This claims to be from Newegg.com (a vendor I use), but came to the incorrect e-mail address and does not have the correct account number included. All links in the message lead to mainepontoondealer.com/toothed/index.html.; a malware infected website. The sender's IP address, 208.125.23.26, hails from New York City. I went ahead and released this message to my mail client because it was just too good to let slide. It's one of the nicest looking malware attempts I've seen in quite some time.
I want to let everyone know what to look for if something like this shows up in your inbox.
Whenever a suspicious message shows up, hover your mouse over the links in the message (DO NOT CLICK THEM). In this case Customer Services , and all the other links in the e-mail shows the address http://mainepontoondealer.com/toothed/index.html. Now that the true destination of the link is known, we can tell that this is a bogus message and that it should be deleted. NewEgg.com isn't in the business of directing their customers to Pontoon Boat Dealers.
SPAM mail content;
Spam email text;
Customer ID: me@sidsolve.net
Account Number: 23387357
Dear Customer,
Thank you for shopping at Newegg.com.
We are happy to inform you that your order (Sales Order Number: 170804662) has been successfully charged to your Mastercard and order verification is now complete.
If you have any questions, please use our LiveChat function or visit our Contact Us Page.
Once You Know, You Newegg.
Your Newegg.com Customer Service Team
On a side note; Google is also listing this website as infected; http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=http://mainepontoondealer.com/
No comments:
Post a Comment
I won't post comments with links. If you'd like a link on site contact me directly.