MyNameHere Posted April 2, 2012 Share Posted April 2, 2012 Hi folks, Has anyone else started getting spam disguised as airline check-in and reservation notices? I got two already this morning claiming to be from US Airways. The link for "online reservation" or whatever takes you to one of these sites: express-cargo.org galleryshoponline.co.za I didn't check to see what those really were, of course. Link to comment Share on other sites More sharing options...
Lking Posted April 2, 2012 Share Posted April 2, 2012 Has anyone else started getting spam disguised as airline check-in and reservation notices? Have seen a few the last week or so. Frequency seems lumpy so guessing sent by bot nets. Link to comment Share on other sites More sharing options...
Geek Posted April 2, 2012 Share Posted April 2, 2012 Interesting.... today United's site was spitting out errors and crashed. Some people got charged six times for one ticket. Related? Cheers! Link to comment Share on other sites More sharing options...
InvisiBill Posted April 3, 2012 Share Posted April 3, 2012 This is slightly different, but at the same time it's exactly the same as every other "trojan" spam. They disguise their links as something you would want to click on. That could be anything from nude celebrity pics to LinkedIn invitations to winning the lottery to needing to verify the security on your account. These types of automated emails tend to work well, I believe, because they're generally semi-personal (it may have your name or something, but it's mostly a pretty cookie-cutter form letter) and have long confusing URLs (often through a marketing service rather than directly to the site too). It's easy to see that paypalcopy.hackersite.com isn't the same as www.paypal.com, but it's much more difficult when there's a marketing redirect or the link goes four subdirectories down to a scri_pt with 15 parameters that won't fit in a client's status bar even on the largest monitor available. If it does get caught as spam, it's more likely to be checked out, since those marketing form mails are the type that would tend to be a false positive. The companies themselves are making it harder to tell what's legit and what's not because they're making their emails overly complex. Link to comment Share on other sites More sharing options...
Farelf Posted April 3, 2012 Share Posted April 3, 2012 Looks like there's a bit of US Airways spoofing going around, as InvisiBill says a "tried and tested" method using any feasible source to get under your guard - http://phishing.vcu.edu/2012/04/02/fake-u-...istration-scam/ The "buttons" they mostly go for are panic and avarice and as a bonus (for them) these spams sometimes coincide to some extent with actual events in your life - and there will always be some sense of, or apparent cause for, urgency. You can sometimes strike back by forwarding the link URLs to virustotal or similar which just might alert anti-malware organizations to a new exploit site but, as InvisiBill also alludes, the possible exploits are often well-buried and undetectable by a surface scan. Reporting the spam through SC at least raises the bar for the spam senders - they can't use just any old internet connection and account to pump the stuff out without drawing the spotlight and even if they're a little stealthy/distributed they can still attract unwanted attention to their peripheries. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.