Scam Email

Published: 2009-10-19
Last Updated: 2009-10-19 17:09:09 UTC
by Daniel Wesemann (Version: 1)
1 comment(s)

New week, new scams. Two emails showed up on our ISC scam radar this morning.

One seems directed at universities, and is informing students that their email quota is exhausted and asks them to connect to a web site (studentresume. to re-enable their account. The site includes an iframe from planetchiltern. com and doesn't even TRY to look like the web site of an university. It still asks for your userid and password, though...

Another one pretends to come from Microsoft and warns users on a rapidly spreading Conficker.B infection (sic!).  Conveniently enough, the email includes the "patch and removal tool".

If you fell for either of these, now would be a good time to confess to your sysadmin :).

[Thanks to ISC readers Matt and Joe for the samples]


Keywords: phishing scam
1 comment(s)


We get loads of the e-mail quota and similar scams. There is a collaborative project, mostly between university mail admins, hosted at Googlecode (but we moved the SVN repository to Sourceforge when GC was unreliable) where we maintain a list of bad reply addresses and links to generic forms. The scams seem to compromise dozens of accounts each day.

Diary Archives