Results 1 to 2 of 2
  1.   #1
    grr
    grr is offline
    Experienced User
    Overall activity: 2.0%
    grr's Avatar
    Join Date
    Jan 2010
    Location
    India
    Posts
    2,665
    Liked
    13 times
    Points
    38,657

    Big Grin Beware of PDF update phishing scam

    Security experts are warning of a rapidly spreading scam using a fake PDF Reader update and 'free gifts' as hooks.

    Symantec Hosted Services said that the company had spotted a large number of emails in circulation, with some degree of variation in their content, but the same end result.

    The main aim is to harvest credit card details by lulling people into applying for a non-existent update and offering a free gift.

    Clicking on the link takes the recipient to a professional-looking page made to advertise the fictitious software, explained Symantec Hosted Services malware data analyst Mathew Nisbet in a blog post.

    Clicking on the download link then takes the victim to a different site altogether, which asks for some personal details.

    "The URL claims to be a secure sign-up, though it uses no encryption whatsoever. The section to the left explains that, once a member, the recipient is entitled to 'free' software," said Nisbet.

    This is designed to give the victim the impression that the site is legitimate. The 'free gift' is available only for a few hours, which is a common social engineering tactic, according to Nisbet.

    More clicks take users through to a credit card payment page designed to harvest information.

    "It could also be easily modified to infect the user with malware by offering an infected download at the end of the process, or by attempting a 'drive by' attack anywhere on the site," said Nisbet.

    "Any unsolicited email received from an unknown source should be treated as highly suspicious, especially one that requires visiting an external page by clicking a link."

    Source
    I'm the Beauty and you are the Beast.
    Reply With Quote Reply With Quote
  2.   #2
    Ceyfer √
    Ceyfer √ is offline
    Guest
    Overall activity: 54.0%
    Ceyfer √'s Avatar
    Join Date
    May 2007
    Location
    Philippines
    Posts
    4,006
    Liked
    710 times
    Points
    47,645
    So it has one goal - harvest needed personal data via:

    Clicking on the download link:

    • which asks personal details.
    • by offering an infected download

    A responsible user won't fall on this trap, same old tactic nothing new.

    WOT plugin is a helpful indicator, if you would observe, most of the time you're going to see that most spam links are rated red and yellow and your being warn not to click on it. The new Hotmail is now using new feature called SmartScreen ( antispam filtering & blacklisting) to improve its security against phishing scam .
    Last edited by Ceyfer √; 07-10-2010 at 04:01 AM.
    "Stars and the Sun"

    Reply With Quote Reply With Quote
 

 
« Ad-Aware Free Internet Security is coming | Relatively unknown security-related Firefox add-ons »

Similar Threads

  1. Look like you lost weight in this video? Beware of that Twitter phishing attack !!!
    By INDRANIL in forum Spyware/Viruses
    Replies: 0
    Last Post: 08-04-2011, 07:24 PM
  2. Beware - Latest Facebook scam!!
    By brightspark in forum Spyware/Viruses
    Replies: 12
    Last Post: 07-07-2011, 08:16 AM
  3. New MSN Hotmail account verification phishing scam
    By Bluedot in forum Spyware/Viruses
    Replies: 6
    Last Post: 06-19-2011, 05:50 PM
  4. Alert: Adobe Acrobat/Reader Upgrade Email Spam/Phishing Scam
    By Boyfriend in forum Spyware/Viruses
    Replies: 1
    Last Post: 11-18-2010, 09:54 AM
  5. Paypal SCAM (phishing-attack) In Action
    By Swarup in forum Chat
    Replies: 1
    Last Post: 09-24-2009, 03:55 AM
All times are GMT +8. The time now is 08:57 AM.