We’re seeing renewed activity in attempted Webmail identity theft Phishing emails. The current campaign attempts to get your attention by stating that you’re over your allowed storage limit. A typical example:
Subject: Your Webmail Quota Has Exceeded The Set Quota
Your Webmail Quota Has Exceeded The Set Quota/Limit Which Is 20GB.
You Are Currently Running On 23GB Due To Hidden Files And Folder On Your Mailbox.
Please Click the Link Below To Validate Your Mailbox And Increase Your Quota.
Click here: http://icebrrg.com/Public/ViewForm.aspx?formID=47626
Alternatively copy and paste the link on your browser.
Failure To Click This Link And Validate Your Quota May Result In Loss Of Important Information In Your Mailbox/Or Cause Limited Access To It.Thanks
HELP DESK
Users that follow the link are provided with a decent looking form asking them to validate their email username/password. Doing so will then enable the spammer to access your email account for the purpose of sending more spam, and committing additional fraud.
This campaign appears to be relatively successful as many of the samples we’ve reviewed have come from apparently legitimate email accounts already hijacked by the spammers, likely with the same Phish.
