People are phishing Adwords accounts now?



  • Just got this email.  Only two things tipped me off "AdWords-NoReplay" and "programme".

    What are they hoping to get out of this?  Free advertising?


    ---------------------------------------------------------------------------
    From: AdWords-NoReplay <adwords-noreply@google.com>

    Dear AdWords Customer,

    As part of our ongoing efforts to improve the Google AdWords programme for advertisers and users,

    we have updated our Terms and Conditions.

    Please review the new Terms and Conditions below, then indicate your acceptance.

    Yes, I accept the Terms and Conditions.

    -----------------------------------------------------------------------------

    This message was sent from a notification-only email address that does

    not accept incoming email. Please do not reply to this message.



  • I don't know is there an exploit on that site? 



  • "adwrods" in the URL, and indeed the whole URL might give it away, too. 

    And talking of URLs, do you really consider it wise to publish the phishing link here? 



  • @RayS said:

     

    And talking of URLs, do you really consider it wise to publish the phishing link here? 

     

     

    Call it natural selection! 



  • Yeah, got one of these too.   Presumably they're after your financial details, which I assume you'd have to give to AdWords so that they can pay you.  (Of course, the fact that, in many cases, the information required to pay you money may also, at least in the hands of a good social engineer, be enough to withdraw some from your account is a major WTF in itself, but sadly often true.)

    The real WTF is the Google is making these really hard to report, especially if you don't actually have an AdWords account.  Apparently you're supposed to use this web feedback form (selecting "Other" as the reason) and paste the phishing message into the tiny textarea or something.  You'd think they could do what sites like eBay do and just set up a simple spoof@google.com address to forward these to.  (Apparently, at least someone has been told to report these scams by e-mail; if some here has a Google Groups account, or knows some other way to get Google to actually show the address posted in that thread, perhaps they might like to tell the rest of us what it is.)



  • @RayS said:

    "adwrods" in the URL, and indeed the whole URL might give it away, too. 

    And talking of URLs, do you really consider it wise to publish the phishing link here? 

     

    Well yea that too, but that's not until you actually mouse over or click the link.  You'd think if someone was going to spam millions of people, the least they can do is proofread their phishing email.  



  • @russ0519 said:

    @RayS said:

    "adwrods" in the URL, and indeed the whole URL might give it away, too. 

    And talking of URLs, do you really consider it wise to publish the phishing link here? 

     

    Well yea that too, but that's not until you actually mouse over or click the link.  You'd think if someone was going to spam millions of people, the least they can do is proofread their phishing email.  

    The next time someone proofreads a phishing email will be the first.



  • @Carnildo said:

    The next time someone proofreads a phishing email will be the first.
     

    So what you're saying is that my new business, Phisher Proofreading, Inc., is moving into a wide-open market?  I'm going to be rich! 



  • @bstorer said:

    So what you're saying is that my new business, Phisher Proofreading, Inc., is moving into a wide-open market?  I'm going to be rich! 

    Ah, but will you offer the service straight up, or lure your customers in by telling them that you're their bank?


  • @Otterdam said:

    @RayS said:

     

    And talking of URLs, do you really consider it wise to publish the phishing link here? 

     

     

    Call it natural selection! 

    That's interesting... My link-clicking instinct somehow failed on this one, I didn't even notice the link. Perhaps, my junk email deletion instinct took over?



  •  I've been getting a flood of those... and I actually use adwords. I'm not sure Google could do anything even if it got reported, but I'll bet my bottom dollar it's hosted in China. Or was, whois.sc is saying it's not resolving, thought I suspect it actually is. I'm not about to try, though...

    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...



  • @PeriSoft said:

    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...

    What the hell are you babbling about?



  • @morbiuswilters said:

    @PeriSoft said:

    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...

    What the hell are you babbling about?

     

     All right, ignore the last sentence, I couldn't really get the analogy to work. Maybe something like, we're cutting individual snakes off the medusa rather than going for the head?



  • @PeriSoft said:

     All right, ignore the last sentence, I couldn't really get the analogy to work. Maybe something like, we're cutting individual snakes off the medusa rather than going for the head?

    I still have no clue what your point is.  Are you saying links to known spammer countries/ISPs should be used to classify spam?  That's already done. 



  • @PeriSoft said:

    I'll bet my bottom dollar it's hosted in China. Or was, whois.sc is saying it's not resolving, thought I suspect it actually is. I'm not about to try, though...

     

    ...Yeah, the .cn address kinda gives that impression :-) 



  • @PeriSoft said:

    @morbiuswilters said:

    @PeriSoft said:

    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...

    What the hell are you babbling about?

     

     All right, ignore the last sentence, I couldn't really get the analogy to work. Maybe something like, we're cutting individual snakes off the medusa rather than going for the head?

    Ever considered a career in middle management? You sound all enterprisey.



  • @RayS said:

    @PeriSoft said:

    @morbiuswilters said:

    @PeriSoft said:

    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...

    What the hell are you babbling about?

     

     All right, ignore the last sentence, I couldn't really get the analogy to work. Maybe something like, we're cutting individual snakes off the medusa rather than going for the head?

    Ever considered a career in middle management? You sound all enterprisey.

    Yeah, that kind of talk makes me feel sort of inspired.  Why, no, I don't really need a lunch break, I suppose..  Vacation time?  There's no "pina colada" in team, sir!



  • @morbiuswilters said:

    There's no "pina colada" in team, sir!
     

    No, but most teams are more fun with a few pina coladas in them. 



  • @PeriSoft said:

    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...
    "All the viruses come in through my ethernet cable. Obviously, I should cut the cable!"



  • that looked suspiciously like the correct usage/spelling of 'programme'..... 


  • Discourse touched me in a no-no place

    @jakkle said:

    that looked suspiciously like the correct usage/spelling of 'programme'..... 
    If you're English and you're not talking about a computer program, it is.

    Americans don't use the 'programme' variant.



  • @PJH said:

    @jakkle said:

    that looked suspiciously like the correct usage/spelling of 'programme'..... 
    If you're English and you're not talking about a computer program, it is. 

    check and check 

    @PJH said:


    Americans don't use the 'programme' variant.

     

    fair enough - apologies for my pedantry 



  • @lolwtf said:

    "All the viruses come in through my ethernet cable. Obviously, I should cut the cable!"
    Well all my viruses come through the air all WiFi-style.  Clearly, I should stop all electromagnetic radiation in my house.  



  • OMFGBBQ... Virus Alert!!!!

     

    http://www.youtube.com/watch?v=k-GaRKDsz-Y



  • We got wacked by this big time recently.

     .... and suprise .... someone in Marketing entered their details.



  •  @lolwtf said:

    @PeriSoft said:
    I may've beaten this drum here before, but why the hell does everybody concentrate on figuring out which of eighty billion spams is a spam, when 99% of spams have links, and about 90% of those links go to sites hosted in China, South Korea, or Russia - with the vast majority of those being China - and with most of them hosted by the same small group of ISPs. It's the one narrow mountain pass to the spammers' territory, and we insist on fighting them after they pour through the gap...
    "All the viruses come in through my ethernet cable. Obviously, I should cut the cable!"

     It's a little harsh on the compromise between effectiveness and usability, but it would certainly work... :)


Log in to reply