Category: Spam

Spyware : Michelle Obama’s Ta’s Ta’s Video

Paul1 Reply

I love this one, I was reading the Sans Report about Michelle Obama Ta’s Ta’s on Video.  I wanted to investigate this a little further so I went searching around.  I found some comment spam links to a site I will not talk about the links directly.  The site however had a fake video on it :

michelleobamatoplessfake

It looks like if you hit Cancel or Details it keeps trying to tell you need to install an ActiveX Object.   It also makes the user think that there is only one option to use right now.   As you can tell  it makes you think you can’t cancel or get details but I did.  I tried to cancel and it kept on popping up trying to get you to install this active X installer.   AVG detects it as:

michelleobamatoplessfake1

[ad]This proves the fact that any Anti-virus software is better than nothing at all.   I also  have talked in the past about [intlink id=”2991″ type=”post”]fake codecs and how they are used maliciously[/intlink] to spread malware to people who aren’t up to the job.   I didn’t take long to find Phrases such as “Michelle Obama Topless” or “Michelle Obama Topless Video” to find spam comments linking to sites that are hosting these types of malware.  It seemed that in order to get out of the cycle with the Malware site, I had to do a CLT-ALT-DELETE and End the process of Internet Explorer process from Task manager.  It was an infinite loop and could not be closed any other way.  upon trying to go the link again it seems to be a random redirection every time you visit that site the next time I went there, I had a scare message pop up telling me:

michelleobamatoplessfake2

As you can tell this [intlink id=”3397″ type=”post”]pops up with scareware[/intlink] instead of the video and tries to tell you have a virus and you should run a free scan from the site of their choice.   This is an old tactic and still being used but funny if you look at that message one you know it is from a “Webpage” and two there are at least one grammar error?  Can you see it?

You’re best bet is not to go clicking on links that people have left in comments.   I am so glad I have moderation turned on and I have to approve each and every post someone comments on.   This is the only way I know how to prevent from being used in the spam campaign.  Remember it is time to update your [intlink id=”2205″ type=”page”]Anti-virus and Firewall [/intlink]if you don’t already have it.  Don’t forget to visit the Forums and help discuss this problem in detail.

Casino Spammers still user Yahoo for Spam : Could this be Malware?

Paul

It just shows you just how one Geocities was taken down by Yahoo who owns it, the spammers have to come up with more ways to get you to download there software.

[ad]In my previous post about [intlink id=”3199″ type=”post”]Casino programs[/intlink],  They were using Geocities to host the page for the link to the download.

casinosmartdownload

It seems to be linking to “http://bestwinscasino.com/SmartDownload.exe“.  From [intlink id=”3199″ type=”post”]previous post[/intlink] I talked about what that program did but I wanted to do another test with CWSandbox and see what has change. It looks like they must be having problems lately,  So If you want to do your own test and send me the link by all means.  I don’t know what is going on but, it probably is like the other post about wanting to do some bad things.  Virustotal has some anti-virus programs flagging this so I am unsure of the Harmlessness of this file but I wouldn’t install this software.  According to Avinti this program is a trojan dropper.  So Iwill let you decide on installing this software or not.

While the CWSndbox checks for malware, I went to Whois and looked up the domain.   Very interesting,  According to Whois this domain is located in China?  You don’t say, we’ve heard a lot of stuff coming from China from Graham Cluely Blog.  So it only makes me wonder what they are attempting to do now.  I do know never download a file you haven’t heard off

This is a good time to install some [intlink id=”2205″ type=”page”]Free Anti-virus and Free Firewall [/intlink]software to better protect your system.

Email from Inspot : STD? I don’t think so!

Paul

The Email looks like this:
stdspam1

[ad]It looks to be from Inspot.org.  I thought it was some malicious site with software but I couldn’t find it.   I imagine this is trick because I’ve been faithful to my wife since we got married and I’ve seen the doctor and gotten blood taken from me.

This is most likely an awareness, if you have a regular family doctor and you want to get tested that would be my suggestion.   You don’t have to go to this place.  I am sure I don’t have an STD because if I have it my wife would and she had 3 Kids so they would of found out.   I know of only one person I had had contact with before my wife and I also know where she lives, she had kids also.  So I would of found out way before this like 5 years ago.

Anyway this is most likely a trick if you see the last line “Internet Notification Service for Parters or Tricks.”  That tells me this a joke but If you are worried go see you doctor, just to be cautious.   Although this isn’t security related it is always good practice to get a checkup from time to time.

TweetTornado and What that means to Twitter

Paul

I had an interesting person follow me today and I want to talk about How Twitter Needs to fix this problem:twitteruserspam

[intlink id=”3501″ type=”post”]In my previous post[/intlink], I talked about Twitter needing to fix spam problems and here’s why.  It’s Called Tweet Tornado and you pay $100 for this program a Month.  On the Page,  they talk about downloading this software and using it:

tweettornado1

[ad]Now as you can on there website this plainly states this is SPAM.   I wouldn’t install this software or even use it because  of the possibility of having a Virus, Trojan, or even Malware attached to the program.  I can say now that what I’ve seen of this website is that Twitter needs to come up with a way to fix this problem.  I must warn you that if you do start using this software, you might end up with not internet or even worse if Twitter decides to come after you for damages to bandwidth.   This  software violates Twitter TOS:

You must not abuse, harass, threaten, impersonate or intimidate other Twitter users

You must not modify, adapt or hack Twitter.com or modify another website so as to falsely imply that it is associated with Twitter.com .

You must not create or submit unwanted email to any Twitter members (“Spam”)

As you can tell by using this software you are using a Bot that one probably is Spamming by means of either your current users or creating accounts and using the account to post a message with keywords.    This will ultimately come down to Twitter to fix problem because this will create more bandwidth problems for Twitter and will start costing money for Twitter.   Twitter users want this to be a free service but sooner or later if Twitter doesn’t do anything Twitter users will start paying for their mistake.   Twitter will need to Modify it’s Terms of Service to Help prevent spam on the network because they have a Duty to it’s users to make this a safe place for teens and young children because some of these sites as you’ve seen on [intlink id=”3501″ type=”post”]my previous post[/intlink] are not safe for kids.   Twitter needs to consider that there are Young people on their service Teens and Kids over the age of 13 unless Twitter wants to make it so you have to be an Adult to use there service.  That could happen but I am sure this will not happen.

I also did not directly link to the website and I also made it so you can’t find the website easily but If twitter wants to know the website they can email me and I’ll share them the website, I have no problem tell them!   I post this to show how Twitter needs to think about changing there TOS and also implement changes to ways to help prevent spam.