Please support our effort by making a small donation. Thank you!

x

November 2, 2014

Happy post-hallow’s eve! We hope your week was less scary than the scams pouring into inboxes or the malicious texts hitting smartphones. Last Monday we finally had to change the scamdex to five thumbs down because the volume of scams was so terribly high. We just moved it back down to four thumbs again. Here’s a small sampling of the junk targeting people.

  • You have been hired!
  • re: Your iCloud / iTunes Account
  • Medicare open enrollment information
  • Burial life insurance
  • Are you at risk for stomach cancer?
  • Make money from home
  • Oil change coupons
  • Get your credit report card
  • CVS gift card
  • Walmart gift card
  • Costco gift card

Notice that a lot of scams continue to come from emails sent from the European Union (.eu)

Check out our article on these types of emails!

0-eu email scams

 

 

 

 

 

 

 

 

 

 

Before we jump into several scams below, we wanted to show you how expertly the scammers target American Culture as a way to socially engineer click rates. Check out this email that arrived just 2 days before Halloween…

0-Discounted ink cartridges

 

Your Home Installation Appointment Has Been Scheduled

Imagine getting one of these emails and thinking “what the…? I didn’t make any appointment!“ CLICK. This is actually a brilliant scam and we’ve seen it before. Judging by the design of the emails, these scams come from the same criminal group. The domain names are bizarre… “pastaunsized.com” and “aikidoflit.com.” Also, notice the strange paragraphs of text underneath the links? This is a typical spammer/scammer tactic to include “legitimate” text in an effort to trick anti-spam servers into believing that the email is legitimate and should be delivered.

1-Ace Hardware Appointment confirmed

1-Windows installation appointment

And in case you thought about clicking one of these links to see what it was all about, don’t. The Zulu URL Risk Analyzer rates this second email as 100% malicious! If you are a TDS Member, you can learn how to use the Zulu URL Risk Analyzer like a pro!

1-Windows installation appointment zulu score

Want to sign up for our newsletter. Click here.

Send Your Child A Personalized Note from Santa

These malicious emails were going out by the thousands before Halloween had arrived! If you look at the text underneath the red-box you’ll see that the grammar is strange, as are the two different mailing addresses in Florida and Mississippi. English is often a second language for many scammers and could be a hint that the scam originates outside the United States.

2-Personalized note from santa

Were you to try to look up “fleckmids.com” in a Google search field you’ll find that Google cannot find any website associated with this domain and the domain was registered in July. In fact, these scams were associated with dozens of bogus registered domains, all designed to infect computers upon clicking. Check out a sample list of these email scams:

2-Personalized note from santa 2

Remittance Confirmation for September and October

Several people have reported to us that they received the following email this past week but they came from different email senders. Notice that the email doesn’t contain any personal information identifying the recipient of the email, or what the invoice is for. Quite honestly, we’re not sure if the attached Word document contains a virus or other malware, or is simply a fake invoice that the scammers are hoping will be paid without question.

3-Remittance Confirmation

Finally, we leave you with some new Ray Ban sunglasses…. Last week we heard from more than forty people who all received these phone texts, or a variation of them, on their smartphones. At first glance these appear to be spam ads. However, we looked a little deeper and strongly suspect that the links actually lead to malware used to infect smartphones. We draw this conclusion because a WHOSIS lookup of the domain names showed that they were registered in Istanbul, Turkey, and one was registered on the day that the text was sent. The registry says they are online Ray Ban sunglass stores but Google cannot find any such website. If you search for these sites in Google (raybansfriday.com or raybanmaster.com) you’ll see that other websites are warning users about them. Notice, too, that these texts come from different Hotmail email accounts. And we were sooo looking forward to getting a good deal on these Ray Bans!

5-iPhone 6 scam


4-RayBan1 4-RayBan2 4-rayban3  4-Text for Ray Bans

 

Surf safely!