Issue 130 - May 2012 (1st Edition) - Page 16
Phishing, Malware and Survey Scam Campaign - 'Click Here To See Attached Photos'
Spam emails invite recipients to "Click here to see the attached photos", "Click here to see the attached video", "Click here to read this message" and other similar messages.
This is an ongoing spam campaign designed to steal Windows Live login details and/or trick users into participating in online survey scams or visit websites that harbour malware. The criminals use the stolen information to hijack Windows Live accounts and use them to send further scam and malware messages.
Detailed analysis and references below example.
Last updated: 19th April 2012
First published: 19th April 2012
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer
Click here to see the attached video
Click here to see the attached photos
Click here to read this message
For several months spam emails like the ones shown above have been hitting inboxes around the world. The emails arrive with a variety of brief and usually meaningless subject lines and contain only a hyperlink rendered in a large font.
The messages are part of an ongoing campaign
that apparently has multiple criminal purposes. Many of the links open a fake login website designed to closely resemble a genuine Windows Live sign in page:
If recipients fall for this ruse and enter their login details, their Windows Live accounts are subsequently hijacked and used to blast out more of the same spam messages to people included on the account's contact list. After supplying their login details, some users will then be redirected to compromised websites that contain various types of malware. In other cases, they will instead be taken to a survey scam website
that promises them the chance to win free products such as computer equipment in exchange for participating in various "surveys" or "offers".
Some of the "survey" pages ask users to provide personal information including name, address and contact details, ostensibly to allow them to go in the draw for a prize. Others invite them to download dubious toolbars, games or software. Still others will claim that users must provide their mobile phone number - thereby subscribing to absurdly expensive text messaging services - in order to get the results of a survey or go in the running for a prize.
No matter how many offers or surveys they complete, or what services they subscribe to, victims will never receive their promised free gift or even a genuine competition entry. The scammers who create these bogus promotions will earn commissions via suspect affiliate marketing schemes each and every time a victim completes an offer or participates in a survey. Victims may also be faced with large phone bills for unwanted mobile phone services and, because they have provided name and contact details, they may be inundated with unwanted promotional emails, phone calls and junk mail.
Subject lines in these scam emails vary considerably. The text of the malicious links in the emails also varies and may be different than the examples included here. Some versions of the scam emails seem to bypass the initial phishing scam page and go directly to the malware or survey scam websites. The malicious links also incorporate the email address of the account receiving the scam messages. This means that clicking the links can not only open a scam website, but can also "verify" the email address as valid thereby leading to further increases in email spam.
If you receive one of these messages, do not click on the link it contains. Simply delete it.
Windows LIVE email and password theft
What is a Facebook Survey Scam? - Survey Scams Explained
Pages in this issue:
- Fake Microsoft "Anti-spoofing Update" Notification Email
- Facebook Survey Scam - Free Pair of Ray-Bans
- New US Presidential Coins Omit "In God We Trust"?
- Warnings Claim Thousands May Lose Internet In July 2012
- Facebook Sweepstakes Advance Fee Scam
- Facebook Message Asks For Boycott Of Subway Store Due to Staff Treatment Of Autistic Child
- Hoax: HIV Infected Blood In Pepsi
- '22 Foot 2500 Pound' Crocodile Photo
- 'DGTFX Virus' Email Account Phishing Scam
- Bank Of America 'General Account Update' Phishing Scam
- Photos of Elephants Inside the Mfuwe Lodge in Zambia
- Miracle in Egypt - Buried Children Saved By Jesus
- Bogus Verizon Wireless Bill Email Points to Malware
- Boeing 797 Hoax
- 'Switch To Green' Facebook Survey Scam
- Phishing, Malware and Survey Scam Campaign - 'Click Here To See Attached Photos'
- Yahoo 'E-Mail Account Exceeded' Phishing Scam
- Hoax - June 2012 - 5 Fridays, 5 Saturdays and 5 Sundays