Must Read: Samsung Galaxy S4 review

Topic: Browser

Beware this fake ShopBop order email

Summary: I was nearly scammed into downloading malware today by a cleverly executed phishing email that just arrived in my inbox

Phil Wainewright

By for Software as Services |

I just received an email purporting to confirm an order that I never placed at online retailer ShopBop.com. In fact, the order doesn't exist and the email doesn't come from the retailer. Although it looks perfectly genuine (see picture), if you click on the URL to view the order details, it takes you to a site that downloads and runs a malware file on your machine. This is because the domain in the clickable link is not the genuine shopbop.com but a cleverly disguised lookalike name.

A quick search on Twitter reveals that several other people have received this today. It demonstrates how clever phishing fraud is becoming these days. Your first reaction is to furiously gasp, 'I didn't order that!' and click on the link to see exactly what is going on. I was just about to do just that when I realized that something didn't add up. So I hovered over the order details URL and saw that the domain it linked to was subtly different. Although it might have been legitimate, a quick check of the domain in my browser showed that it was trying to download an executable zip file to my PC.

This is a fresh fraud with no easy-to-find information coming up (at the time of writing) from a Google search, which illustrates the value of Twitter for getting up-to-the-minute information about new threats and events. Most of all, though, it demonstrates why you must always have your wits about you in the online world. Interestingly, though, it looks as though the URL it links to is already getting shut down by malware prevention tools (for example, Shopbop.com's customer service email address rejected my email trying to advise them of the scam, presumably because of the link it contained). That in turn demonstrates the power of cloud-based malware prevention today.

Topics: Browser, Collaboration, E-Commerce

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

7 comments
Log in or register to join the discussion

  • phishing from an amazon lookalike

    i got a similar email looking like it was from amazon letting me know that my order has been canceled and the link to the order number was a malware link.
    lifeguardernie
    Reply Vote

  • Received same, thank you for posting!

    Almost clicked on this nasty piece of work, props to google for indexing this story and returning it for a "shopbop phishing" search!
    jonahkeegan
    Reply Vote

  • Avoiding phishing

    For a few bucks a year, get a URL of your own, such as MyURL.com, then whenever you give a site your email address, add all or part of their name to the end of your name, such as MyNameAmzn@MyURL.com or MyNameCitiBnk@MyURL.COM. Then if you get an email supposedly from Amazon and it doesn't have the email address to you with "Amzn" in it, you know it's bogus. Having customized email addresses also makes it easy to block a particular sender if you want to.
    nfordzdn
    Reply Vote

  • Thanks for the reminder....

    ...that even tech-savvy people can be tricked.

    It helps to keep a record of your online purchases. If you never placed an order with a business, you have no reason to click on their email regarding your "order."

    The people who create these scams should be boiled in oil. Death is too good for them.
    sissy sue
    Reply Vote

    • RE: The people who create these scams should be boiled in oil

      No, I would rather see them used in LIVE bayonet training (as the `dummy`).
      fatman65535
      Reply Vote

  • $281+ For Two Pairs of Pants

    $281+ for two pairs of pants would have been a clue.
    The headlines would have read "Husband's Pants Puts Wife into Murderous Mood"
    coloradodoug
    Reply Vote

