This spam is obviously trying to do something evil, but I’m not quite sure what.
Date: Tue, 13 Dec 2011 15:23:00 -0600
From: “Helen Oconnell” [[email protected]]Subject: 11122011 PAYROLL INDICES
http://jazzon.nl/YK4VUSWQ.html Please access the URL below to reveal PAYROLL LOGS. It was submitted to you using a Xerox WorkCentre. Pro
==================================================================================================================
Confidential E-Mail: This e-Mail is proposed only for the username to that it is addressed and may be composed data that is intimate or otherwise preserved from exposal.If you have take this email in confusion, please notify the support by respond the present e-Mail and erase the original e-Mail and each copy..
The email is a piece of social engineering that relies on you wanting to know how much your colleagues are earning. Click the link and you get redirected to cms-wideopendns.com (a DSL subscriber in Span) then trackorder.commercialday-net.com (in China). It doesn’t seem to work properly, but then it might just be resisting the tools I am throwing at it.
In any case.. avoid this one.
Leave a reply
