A currently spamvertised malware campaign is brand-jacking Amazon.com, in an attempt to trick end users into visiting a client-side exploits serving URL.
The campaign, is related to fake Amazon order confirmations, and Twitter password reset campaigns, and is part of a systematic attempt to impersonate well known brands - a well proven technique resulting in tens of thousands of clicks from socially engineered users.
- Sample subject: Amazon.com: Please verify your new e-mail address
- Sample message: “Dear email,
You recently changed your e-mail address at Amazon.com. Since you are a subscriber of Amazon.com Delivers E-mail Subscriptions, you will need to verify your new e-mail address. Please verify that the e-mail address email belongs to you. You can click on the link below to complete the verification process. Alternatively, you can type or paste the following link into your Web browser: http://www.amazon.com”
Go through related Malware Watch posts:
- Malware Watch: iTunes gift certificates, Skype worm, fake CVs and greeting cards
- Malware Watch: Skype exploit, Skype-themed malicious spam campaigns detected
- Malware Watch: Adobe zero day attack, malicious FIFA-themed spam, exploit serving Virus Alerts
Windows users are advised to take basic precautions such as switching to an alternative PDF reader, ensure they are not running outdated 3rd party applications and plugins, consider the use of least privilege accounts, a securely configured modern browser, or isolate their Internet activities in order to mitigate the risk.
