Black Friday spams are too good to be true

Filed Under: Apple, Featured, Spam

The old adage "If it sounds too good to be true, it probably is" still holds true online.

Even with the incredible sales upcoming in the US and Canada for Black Friday/Cyber Monday.

Here is a spam using one of the most desirable brands of this upcoming holiday season in a manner that is certainly too good to be true:


"Apple Thanksgiving Prices Now Available
Starting November 13th:
Everything reduced by 90 percent through Thanksgiving weekend

Now, I'm no Apple fanboy, but at 90% off even I might be tempted to pick up a new MacBook Pro. As you likely already guessed, it's a scam.

Like most spam campaigns it will likely result in different web pages being displayed for users from different geographic locations.

The sites I was able to reach were chock full of Google Adwords in an attempt at revenue generation, but I didn't find anything malicious.


With the holiday season approaching we will likely continue to see spammers try to blur the lines between legitimate bargain prices and scams.

Also a good time to remember that your local postal service (e.g. USPS, Royal Mail and Canada Post) or delivery company (e.g. UPS, FedEx and DHL) are not going to email you asking you to open attachments.

Most of these messages are delivering banking Trojans like Zeus (ZBot) which in turn are further infecting victims with Cryptolocker ransomware.

We all know what not to do:

  • Don't click links in emails.
  • Don't open attachments you aren't expecting.
  • Don't believe online promotions that are too good to be true.

, , , ,

You might like

3 Responses to Black Friday spams are too good to be true

  1. Canuck · 692 days ago

    What you see in your example is a parked domain page from

    There is the ability to flag it on the page so Sedo will close the spammers account and ensure they don't get paid for their spamming efforts.

  2. Rob McCausland · 690 days ago

    Your first sentence needs a comma - either before or after "online", depending on your intended meaning.

    • Paul Ducklin · 686 days ago

      I decided to pretend to be Chester :-) I deleted the word "folks," folks. That should do it :-)


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Chester Wisniewski is a Senior Security Advisor at Sophos Canada. He provides advice and insight into the latest threats for security and IT professionals with the goal of providing clear guidance on complex topics. You can follow Chester on Twitter as @chetwisniewski, on as Chester, Chester Wisniewski on Google Plus or send him an email at