iOffer Spam Message Leads You To Phishing Site
January 21, 2009 – 10:21 amPhishing and spam campaigns are on the increase and it seems more and more legitimate sites such as iOffer.com have become targets for these attacks.
A new discovery including the iOffer site which is known to by sell and trade items online has been one of the latest sites caught up in a phishing attack linked through a spam message. Spam messages are currently circulating the internet that appears to be a question from iOffer about an item that you are supposedly selling. If you are not familiar with iOffer it is similar to EBay or craigslist where items may be sold by you or purchased from someone else online.
The mxlab blog mentioned this incident as well as other security sites where they reported an email message that may be titled “You have a question from maildirect1 regarding the item Brand New Nikon D80 Package, 2 Lens,4GB and more….”. The body of the spam message reads:
Dear member,
You have a question from maildirect1 regarding the item Brand New Nikon D80 Package, 2 Lens,4GB and more….!
Click below to see the question and respond:
View the dispute thread to respond hxxp://222.124.199.98/icons/small/login?SignIn&co_partnerId=2&pUserId=&siteid=0&pageType=******
**THIS IS AN AUTOMATED EMAIL – PLEASE DO NOT REPLY**
If the link provided within the message is clicked on it will redirect you to a page that appears to be an iOffer.com website page asking for your username and password. This is the typical trait of a phishing page where your username and password may be stolen. It is also reported by mxlab blog that the Firefox browser failed to detect this page as a phishing site. The browser recognized this page as a legitimate security login page. Somehow the creators have made it so this new type of phishing site goes undetected by the current phishing filter in some popular web browsers. That poses a serious security threat. Our advice is to avoid clicking on links provided in suspicious email messages. If you are someone unsure about any message it is best to delete it instead of letting curiosity get the best of you.
