Parcels Parcels!

The spammers are active again; this time it is the old Parcel Delivery one which first cropped up about 18 months ago. I also referred to them in an earlier post http://blog.coras-it.co.uk/payment/

I have had 2 in recent days; the first purported to come from UPS and took the form:

Subject:     United Parcel Service notification #46944

From:    Randell Bishop (info02983@ups.com)

Message:   important information in attach file

Whilst the second one claimed that they were DHL:

Subject:    DHL notification #54586

From:    DHL notification robot (info44566@DHL.com)

Message:   important information in attach file

The both have exactly the same message with exactly the same language error.  Bad English is always a good warning of a spamming or fishing email.  I explored the second a bit more and it was sent from an IP address in the Russian Federation!  I don’t forensically examine all my spam in this way (life is too short!)

Their hope is that you open the attachment (in this case it was a zip file) and this will install all kinds of nasties on your PC.  It is also a very effective scam, with many individuals and businesses buying online and having the items delivered.  One is not always sure which courier services are used by which suppliers, and are thus more likely to act on it than a message from a bank of which you are a customer.

Multiple Email Addresses

I use several techniques to weed out Spam.  One of these is having multiple email addresses; thus there is one I use with online stores, another with significant online registrations, anther for more general ones, and another for personal banking.  Thus if it doesn’t land in the appropriate mailbox it must be Spam.  It does mean that I can get multiple copies of the same Spam item, but is also a give-away.  In addition, if a particular email address starts getting lots of the stuff, I can simply shut it down and replace without too much disruption to life or business.

Harvesting of Email Addresses

Which brings me to the issue of where spammers harvest email addresses? My own experience is that the ones I use to register on websites (even sites that I am not familiar with) very rarely get spammed.  The ones which do get spammed are those in the public domain (such as on my website) or are used by people who email me.  One of the latter is the one I use on my business cards, and I never use on the web.  This leads me to conclude that a lot of the harvesting is done via compromised PCs, or the spam is coming from there.

Leave a Reply