CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
September 4th, 2008

Scammers Avoid Spam Detection By Using Redirection In Adobe Flash Files And ImageShack.com Free Hosting

Anti-spam service MessageLabs reports a new way found by scammers to bypass anti-spam filters. This time scammers are utilizing Adobe Flash files and free websites hosting services.

Spam messages with harmless-looking content contain links to Flash-based files on free image hosting services like ImageShack.com. The commands embedded in flash files redirect the recipient to sites that punt Viagra, work-at-home offers and free software updates.

The technique allows spammers to bypass content filters employed by many anti-spam products, which immediately reject messages that contain links to dodgy sites. Because popular sites such as ImageShack are whitelisted, use of the Flash file allows spammers to bypass the filter but still lure victims into malicious websites that trick them into installing malware.

A lot of the free image websites out there are accepting Flash files and attempt to display it. The spammers basically get a free ride to bypass URL blocking, said Matt Sergeant, senior anti-spam technologist for MessageLabs.

As the series of images below show, the technique is being used to lure users to medsplacesuch.com, a site that claims to be an online pharmacy. It’s also being used to trick users into installing software known as Antivirus XP 2008 (also known as XP Antivirus 2008), and to a work-at-home site claimed to be operated by a company called Retoneva.

ImageShack has done a good job and removed malicious files that were reported to it`s abuse department, according to MessageLabs.

Share this item with others:

More on CyberInsecure:
  • Cross-Site Scripting Vulnerability On Dogpile.com Helps Malware Spam Distributors
  • Potential Vulnerability In Adobe Flash
  • Adobe Flash Player SWF File Zero-Day Remote Code Execution Vulnerability
  • Malware Served Through Flash Exploits By MSN Norway
  • Six Security Vulnerabilities Updated By Adobe In Flash Player 9

    • Posted in Malware, Scams, Spam | Print This Post Print This Post

    This entry was posted on Thursday, September 4th, 2008 at 12:59 pm and is filed under Malware, Scams, Spam. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Scammers Avoid Spam Detection By Using Redirection In Adobe Flash Files And ImageShack.com Free Hosting

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »