Articles by Rowland YU

A new wave of phishing scams target Telstra

TelstraFeat

Phishing has diversified greatly in the last few years. No longer just a problem for financial institutions, the latest wave of attacks have targeted Australian ISP Telstra/BigPond.

Australian job hunters offered money laundering jobs via fake seek.com.au website

Australian job hunters offered money laundering jobs via fake seek.com.au website

Don't be an ass! Reject money mule jobs offered by cybercriminals, even if they do pretend to be legitimate recruitment websites.

Talking malware and spam at the AVAR 2010 Conference, Bali

Talking malware and spam at the AVAR 2010 Conference, Bali

Rowland Yu of SophosLabs is a lucky chap. He was in Bali last week attending the Association of anti Virus Asia Researchers (AVAR) conference. Here he reports on what he saw and heard.

Stock Price vs. Spam Keywords

Stock price versus spam keywords

As noted by Bloomberg on 25 September, Apple was valued at $267 billion, ahead of PetroChina's $265.5 billion, becoming the world's second-largest company in terms of market value. Furthermore, back to May this year, Apple had surpassed Microsoft in market Read more…

The Recent Burst of HTML Attachment Spam

Default image

During the last 4 months, SophosLabs has seen an explosion in the resurgence of HTML attachment spam. As shown in the following figure, it accounts for 8% of all the spam in the June and September, and about 2-3% in Read more…

Australian Tax Refund Spam Again...

Australian Tax Refund Spam Again...

It is now Australian Tax Refund time again. And right on cue, spammers have re-emerged in producing phishing scams as they would never miss this opportune moment to steal money. So, what does this year's taxation spam look like? It Read more…

Free Next Generation iPhone 4G spam

Image (1) iphone4g.png for post 25428

Can you believe that you have a chance to get a pre-release Apple iPhone 4G? Yes, you can now test and keep an Apple iPhone 4G by simply clicking on the link in the following email. How exciting! However, this Read more…

FakeAV Uses False "Microsoft Security Updates"

Image (1) security.jpg for post 25100

Today at SophosLabs we encountered another interesting rogue security software (Fake AV) variant, Troj/FakeAv-AUF. When run Troj/FakeAv-AUF poses as the Windows Automatic Update facility and purports to install an update named XP Internet Security. This is, as you will have Read more…

Evolution of Money Making Spam

Image (1) job_spam1.png for post 24787

During the last few months, we here in SophosLabs have witnessed a large increase in volume of "job offer" spam. Most of these include links referring to fake online job offer websites. Here, I am going to demonstrate how spammers Read more…

Hotmail Password Scam Continuing...

Image (1) hotmailscam.png for post 24518

Just about 2 weeks after Hotmail credentials were revealed online [1,2], another wave of spam campaign targeting Hotmail, MSN and Windows Live! was witnessed by SophosLabs. The message is quite similar to the previous MSN Messenger Block Checker spam. The Read more…

Is Your Windows "ws2_32.dll" File Safe?

Image (1) ws2_32.png for post 24456

The Windows Sockets Library ws2_32.dll, is required by windows and applications to handle network connections. SophosLabs recently published a detection, named W32/Patched-D, for infected ws2_32.dll files which attempts to download files onto the compromised computer. The interesting trick is that Read more…

Fake Online AV Scanner Installs Fake AV

Image (1) onlinefakeav.png for post 24414

Today, SophosLabs witnessed a bogus website with a fake online AntiAdware scanner. When the website is accessed, it executes embedded javascript within the webpage. This script will cause the victim's computer to display a fake progress bar pretending to scan Read more…

Don't Get Mounted By New World of Warcraft Mounts

Image (1) wow.png for post 24294

Today SophosLabs received a phishing scam targeting the popular online game "World of Warcraft" (WoW). This scam message disguises itself as an official Blizzard Entertainment (makers of WoW) email and states that the company is about to launch a new Read more…

New Phishing Technique for the UK Tax Office

Image (1) uk-tax-refund.png for post 24185

In my previous blog "the Australia Tax Office. However, this time it uses a new technique. The phishing message doesn't contain any bogus link or dodgy reply-to field. Instead it has a forged html attachment named "payment_form.pdf", which when opened, Read more…

Language Is Not A Problem For Michael Jackson

Image (1) mj_album.png for post 24123

Michael Jackson's record sales have risen dramatically since his death. It is thus not surprising that spammers will not pass up on this great commercial opportunity. Today, SophosLabs received a Chinese spam campaign advertising Michael Jackson albums on DVD (highlighted Read more…

Easy Steps to Stop Being Phished

Image (1) phish_socialt.png for post 23990

Phishing has become an increasingly rampant threat in recent years. It is an Internet fraudulent act for the purpose of gathering sensitive information such as usernames, passwords and credit card details. A typical phish sends a deceptive email falsely claiming Read more…

Michael Jackson's Death Sparks Off Spam

Image (2) michael_jackson.png for post 23873

The death of the "King of Pop", Michael Jackson, spread great shock through the entire world. Just after about 8 hours of his demise, SophosLabs witnessed the first wave of spam messages employing the sad news in the subject line Read more…

Losing More Money To The "Australian Tax Office"

Losing More Money To The "Australian Tax Office"

Let's face it, no one likes to pay tax. ;-) With the coming of the end of the financial year (30th June), taxpayers working in Australia are preparing to lodge their income tax forms to the Australian Tax Office (ATO).  Read more…

eWay - Online phishing made easy!

Image (2) ewayphish1.png for post 23730

After we have seen a surge in phishing scams targeting one of Australia's biggest banks, Commonwealth Bank (2), SophosLab witnessed another Australia leading payment solution campany, eWay, falling  victim to being a phish. The interesting thing in today's phishing scam Read more…

iPhone and eBay Phishing Scam

Image (2) ebay_phish.png for post 23651

Apple's products such as the iMac, the Mac Mini, the iPod and the iPhone tend to generate a lot of interest and publicity around the world. Media publicity regarding the iPhone and its successor, the iPhone 3G have become so Read more…