Posted by
admin on Friday, May 11th, 2012 18,784 views
Another malicious link received by an user via Twitter: hxxp:// profitscoaching .info /index.php?eVTv=1336686044437 Whois details: Domain Name: profitscoaching .info Registrar: GoDaddy.com LLC (R171-LRMS) Status: CLIENT DELETE PROHIBITED, CLIENT RENEW PROHIBITED, CLIENT TRANSFER PROHIBITED, CLIENT UPDATE PROHIBITED Expiration Da...
Continue reading...
Posted by
admin on Saturday, January 28th, 2012 5,479 views
We have received various spam emails that simulate messages from Better Business Bureau (BBB), but in real are used to spread malicious links that leads to Blackhole Exploit Kit. The subject of the emails looks like this: Your updated information is necessary A screenshot of the email: Other details of the emails: Return-Path: &...
Continue reading...
Posted by
admin on Sunday, August 7th, 2011 4,895 views
Another email containing malicious URL used for phishing attack against MasterCard and Visa users: Return-Path: <services@security.com> Received: from mailrtr1.deltacom.net (mailvip.deltacom.net [72.243.252.244]) Received: from User ([66.0.110.18]) by mailrtr1.deltacom.net (MOS 4.1.10-GA) From: "visaeurope"<se...
Continue reading...
Posted by
admin on Saturday, August 6th, 2011 6,833 views
Phishing attack against eBay users: Return-Path: <aw-confirm@mail.aby.fr> Received: from mail.ktmtalk.com (mail.ktmtalk.com [173.74.246.25]) Received: from User [98.175.62.124] by mail.ktmtalk.com with ESMTP Reply-To: <aw-confirm@mail.aby.fr> From: "eBay Member jxavier14"<aw-confirm@mail.aby.fr> Subje...
Continue reading...
Posted by
admin on Saturday, August 6th, 2011 3,452 views
Another email that is used to spread a fake PayPal message containing a malicious link used for phishing attack against PayPal users: Return-Path: <services@security.com> Received: from mailrtr4.deltacom.net (mailvip.deltacom.net [72.243.252.244]) Received: from User ([66.0.110.18]) by mailrtr4.deltacom.net (MOS 4.1.10-GA)...
Continue reading...
Posted by
admin on Tuesday, June 14th, 2011 9,485 views
Suspicious email spreading malware: Return-Path: <info52943@ups.com> Received: from [39.203.6.87] (account 1361@ms21.hinet.net HELO ybydypsmsb.cehflcrileuz.ru) From: "United Parcel Service" <info52943@ups.com> Subject: United Parcel Service notification #46034 Message: May 2011United Parcel Servicetracking ...
Continue reading...
Posted by
admin on Wednesday, May 18th, 2011 7,365 views
New phishing email related to PayPal accounts: Return-Path: <servviice@paybal.com> Received: from WIN-ATAF5I4OOP1 (unknown [96.44.188.43]) Received: from User ([127.0.0.1]) by WIN-ATAF5I4OOP1 From: "Paypal"<servviice@paybal.com> Subject: Your Paypal Account Will Be Limited Date: Tue, 17 May 2011 18:38:40 -0...
Continue reading...
Posted by
admin on Sunday, May 1st, 2011 7,848 views
Suspicious email spreading malware: Received: from 18714128077.user.veloxzone.com.br (unknown [187.14.128.77]) Received: from [132.75.231.74] (helo=qnmekzdssguat.bacphgvlbnez.ua) From: "Puremobile Inc." <h5923a@ms2.hinet.net> Subject: Your Order No 218538 - Puremobile Inc. Message: Thank you for ordering from Pur...
Continue reading...
Posted by
admin on Wednesday, April 27th, 2011 181,546 views
Another suspicious email spreading malware: Received: from [246.236.108.228] (helo=waeztfotlyzjd.jxokxslnvzq.org) From: " Bobijou Inc" <premierednxez86@expdel.com> Subject: Successfull Order 386284 Return-Path: <premierednxez86@expdel.com> Message: Thank you for ordering from Bobijou Inc. This message is to...
Continue reading...
Posted by
admin on Tuesday, April 26th, 2011 5,640 views
Honeypot reported a suspicious email: Return-Path: <apache@94.229.165.236.srvlist.ukfast.net> Received: from 94.229.165.236.srvlist.ukfast.net (94.229.165.236.srvlist.ukfast.net [94.229.165.236]) Received: from 94.229.165.236.srvlist.ukfast.net (unknown [127.0.0.1]) by 94.229.165.236.srvlist.ukfast.net Received: by 94.229....
Continue reading...
