Spam and Phishing

In Q2 2014, the percentage of spam in all email traffic came to 68.6%, up 2.2 pp from the previous quarter. A peak was reached in April and since then the share of unwanted messages in email traffic has been falling gradually. During the second quarter Kaspersky Lab’s anti-phishing component registered 60,090,173 detections.

Promises to marry a potential groom if he covers his bride-to-be’s travel expenses to his hometown are a fairly common feature of fraudulent spam. Less common are more ‘noble’ offers of help.

This week, our virus lab handled a case where a customer received a phishing email with an Android Backdoor archive masquerading as a Kaspersky mobile security app.

Kaspersky Lab products detected and neutralized a total of 995,534,410 threats in the second quarter of 2014. 927,568 computers running Kaspersky Lab products were attacked by banking malware. 65,118 new malicious mobile programs were detected. 2033 mobile banking Trojans were detected in this period, 1.7 times more than last quarter.

Recently I stumbled upon some spam-ads on Facebook, which didn’t look very unusual at first glance. It’s common for spammers to rely on social engineering techniques. They typically creating fake profiles, joining random open (or closed) groups and share links to shady e-commerce sites or survey-scams – always with catchy claims to lure the readers

In June, high-profile news events such as the FIFA World Cup and the situation in Ukraine were exploited by fraudsters to extract money and financial information from users. The holiday season has brought an increase in the number of fake notifications from various booking services containing malicious attachments.

Cybercriminals around the world have already started to point their guns and attacks at the new gTLDs, the ‘generic Top Level Domains’ approved by ICANN and offered by registrars to people interested in buying a new domain name. Recently we found malicious activities including malware and phishing pages registered in the top level domains .club,

At the end of last week we came across a curious method of distributing links to a phishing page that collects users’ personal data.

In the run-up to the summer, spammers offered their potential customers seedlings and seeds for gardening. In addition, English-language festive spam in May was dedicated to Mother’s Day – the attackers sent out adverts offering flowers and candies.

The percentage of spam in email traffic in April came to 71.1%, which is 7.6 percentage points more than in the March.

It’s time for a risqué subject: looking for love on the internet. With a myriad services promising chemistry-driven matches, dating game contestants have flocked to web services and apps. Despite this proliferation of new avenues, those in a particular rush to find company (in the form of ‘No Strings Attached’ encounters) have turned to a

In this first part we’ll look at some very professional phishing and malware attacks that use digitally-signed malware, a breached customer database used for online ticket sales, SSL-certified phishing domains and a lot of social engineering.

Who hasn’t dreamt of Lady Luck smiling on them and bestowing untold wealth without having to make the slightest effort?

Yesterday Colombian users got an email accusing them of committed tax fraud and evasion. This is a classic social engineering avenue

The percentage of spam in total email traffic during the first quarter this year came to 66.34%. Attackers spread fake email notifications from mobile applications.