  • fdfdsd

    Pet Supplies Wholesale Bedding http://www.chinawholesaletown.com/wholesale-Crystal-Gifts/ Candle
    Wholesale Candle Wholesale Golf Products http://www.chinawholesaletown.com/wholesale-Clothing/ Stuffed Animals
    Wholesale Compass Wholesale Whistle http://www.chinawholesaletown.com/ Audio Video Equipment
    Wholesale Bag Wholesale Scissors http://www.chinawholesaletown.com/wholesale-Wallet/ Vuvuzela
    Wholesale Waterproof Case Wholesale Cup http://www.chinawholesaletown.com/wholesale-Electrical-Gifts/ Bracelet
    Wholesale Ashtray Wholesale Vuvuzela http://www.chinawholesaletown.com/wholesale-Mug/ Wine Set
    Wholesale Massager Wholesale Watch http://www.chinawholesaletown.com/wholesale-Frisbee/ Clap Hands
    Muslim Products Wholesale Tie http://www.chinawholesaletown.com/wholesale-Umbrella/ TelePhone
    Wholesale Tag Promotional Products http://www.chinawholesaletown.com/wholesale-Personal-Safety/ Camera
    Safety Suppliers Wholesale Shoe http://www.chinawholesaletown.com/wholesale-Stress-Ball/ Magnifier
    Wholesale Toys Wholesale Banner http://www.chinawholesaletown.com/wholesale-Flash-Gift/ World Cup Products
    Wholesale Glasses Fishing Supplies http://www.chinawholesaletown.com/wholesale-Binoculars/ USB Flash Drive
    Lady Beauty Care Wholesale Earphone http://www.chinawholesaletown.com/wholesale-Silicone/ Earphone
    Wholesale Stress Ball Wholesale Mug http://www.chinawholesaletown.com/wholesale-Clocks/ Lunch Box
    Medicine Instrument Wholesale Jewelry http://www.chinawholesaletown.com/wholesale-Eye-Masks/ Playing Card
    Wholesale Scissors Arts Crafts http://www.chinawholesaletown.com/wholesale-Reflective-Safety-Vest/ Safety Suppliers
    Wholesale Stapler Wholesale Calculator http://www.chinawholesaletown.com/wholesale-Badge---Pin/ Puzzle
    Wholesale Dartboard Wholesale Lanyard http://www.chinawholesaletown.com/wholesale-Toys---Games/ Tellurion
    Eye Mask Wholesale Coaster http://www.chinawholesaletown.com/wholesale-Digital-Photo-Frame/ Photo Frame
    Wholesale Frisbee World Cup Products http://www.chinawholesaletown.com/ Gift Bags
    Pen Holder Wholesale Clothes Rack http://www.chinawholesaletown.com/wholesale-iPod---iPhone/ Flag
    Promotional Gifts Wholesale Waterproof Case http://www.chinawholesaletown.com/wholesale-Bottle-Opener/ Garden Decorations
    Vocal Concert Products Stuffed Animals http://www.chinawholesaletown.com/wholesale-Heating-Products/ Digital Photo Frame
    Name Card Holder Wholesale Scissors http://www.chinawholesaletown.com/wholesale-Knife/ Lanyard
    Wholesale Lanyard Wholesale Pin http://www.chinawholesaletown.com/ Book Light
    Outdoor Leisure Products Electrical Gifts http://www.chinawholesaletown.com/wholesale-Fishing/ Mouse Pad
    Wholesale Calendar Wholesale Racks http://www.chinawholesaletown.com/wholesale-Apron/ Jewelry
    Wholesale Bracelet Silicone Products http://www.chinawholesaletown.com/wholesale-Medicine-Instrument/ Fan
    Wholesale Puzzle Wholesale Massager http://www.chinawholesaletown.com/wholesale-Furniture/ Tableware
    Wine Set Industrial Supplies http://www.chinawholesaletown.com/wholesale-Pen-Holder/ Scarf
    Wholesale Scissors Wholesale Lighter http://www.chinawholesaletown.com/wholesale-Jewelry/ Heating Products
    Lunch Box Wholesale Mouse http://www.chinawholesaletown.com/wholesale-Clothes-Rack/ Wedding Favors
    Wholesale Flashlight Wholesale Helmet http://www.chinawholesaletown.com/wholesale-MP3---MP4---MP5-Player/ lable
    Business Gift Health Care Products http://www.chinawholesaletown.com/wholesale-Stapler/ Whistle
    Wholesale Album Wholesale Apron http://www.chinawholesaletown.com/wholesale-Valentine-Gifts/ Promotional Gifts
    Wholesale Racks Wholesale Memory Card http://www.chinawholesaletown.com/wholesale-Poncho-Raincoat/ Reflective Safety Vest
    Poncho Raincoat Wholesale Mp3 http://www.chinawholesaletown.com/wholesale-Glasses/ Mobile Phone
    Health Care Products Wholesale Hardware Tools http://www.chinawholesaletown.com/wholesale-Recorder-Pen/ Pin
    Wholesale Umbrella Electroluminescent http://www.chinawholesaletown.com/wholesale-Entertainment/ First Aid Kit
    Wholesale Swimming Products Wholesale TelePhone http://www.chinawholesaletown.com/wholesale-USB-Products/ Sticker
    Wholesale Kitchenware Wholesale Tag http://www.chinawholesaletown.com/wholesale-First-Aid-Kit/ Cards
    jywhy888
    Reply Vote
CNET Join | Log In | Privacy | Cookies Close