Currently Browsing: Spam

Love Letter From: Miss. Joy

I thought this delightful piece of spam was for serious real and true until I read the last line. Looks pretty inviting otherwise. But nobody, I mean NOBODY, would use the letter ‘s’ twelve times in the word ‘kiss’. Ten or eleven maybe, but not twelve.

——————————

Hi Dear,

I was so fascinated by your id that I was left with no choice than to contact

you at once. I like to enter into a relationship with a man like you. What do

you think? Pls. let me know. Looking forward to hear from you soon .I am in

love with you ok .please send me your pic,

 

Thank you and God bless

 

Joy,

kissssssssssss me with love

 

Mr. Barkev Hagopian

UPDATED: Since we’re getting random traffic for searches on “Mr. Barkev Hagopian” I’m here to tell you it is a spammer nom de plume. He’s also apparently the CEO of something called the Barkev Loan Firm, surely a demanding position, leaving him precious little time to spend with Mrs. Hagopian and all their little Hagopian children.

———————————————————————

Spam is funny. And by funny, I mean crippling.

Sir,

Good day to you. I am looking to work with a reputable firm to mop up most of my portfolio funds under. With your assistance I could evade high taxes that are frustrating the wealthy in US.

Can we work for the mutual beneficial relationship between yourself and my company?

I look forward to your prompt reply

Yours faithfully,

Mr. Barkev Hagopian,
USA.

Spam message of the day: “Dear Account User”

Some spammers are sophisticated, clever, even witty in their efforts to extract personal information from the millions and millions trough the practice of phishing. Phishing is the “criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication.”

In other words – “Hey man, I’m your bank! You know, the place where you put all your monies. Everything’s fine/Everything’s horrible and we need you to send us to verify your account number/social security number/drivers license number/password so we can steal all your stuff – er – we mean so we can keep you SAFE! Okay?” Most times they include realistic graphics and have made an effort to appear to be real. They’ll send a million spam messages pretending to be Bank of America in hopes a percentage of recipients are actual BoA customers, and that a percentage of them cough up some personal info.

In contrast today, our spam filters grabbed a spam message that seemed not to be trying all that hard, and it is pasted below.

Dear Account User,

This message is from the helpdesk support center. Be informed that your mail box has exceeded the storage limit set by your administrator/database, you are currently running out of context and you may not be able to send or receive some new mail until you re-validate your mailbox.

To prevent your email account from been closed, re-validate your mailbox below to enable us increase the storage limit:

User Name:
User Email:
Email Password:
Your Webpage Login:

Your account shall remain active after you have successfully confirmed your account details.Thank you for your swift response to this notification we apologize for any inconvenience.

Imagine that’s a phone call your webmaster receives at the office.

Spammer: “Hi, this is the helpdesk. We need your login information to the corporate internet web site.”

Webmaster: “Um, the helpdesk? What helpdesk?”

Spammer: “You know. Us. THE helpdesk. We are not fake at all. Password please.”

Click…dial tone…

What’s your favorite spam message? Have you ever fallen prey to a spammer?

Barracuda Labs: Phishing Spam Targets Netflix Users

If you use Netflix, like me and 10 million other people, watch out for a phishing scam.  Barracuda Labs pushed out this warning today:

Just yesterday, Barracuda Labs intercepted thousands of copies of a spammed phishing attack aimed at customers of the popular online video rental service Netflix. While phishing attacks are nothing new, especially against financial institutions, this attack is particularly well done.

Their blog post is comprehensive, and worth a read.

Barracuda Networks Points Finger at Google in 2010 Mid-Year Security Report

Finger Pointing 3244332524_203683a98f_oBarracuda Networks today released their 2010 mid-year security report, and they’re looking askance at some big names.  For one thing, the headline on Barracuda’s site reads:

Google Crowned “King of Malware” – Has Two Times More Malware than Bing, Yahoo! and Twitter Combined

So, search with care, friends. We encourage you browse the report and see what they mean.

The finding are worth a read, and you can get through the report quickly.  The payoff is learning things like: of every 100 Twitter users, 90 have less than 100 followers.  (I’m in that top ten percent, if you’re wondering, and so is the WSG Twitter account.)

The 80-page report can be found here in PDF form.

Phishing attacks always a threat; When in doubt, just ask us.

A client of ours sent this over to me today asking if it was legitimate or not.  We get questions like this quite often, and we always tell folks to reach out to us in moments of doubt, rather than doing something potentially harmful.  We’re always, always glad you asked.  Here’s what was sent over this morning. 

Look below for the rest of the post.

—–Original Message—–

From: C Web Mail Team [mailto:webmailteam@webname.com]

Sent: Tuesday, April 13, 2010 8:00 AM

Subject: Attn: webmail Owner

Attn: webmail Owner

We just confirmed that you have not upgrade to the new web-mail version. That is why we are sending

you this massage to upgrade your account now. This is because we are preventing your web-mail from

closure. And also we have notice that your mail have been used for send spam mail to other mail.

To prevent your account from this you will have to send a verification massage so that we will

confirm from our computer system that you are the rightfully owner of this mail and also to upgrade

your account to the version. To upgrade your account you have to send us the following information

so that we can upgrade as soon as possible.

CONFIRM YOUR EMAIL IDENTITY BELOW

Email User name : ……….

EMAIL Password : ………..

Date of Birth :………….

Last login:……………..

Warning!!! if you refuse to send this information to us within (1) weeks of receiving this warning you will

lose your account. Warning Code: PX2G99AAJ

Thank you for using webmail

………………………………………………..

NOTE: This message is authorize by the webmail Project email account protector unit.Notification message will be send back to you after verifying your account before account could be reset.

C All right reserve.

This is a common occurrence, and a nasty potential threat so let’s look at how this played out.  Someone – let’s call them Janice – receives an email asking her to click on a link, submit personal information, reply with answers to questions and so on, all in the name of making sure something bad doesn’t happen to her.  Things like the protection of her bank account, the continuity of her webmail access, a shinny opportunity like free tickets or an iPod and so on.  The request is presented in ambiguous enough a manner as to keep Janice from dismissing it out of hand.  If it was something more cartoonish like a Viagra solicitation or an invitation to a gambling web site, Janice might have been able to click ‘delete’ and move on.

In this case, Janice is left to wonder – should she or shouldn’t she.  Should she send her birthday, password and username to the system administrator or not?  What if her webmail access was turned off?  How would she re-activate it?

We hope that Janice and everyone else will consider a third option – ask for help.  We can quickly answer the question for you.  Avoid, avoid avoid complying with requests like this, no matter now legitimate it might look.  Just ask us.  We can help you stay out of hot water.

Page 1 of 212