July 2013

What rubbish have we received today? Below is a list of the "spamvertised" domains sent to some of our accounts.

Note that this is a listing of spam received by us, not sent by us. We do not send unsolicited bulk email but spammers routinely forge our domain name in the From: line of their junk.

"Phishers" Domain Name or Message Date
posing as a friend in distress
This is how this scam works:
  1. The scammer hacks into someones email account and changes the password and security questions/answers so that the victim cannot easily regain control of the account. Forwarding addresses may be set up.
  2. A sad tale of being mugged in some foreign place is sent to everyone in the address book of the victim.
  3. The address book is usually deleted along with all stored emails so that the victim, when s/he regains control of the account, cannot contact anyone to warn them.
  4. Concerned friends and relatives who reply are asked to wire money.
  5. Kiss the money goodbye.
Don't fall for it! And keep your passwords strong and secure.

This message is coming to you with great depression due to my state of discomfort. I came down here to Manila Philippines with my family for a short vacation but unfortunately, we were mugged and robbed at the park of the hotel where we stayed. All cash, credit cards and cell phones were stolen off us but we still have our lives and passports.

We've been to the embassy and the police here they have done the best they can. Our flight leaves in few Hrs from now but we are having problems settling the hotel bills and the hotel manager won't let us leave until we settle the bills which is £2.800 Pounds. I am contacting you to ask for a short loan which I will refund immediately I get my family back home safely. Let me know if you can help.

Looking forward to positive response.

[Name deleted]
15 July
posing as Barclays Bank (hacked) dsl-200-67-233-168-sta.prod-empresarial.com.mx 3 July
posing as HMRC (hacked WordPress blog) lyndafrese.com 1 July
"Pump and Dump" Stock Date
This is how this scam works:
  1. The scammers quietly buy lots of inexpensive shares in a particular company, usually one that is small and sparsely traded.
  2. They then flood email inboxes everywhere with millions of messages touting the company as a hot stock and urging people to buy quickly. Pump.
  3. Enough unwitting investors buy the stock to create artificially high demand and prices.
  4. The scammers then stop promoting the stock and quickly sell their cheaply-purchased shares for a profit. Dump.
  5. The stock price plummets back to its pre-scam levels or even lower, and the conned investors are left with stock shares worth significantly less than what they paid.
Don't fall for it! And note that the company advertised in this spam ceased operations two days before the first email hit our inbox.
Biostem US Corp. (HAIR) 19 July
20 July
21 July
22 July
23 July
24 July
25 July
26 July
27 July
28 July
29 July
30 July
31 July
Malware Trojan/Virus in Attachment Date
Subject: MMS id-1857719676 Image 16.07.2013. 2944846825.zip 17 July
Subject: Copy Vodafone contract Document.zip 22 July
Subject: GP1K85NL photo mms mms_data_21-07-2013_49881268.zip
Subject: new MMS#YU56GF mms#DYF8KN.23072013.zip 23 July
Subject: Your Bill is Ready 3 july _ monthly bill's Vodafone.zip
Subject: Image06819186 by MMS IMAGE.26409740.26.07.2013.zip 25 July
Subject: Image91048776 by MMS IMAGE.23802123.26.07.2013.zip
Subject: Your Virgin Media bill is ready Virgin bill_656231622682.zip 29 July
Subject: Your Virgin Media bill is ready Virgin bill_594746668502.zip
Addresses Receiving Spam Total
Nonexistant and Catch-all 27
Various Compromised Mailing Lists 12
Personal 0
Obliquity.com Domain Registration 0
Obliquity.com Contact Form 0
Other Obliquity.com Addresses 0