as signatory's name, while the remaining things in the messages remain unchanged.
For any recipient of the above e-mails, he should erase them instantly. And incase he has already clicked though and run the malicious file attached then he should use an up-to-date AV program and execute a system scan. Besides, it's important to do routine scans for making sure no malware goes un-intercepted, specialists suggest.
Meanwhile, Sky.com has posted online that any spam problem using its name maybe forwarded to email@example.com, while the malicious e-mail attached along with.
» SPAMfighter News - 22-03-2014