2 min read

Dada/Surrealist Spam Hits Again

Răzvan LIVINTZ

May 14, 2009

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Dada/Surrealist Spam Hits Again

Normal
0

false
false
false

EN-US
X-NONE
X-NONE

MicrosoftInternetExplorer4

st1:*{behavior:url(#ieooui) }

/* Style Definitions */
table.MsoNormalTable
{mso-style-name:”Table Normal”;
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:””;
mso-padding-alt:0in 5.4pt 0in 5.4pt;
mso-para-margin:0in;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:”Calibri”,”sans-serif”;
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:”Times New Roman”;
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:”Times New Roman”;
mso-bidi-theme-font:minor-bidi;}

It looks like the dada
spam campaigns
are on the wave again, this time advertising replica jewelry
and weight loss drugs.

The current unsolicited messages are based on a simple
template that employs a picture of the promoted (counterfeit) products and a
collage of lines (gibberish pulled from what seems to be the diary of an Irish
aficionado) acting as a single huge hyperlink towards the Web sites that
allegedly sell the imitations.

DADA Spam Example 1

DADA spam example 2

Along with the involuntary poetic effect, it is also worth
mentioning that the Web sites behind are renowned for their association with
fraud schemes. Both Acai Elite (also known as Vital Acai, Acai Berry Boom, and,
probably, under some other names and aliases) and Diamond Replicas (just as the
“blingalicious”
King Replica
) belong to a domain registered in Korea.

Dada spam 3 example

DADA spam example

The large amount of spam, the Web site addresses, which do
not hold an association with the Web site names, as well as the missing
security elements for the on-line transactions validation (no HTTP over
encrypted SSL or TLS when proceeding to check out) are clear marks of the scams
that run behind, most probably dealing with money and sensitive data theft
(credit card number, name and home address, phone number and e-mail address
etc.).

tags


Author


Răzvan LIVINTZ

I rediscovered "all that technical jazz" with the E-Threat Analysis Team at Bitdefender, the creator of one of the industry's most effective lines of internationally certified security software.

View all posts

You might also like

Bookmarks


loader