Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Security Response

Showing posts tagged with Security remove filter
Showing posts by Takako Yoshida remove filter
ソーシャルネットワークを使用した日本語スパム
Takako Yoshida | 30 Aug 2010 | 0 comments

シマンテックではスパム & フィッシングマンスリーレポート 6 月号にて「ソーシャルネットワークスパムの詳細」について取り上げました。ここでは主に英語スパムを取り上げましたが、このような手法が日本語スパムに多く利用されるのも、もはや時間の問題と言えそうです。シマンテックではここ数カ月「新しい」Twitter サービスからのお知らせを名乗るスパムを確認しました。Twitter の発表によれば、米国についで多くのつぶやきを送信しているのが日本であるとのことなので、Twitter が日本語スパムに利用されるのも、それほど驚くべきことではありません。

このスパムメールの特徴として、日本語スパムで代表的なアダルト系や出会い系のメールでよく見受けられる卑猥な単語は、件名、本文ともにほぼ見受けられません。ただし、本文はプレーンテキストで書かれており URL リンクが貼りつけてある点は日本語スパムの典型的な特徴です。

では「新しいツイッター」とはどのようなものなのでしょうか? 本文に含まれている www.[削除済み]/twitterura/ をクリックすると「twittero SNS」というサイトに誘導されます。Twitter のサイトの色使いに酷似しているものの、アダルト系の単語が多く見受けられます。サイトの紹介文に目を通すと「twitter アカウントを使ってランダムな相手と会話を行うことでできるサービス」と謳っています。この 1 文だけを読むとまるで Twitter のアカウントと同じものを使用しているようにも読み取れますが、「まずは twitter SNS サイトから裏 twitter アカウントを作成します」と紹介文は続き、新規登録を読者に促しています。

新規登録にはニックネーム、性別、年齢、都道府県、PC メールアドレス、初期パスワードといった個人情報の入力を必要とし、すべてが入力必須項目となっています。登録が完了し、...

Read more
Spammers go "Full Throttle" on Auto Recalls
Takako Yoshida | 23 Feb 2010 | 0 comments

One of the world's biggest automakers has recently been in the headlines because of necessary recalls. Not only the affected vehicle owners, but people in general across the globe are curious and concerned about this issue. And of course, the spammers also seem to be keeping a close eye on the developments surrounding this issue and are working overtime to send out spam messages relating to the incident.

Right after the automaker made an announcement for recalls, Symantec observed a scam message using this event as a lure. This message appears to be targeting people who own vehicles involved in the recent recalls, and links to a site that claims to review the situation and assist in possible financial compensation. The recipients are directed to submit a report regarding his/her vehicle and also give personal information such as name, phone number, and email address.

...

Read more
Will Spammers Help the Voter Turnout?
Takako Yoshida | 26 Aug 2009 | 0 comments

In the past, we have seen spammers use election content in their spam campaigns. So, it comes as no surprise to see spam messages with a catchy subject relating to an upcoming political event. We have observed spammers sending out messages instructing recipients on how to “make money fast” with a subject line referring to the upcoming Lower House election in Japan, which will be held on Aug 30, 2009.

A message guides users to a website where it is said that they can obtain free information on how to make money fast with summer horse racing. However, after a recipient enters their email address for registration they will not receive profitable information but instead a message that has a link for a definitive registration to provide personal information. It is unknown whether the recipients will receive free information after providing their personal data.

Although there is no correlation between an election and summer horse racing, spammers lure people to...

Read more
Old Japanese Phishing Attack, New Approach in English
Takako Yoshida | 20 Apr 2009 | 0 comments

Symantec has recently observed an English phishing email that appears to be an official notification from a credit card company affiliated with a major Japanese bank, claiming that a limitation has been placed on the email recipient’s credit card due to a violation. The recipient is asked to provide information relevant to their account.

Last year we observed a similar phishing attempt that was trying to leverage this bank’s brand. However, that email was in the Japanese language and guided unsuspecting users to a Japanese-language phishing website. This new attack starts with an English email message, but links to a site that is written in Japanese where the recipient is asked to give up personal information such as a credit card number, credit verification value, personal identification number (PIN), and validity time. The spammers address the use of English in the email—excusing themselves for sending a message in English instead of in Japanese—...

Read more
Will A Spammer Protect Your Social Security Number?
Takako Yoshida | 31 Mar 2009 | 0 comments

From bank accounts to credit card numbers, personal information is at high risk as spammers are very fond of gathering data that will sell on the underground economy. Therefore, users are advised to be cautious and not expose their information (i.e. don’t submit personal details to questionable sites). So, what would you say if there is a service that protects your personal identification, such as a Social Security number? Would you be interested and want to find out more details? The answer should be “NO” if this offer is from a spammer.

Symantec has recently observed a message that appears to be a direct service promotion from an identity theft protection company, claiming that they can keep Social Security numbers away from risk:

 

 

...

Read more
What’s On Your Mind? - Spammers Continuing to Abuse the Reputation of Social Networking Sites
Takako Yoshida | 24 Mar 2009 | 0 comments

As the Internet community continues to pay more attention to the reputation of websites and email senders, spammers are doing their best to hide behind well-established and reputable brands. Social networking sites have for some time now been used by spammers in the spam war. As more and more people become connected through social networking sites, it is not unusual to receive notifications of status update or sharing information from your friends. Symantec has recently observed a number of spam attacks claiming to be messages from various social networking sites.

One recent sample attempted to attract the attention of the recipient by using the following tactics:
1.    Claiming to be from a social networking site
2.    Indicating in the Subject line that message was from a social networking site
3.    The message indicated that the recipient had a personal message.

 

 ...

Read more
The “Hey-It’s-Me” Scam is Not the Only Way
Takako Yoshida | 06 Mar 2009 | 0 comments

A certain type of bank transfer scam, referred to as a “Hey-it’s-me” scam, seems to be on the rise in Japan these days. According to the National Police Agency in Japan, more than 20,000 cases of this type of scam were recorded in 2008—up from 17,930 cases in 2007. The “Hey-it's-me” scam is a common type of fraud in Japan that often plays out as follows: A scammer makes a phone call to an elderly person and says, “Hi grandpa, it’s me! I’m in big trouble and need some money. Could you transfer funds into my bank account?” Sometimes the scammers even use a name from a selection of the victim’s relatives by obtaining a list of students or employees beforehand. Recently, police have increased their efforts to thwart this type of scam by taking measures such as posting warning signs and placing police officers at ATMs.

While a scam carried out over the telephone receives greater local attention, people are now...

Read more

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
258,791