Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Non-English (Dutch) Mastercard spam

June 4th 2012 in Uncategorized

Rough translation…



Spam email:


As always, when you hover over a link, it becomes obvious that the email is not legitimate:


If you give in to temptation (of course, never do so unless you are working within a properly sandboxed virtual machine that you can “nuke from orbit” if needs be) you will see the following.  It’s pretty well coded, each [?] works, an error is triggered if a field is not properly completed, and you see a nag window if you try to close the window.




One comment to...
“Non-English (Dutch) Mastercard spam”

Nick Kusters

The Dutch in the phishing mails is very bad, probably machine translated, no native speaker would fall for it.

  After bouncing through various URLs (including one in Russia) you end up at a fake Twitter log in page: http://wepawet.cs.ucsb.edu/view.php?hash=a9f9677418fa2d11d0b6eddda93e6e3b&t=1338784045&type=js   Note the non-Twitter URL.  

Previous Entry

  I do understand the sentiment – IE7 is long superseded, with IE9 being the latest and IE10 in development: http://www.news.com.au/technology/kogan-wages-war-on-internet-explorer-users-taxed/story-e6frfro0-1226395298505 […]

Next Entry