Info collector

Latest SPAM

More highly personalised malspam using hijacked domains

By on March 20, 2017 in Latest SPAM

Following on from this spam some weeks ago, another one comes in using a broadly similar technique of including the potential victim’s real home address while using apparently hijacked infrastructure (although in this case the hijacking isn’t so elaborate). From: customerservice@newshocks.com [mailto:customerservice@newshocks.com] Sent: 15 March 2017 18:23Subject: [Redacted] Your order 003009

Continue Reading »

Pump and dump spam: Incapta Inc (INCT)

By on March 20, 2017 in Latest SPAM

It’s been a long time since I’ve seen a pump-and-dump spam run illegally pushing a stock as hard as this: From:To:Date:    20 March 2017 at 09:30Subject:    This stock is about to receive a buy out at 10 times its current market price…Dear Subscriber,It’s been a long time since I sent you my special newsletter containing […]

Continue Reading »

Malware spam: “RBC – Secure Message” / service@rbc-secure-message.com

By on February 15, 2017 in Latest SPAM

This fake banking email leads to some sort of malware: From:    RBC – Royal Bank [service@rbc-secure-message.com] Date:    15 February 2017 at 17:50 Subject:    RBC – Secure Message Signed by:    rbc-secure-message.com Secure Message This is an automated message send by Royal Bank Secure Messaging Server. To ensure both you and the RBC

Continue Reading »

Highly personalised malspam making extensive use of hijacked domains

By on February 15, 2017 in Latest SPAM

This spam email contained not only the intended victim’s name, but also their home address and an apparently valid mobile telephone number: Sent: 14 February 2017 13:52 To: [redacted] From: Subject: Mr [Redacted] Your order G29804772-064 confirmation Dear Mr [redacted], Thank you for placing an order with us. For your

Continue Reading »

WARNING: pmacademyusa.org / “Project Management Academy USA”

By on January 23, 2017 in Latest SPAM

For the past six years I have been following the exploits of Patchree “Patty” Patchrint and Anthony Christopher Jones who claim to run a series of seminars on project management and grant writing. Umm.. and failed restaurants in Los Angeles. I’m not going to repeat all of the information in this post, I advise you […]

Continue Reading »

Malware spam: “The Insolvency Service” / “Investigations Inquiry Notification” / chucktowncheckin.com / chapelnash.com

By on January 19, 2017 in Latest SPAM

This malware spam in unusual in many respects. The payload may be some sort of ransomware [UPDATE: this appears to be Cerber]. From: The Insolvency Service [mailto:service@chucktowncheckin.com] Sent: 19 January 2017 12:22 Subject: EGY 318NHAR12 – Investigations Inquiry Notification Company Investigations Inquiry Informing You that we have received appeal regarding your company which

Continue Reading »

Scam: 01254522444, the fake BT engineer and 888DCA60-FC0A-11CF-8F0F-00C04FD7D062

By on January 12, 2017 in Latest SPAM

In the past few weeks I have seen a huge upsurge in the number of Indian tech support scammers ringing, both at home and my place of work. (For example.. this). One common trick they use revolves around this hexadecimal number 888DCA60-FC0A-11CF-8F0F-00C04FD7D062. Either it’s a signal that hackers are at your PC, or it’s your […]

Continue Reading »

02085258899 – tech support scam (using anydesk.com, teamviewer.com and supremofree.com)

By on December 23, 2016 in Latest SPAM

If these people ring you DO NOT GIVE THEM ACCESS TO YOUR PC and either hang up – or waste their time like I do. It seems there are some prolific technical support scammers ringing from 02085258899 pretending to be from BT. They had a very heavy Indian accent, and they have made many silent […]

Continue Reading »

Malware spam: “Payslip for the month Dec 2016.” leads to Locky

By on December 19, 2016 in Latest SPAM

This fake financial spam leads to Locky ransomware: From:    PATRICA GROVESDate:    19 December 2016 at 10:12Subject:    Payslip for the month Dec 2016.Dear customer,We are sending your payslip for the month Dec 2016 as an attachment with this mail.Note: This is an auto-generated mail. Please do not reply. The name of the sender will vary. Attached […]

Continue Reading »

Malware spam: “Payment Processing Problem” leads to Locky

By on December 15, 2016 in Latest SPAM

This fake financial spam leads to Locky ransomware: From:    Juliet LangleyDate:    15 December 2016 at 23:17Subject:    Payment Processing ProblemDear [redacted],We have to inform you that a problem occured when processing your last payment (code: 3132224-M, $789.$63).The receipt is in the attachment. Please study it and contact us.-King Regards,Juliet Langley The name of the sender will

Continue Reading »

Top