Heads Up! New Spam Going Around
Posted by: Corporal Punishment on 10/12/2022 06:15 PM
[
Comments
]
Got a bunch of new spam in the mail today that looked legit enough that we felt a warning/reminder was warranted.
Other subject lines we are seeing are something like "Scanned data from DHUTW345678 On Thu, October 12, 2022" and "Voice Message Attached from WIRELESS CARRIER Wed, October 12, 2022", all with the same small HTML file attached.
We've all seen things like this before, and the attachment is either to produce a page that looks like your Microsoft Login to try and steal your password --- or some other malware. Either way, don't click it. Clearly, it's for bad things.
As you can see, in this case, the mail looks like it came from MajorGeeks to me at MajorGeeks.com. Well, that was our first clue something was up. We are pretty confident that MajorGeeks doesn't bill for Microsoft, and we wouldn't send an invoice to ourselves for Microsoft even if we did. By viewing the headers in Outlook (click the arrow on the Options tab), we can see the mail came from a cloud start-up in Japan -- pretty sure Microsoft is still in Portland, so that was our second clue.
All kidding aside, this one is simple enough that you could easily accidentally click the attached HTML document and quickly ruin your day. So here's your reminder not to click on things of unknown origin!
ISPs and mail programs have become much better at catching items like this, but spam still gets through using old tricks and new IPs.
Personally, I make rules to filter the newer spam until the ISP catches up. If you don't trust yourself, you can always try a program like MailWasher to do that for you.
Remember, be smart, be safe, and be geeky!
Other subject lines we are seeing are something like "Scanned data from DHUTW345678 On Thu, October 12, 2022" and "Voice Message Attached from WIRELESS CARRIER Wed, October 12, 2022", all with the same small HTML file attached.
We've all seen things like this before, and the attachment is either to produce a page that looks like your Microsoft Login to try and steal your password --- or some other malware. Either way, don't click it. Clearly, it's for bad things.
As you can see, in this case, the mail looks like it came from MajorGeeks to me at MajorGeeks.com. Well, that was our first clue something was up. We are pretty confident that MajorGeeks doesn't bill for Microsoft, and we wouldn't send an invoice to ourselves for Microsoft even if we did. By viewing the headers in Outlook (click the arrow on the Options tab), we can see the mail came from a cloud start-up in Japan -- pretty sure Microsoft is still in Portland, so that was our second clue.
All kidding aside, this one is simple enough that you could easily accidentally click the attached HTML document and quickly ruin your day. So here's your reminder not to click on things of unknown origin!
ISPs and mail programs have become much better at catching items like this, but spam still gets through using old tricks and new IPs.
Personally, I make rules to filter the newer spam until the ISP catches up. If you don't trust yourself, you can always try a program like MailWasher to do that for you.
Remember, be smart, be safe, and be geeky!
Comments
