Don’t get caught out by scams surrounding Hurricane Sandy

Guest Post by: Samir Patil, with thanks to Anand Muralidharan for contributing to this post. One of the most devastating Superstorms in decades, Hurricane Sandy, hit the US East coast in October, causing the loss of lives and damage to businesses, leaving countless people without electricity and in need of support. Now, unfortunately Sandy has now added spam to its list of misery. We are observing spam messages related to the hurricane flowing into Symantec Probe Networks. The top word combinations in message headlines are "hurricane – sandy", "coast – sandy", "sandy – storm", and "sandy – superstorm."

 

original5-300x208.png

 
Figure 1. Message volume over a two-day period Typical spam attacks like "Gift card offer" and "Money making & Financial" spam are currently targeting the disaster. Below are the screenshots of some spam samples to keep a watch out for.

 

 

original22.png

 

original31.png 

 

original41.png 

 
The following are examples of subject lines seen in the spam messages: • Help Sandy Victims and get $1000 for Best Buy! • Sandy Strikes... [WARNING] • Deposit Processing Open Today (Frankenstorm doesn't stop us) Spammers taking advantage of disasters is nothing new. Previously, for example, we witnessed phishing and spam campaigns using the Haiti earthquake as a means of spreading harmful activities, and we anticipate that fake news, photos, donation requests, 419 scams, phishing campaigns, and malicious video link attacks will continue to be seen in the near future. We advise users to follow best practices while online, such as typing website addresses directly into their Internet browser for any online video rather than clicking on links contained in emails. Finally, never donate money or buy products through wire transfer services or similarly untraceable methods of payment. Instead, reach out to the storm victims through legitimate and secure channels. As always, we will be continuously updating our anti-spam filters to block these emails from reaching users.