MX Lab, http://www.mxlab.eu, reported earlier on the dangers of URL shortening services and the increased usage of URL shorteners in spam campaigns. Since a few weeks now we notice that the URL shortening service is being used a large spam campaigns for replica watches,… and today penis enlargment spam.
Very short messages like below are intercepted on our systems:
Avoir la meilleure sexe de votre vie avec ces pilules me demande <hxxp://durl.me/5cogd>
Boostez votre ego et de la longueur de votre facilement avec nous <hxxp://durl.me/5cqkx>
Apprenez à être un mari aimant à votre femme. <hxxp://durl.me/5cmx8>
Juste ce qu’il faut pour augmenter votre taille de tracas d’orgue gratuit <hxxp://durl.me/5ckzd>
Each spam message is having a different shortened URL to avoid detection by intent anaylis. durl.me does offer an API so we are quite sure that the creation of new durl.me URLs is fully automated at the system of the spammer. The site of durl.me is lacking ways to contact the owners or report any abuses and this is a benefit for a spammer.
When following the durl.me URLs we where directed to the web site hxxp://www.entermix.ru/en/
If you can’t stand the offer… Enjoy it!
Full story: mxlab – all about anti virus and anti spam
Related Posts
- Many University websites used for spam
In January, I wrote about many high profile websites, mostly universities, that were hijacked to redirect to fake stores. Many have since been cleaned up, but a few of these University websites are st... - Large spam campaign “Unread messages” from Twitter leads to pharmacy sites
MX Lab, http://www.mxlab.eu, started to intercept a large spam campaign with the subject “Twitter – You have X unread message(s)”, where the X is a number from 1 to 3, that leads to... - Logging Malware Used in New Year Spam Run?
Several reports have been recently released on a certain spam run that bears a resemblance to the infamous WALEDAC worm, which wrought havoc in 2008. According to ShadowServer who first reported the ... - Increase in usage of URL shorteners in spam campaigns
MX Lab, http://www.mxlab.eu, is noticing an increase in the usage of URL shorteners like bit.ly and others. This technique is being used to avoid detecting of the URL by intent analysing techniques.
... - G-20 Summit Used for Spam Attacks
The upcoming summit of the G-20 major economies in Korea has been used in limited spam attacks. Trend Micro received the following spam sample:
The spam supposedly came from the Japanese finance mini... - Apple Forgot to Filter Spam On New Ping Service
One of the big stories in Apple's recent announcements was a new social network based in iTunes called Ping.
It's probably early to draw too many conclusions about Ping, but according to Che... - Fake Celebrity Deaths Used in Malicious Spam Run
TrendLabs received a recent spammed message that uses fake news about the death of Hollywood celebrities and famous athletes.
The spam came in two varieties—one has a .ZIP file attachment that contain... - Blogspot Mail2Blogger Secret Email Address Used in Spam Attack
A spammed message supposedly from Newegg, a popular online computer hardware/software seller has been found in the wild. It informs users that their online purchase has been charged to their Visa card... - Redirectors in Compromised Sites Used in Spam Mails
Busy day in TrendLabs today, first the full analysis and news that ZeuS and SALITY are exploiting the Windows Shortcut vulnerability, and now we’ve identified a ton of compromised web sites lead... - Twitter to roll out automatic link shortening service
Twitter will roll out a new automatic link shortening service to users later this summer.
View full post on Network World on Security...
Posted on 02 February 2011. Tags: being, Campaigns, durl.me, large, Service, shortening, Spam, used
