Pharmacy Spam Disguised as Twitter Emails
Published on 9th July 2010 by Brett M. Christensen
A spate of spam emails disguised as Twitter notification messages have been hitting inboxes. The spam messages are tricked up to resemble genuine Twitter notification emails, complete with the Twitter logo and colour scheme. The emails claim that there are unread messages from your Twitter account and urge you to click a link, ostensibly in order to view these messages.
However, clicking the link opens a suspect Canadian Pharmacy website
that tries to peddle a range of pharmaceutical products. It is extremely unwise to buy medicines from one of these spam outfits. Firstly, even if you do actually receive a product that you order on one of these sites, you have no way of knowing if it is the real thing or some potentially dangerous substitute. Secondly, these sites often use unsecure pages to process credit card transactions, which could certainly put your credit card details at risk. Thirdly, any outfit morally bankrupt enough to use nasty and deliberately deceptive spam tactics such as these is certainly not someone you would want to trust with your credit card or other personal details.
Moreover, the sites that these spam messages link to often harbour various forms of malware
This Twitter spam/malware campaign seems to be closely related to another such campaign that targets Facebook users. These emails pretend to be official Facebook messages informing recipients that their facebook account has been deactivated
. Links in these messages lead to the same, often malware laden, pharmacy websites.
Busty Amber adopts Twitter and YouTube disguise to help pharmacy spammers
Twitter, Canadian Pharmacy, and Undetected Malware
Facebook Deactivated Account Spam
An example of one of the spam messages:
Subject: Twitter clients brettm
You have 35 unreaded message(s) from Twitter.
Click this link:
Once you confirm, all future email from Twitter will be sent to this address.
The Twitter Team
If you received this message in error and did not sign up for a Twitter account, click not my account
Please do not reply to this message; it was sent from an unmonitored email address. This message is a service email related to your use of Twitter. For general inquiries or to request support with your Twitter account, please visit us at Twitter Support
Screen shot of the spam email: