New spam strategy in the wild

Recently we noticed a big archive of spam messages related to selling various pharmacy products. But something was different from the old spam messages… no http links were present in the message.

The surprise was attached in .gif or .jpg or .png format:

Spam Images Screenshot

The attached image has inside all the info related to various pharmacy products and the malicious http url:

Spam Image Screenshot

Spammers are using this strategy to bypass common anti spam filters and to avoid to be placed in the “spam folder” of the email clients.

Other spam messages were full of links that redirected to yahoo groups with random names:

All the above links redirected again to other suspicious domains:

Pay always attenction when opening unknown, and even known, emails.

Random Posts

Previous Posts