Sponsored by..

Tuesday 25 September 2012

BBB Spam / one.1000houses.biz

This fake BBB spam leads to malware at one.1000houses.biz:

Date:      Tue, 25 Sep 2012 11:42:18 +0200
From:      "Better.Business Bureau" [8050910@zread.com]
Subject:      Activity Report

Dear business owner, we have received a complaint about your company possible involvement in check cashing and Money Order Scam.

You are asked to provide response to this complaint within 7 days.

Failure to provide the necessary information will result in downgrading your Better Business Bureau rating and possible cancellation of your BBB accreditation status.

Complaint ID#125368

Council of Better Business Bureaus
3033 Wilson Blvd, Suite 600
Arlington, VA 22201
Phone: 1 (703) 276.0100
Fax: 1 (703) 525.8277
The malicious payload is at [donotclick]one.1000houses.biz/links/deep_recover-result.php hosted on (A2 Hosting, US). The domain 1000houses.biz appears to be a legitimate domain where the GoDaddy account has been hacked to serve malware on subdomains. There seems to be a long-standing issue with GoDaddy domains being used in this way.

Blocking would probably be prudent.

No comments: