– Payment Changed – Spam Campaign

The trend for the summer is for the major botnets to spoof a different brand-name domain every week.

This week’s victim is with large volumes of these bogus emails being sent by infected personal computers (zombies) acting to distribute these “ – Payment Change” spoofs.

A typical example comes:

Subject: – Payment Charged
From:     Newegg <>
Click for a larger image

This spoof is apparently convincing enough that even when we block it as spam, users often “resend” it to themselves thinking our filters must have been mistaken.

Truth is, no matter how good the spoof looks, it’s not really from Newegg and the links all lead to spammer e-commerce sites.

A variant comes with an attached file “NewEgg Invoice.html” that will direct the recipient to a malware site which will attempt to infect the visitor’s computer.

With this kind of campaign the spammers might just have won the war. If you can convince/trick  recipients into releasing emails from their spam filters then it really doesn’t matter how good the filtering is.  Fortunately only a fraction of a percent of all spam is good enough to fool users, but this one makes the grade.

- -

OnlyMyEmail is an award winning hosted spam filtering service and business email hosting provider. Our enterprise cloud computing anti-spam solution, the MX-Defender, has the highest capture rate of any spam filter ever tested in the VBSpam Challenge, blocking a record setting 99.9993% of all malicious and junk email.

Our Personal spam filtering system is also a Software as a Service (SaaS) solution and has won both the PC World "World Class Award" and also the PC Magazine "Editor's Choice Award."

OME-Kids is a webmail solution that protects children from spam and other harmful emails. OME-Kids offers unique Parental Controls that allow you to choose the level of security and oversight that's right for your child.

Tags: , , ,

Comments are closed.