Fake LinkedIn emails pointing to online pharmacy websites

We have written many times already about fake LinkedIn emails which lead most of the time to online pharmacy websites and possibly to also infected websites.

The latest spams, similar to those we already wrote about, are pretending to come from LinkedIn Reminders and have a subject like “There are a total of <X> messages awaiting your response”.

 

Without exception, the emails we’ve seen so far are pointing to compromised websites which host a redirect to a another website hosting an online pharmacy website.

 

<html>

<head>

<script type=”text/javascript”>window.location=”http://<online pharmacy website>”;

</script>

</head>

<body>

<a href=”http://<online-pharmacy-website>”>Click</a>

</body>

</html>

The emails come in a very large number, and so far, we have seen them mostly on “real” accounts and less in spamtraps.

Does it have to do with the stolen database of LinkedIn in June this year?

We don’t know, but it might be that this database is worth a lot of money on the black market because it contains only valid and verified email addresses. Email addresses which now get spammed!

 

Sorin Mustaca

Data Security Expert