Yet another Phishing campaign is out and about and looking to steal your Google Adword’s user-name and password.
So far the emails we’ve reviewed are pretty straightforward:
Subject: Ads have stopped running
From: ”Google AdWords”<email@example.com>
But the “To:” field has generally been empty, which is a pretty big clue that the email is a fraud.
The sending address is of course spoofed. The email doesn’t come from Google but instead an compromised overseas mail server in this case.
An actual email is displayed below:
Notice that the email warns that “Some of the ads have stopped running today (Monday, 12 April 2010)” and that inserting the correct date not only makes the email slightly more persuasive, but also helps the campaign evade simplistic spam filters that hash email content, looking for exact matches.
The actual Phishing trick to the email is that the hyper-linked phrase “Click here to get your ads back up” does not link to a valid Google server, but instead to one of many similar sounding variations of the domain. The actual email above links to:
But keep in mind that we’ve seen many variations on the same theme.
Naturally, visiting the spammers Phishing server and providing the username and password to your actual Google Adwords account will not end well.
OnlyMyEmail is an award winning hosted spam filtering service and business email hosting provider. Our enterprise cloud computing anti-spam solution, the MX-Defender, has the highest capture rate of any spam filter ever tested in the VBSpam Challenge, blocking a record setting 99.9993% of all malicious and junk email.
Our Personal spam filtering system is also a Software as a Service (SaaS) solution and has won both the PC World "World Class Award" and also the PC Magazine "Editor's Choice Award."
OME-Kids is a webmail solution that protects children from spam and other harmful emails. OME-Kids offers unique Parental Controls that allow you to choose the level of security and oversight that's right for your child.