Spam roundup - Am I getting Google's spam?

Filed Under: Google, Spam, Windows

I spent some time today scouring the massive spam queues in SophosLabs and thought I would share some information on the latest email threats. I had a chuckle thinking I had accidentally received mail destined for Google.

Spam for home windowsThe subject of the message read "Tips on how replacing windows can improve your home." Simply capitalize the W and you have my post from a few days ago about Google's decision to move away from Microsoft Windows.

This spam ultimately led to a spam portal/link farm. These sites make money through affiliate referrals. Despite Amway's claim of legitimacy, affiliate marketing motivates people to pursue scams to get rich quick and drives a large portion of the spam economy.

Next in the spam parade were a slew of messages trying to take advantage of people affected by the BP oil spill in the Gulf of Mexico. Most of these led people to opportunistic lawyers attempting to get people to sign on to U.S.-based class action lawsuits.

Oil victim spam

Not surprisingly, the lawyers show up for their cut whenever there is a tragedy or people are harmed.

No summary of spam would be complete without the latest fake anti-virus attack. For the first time, I saw a false virus alert included inside an email message in a crude attempt at social engineering!

Screenshot of email Fake-AV alert

Today is ultimately no different than any other day, but as you can see, effective email filtering is as important as ever. Whether scammers are preying on the economic downturn and potential tax incentives or the tragedy in the Gulf of Mexico, or sending out the latest in a string of scams posing as Windows security alerts, there are many opportunities for users to fall victim.

I recommend taking a few moments each quarter to remind your user base about safe email practices. Integrate a brief message into your staff meeting, company newsletter, or bulletin board in the break room to remind folks to be ever vigilant against the threat.

, , , , ,

You might like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Chester Wisniewski is a Senior Security Advisor at Sophos Canada. He provides advice and insight into the latest threats for security and IT professionals with the goal of providing clear guidance on complex topics. You can follow Chester on Twitter as @chetwisniewski, on App.net as Chester, Chester Wisniewski on Google Plus or send him an email at chesterw@sophos.com.