Earlier this week, there was an interesting mass phishing/spam email sent to a group mailing list, presumably from the "webmaster" of the webmail service. What I particularly like about it, is how legitimate it sounds, and the use of the ruse of applying better security (in this case, implementation of Sender Address Verification, anti-virus and encryption).The original address seems to be a California server on Comcast (although the IP address is apparently in Nigeria?); but the reply back is to an ISP in Chile.
Dear Subscriber,
Please, we are currently performing a database maintenance and upgrade on our webmail log for a better performance of our services to all subscribers. We are very much and indeed concerned about stopping the proliferation of spam. We have implemented a Sender's Address Verification (SAV) to ensure that you do not receive unwanted email(s) and to give you the assurance that your messages to message center have no chance of being filtered into junk email folder.
Also a DGTFX virus has been detected in your email account folder. Your email account has to be upgraded to our new and Secured DGTFX anti-virus 2013 version to prevent damages to our webmail log and files. To help us confirm and protect your account and our webmail log, please, fill the columns below and send back to us to validate your webmail account or your email account will have to be deactivated from our webmail log to avoid the spread of this virus.
Email Address:
Account Username:
Account Password:
You will be sent a password reset message in the next seven (7) working days after undergoing this process. We guarantee and assure you of more quality services at the end of this maintenance exercise and we apologize for the inconvenience this process might caused. Note also that your password will be encrypted with 1024-bit RSA keys for your password safety.
We sincerely apologize once again for this inconvenience and appreciate your help in this emergency situation.
Regards
---
----
Webmail Technical Team
No comments:
Post a Comment