No Comments

Cybercriminals are sending unsubscribe emails that validate address for more spam and phishing

 

Cybercriminals are sending fake emails confirming the “unsubscribe” of an email advertising service such as form of address and email validation for future phishing and spam campaigns.

According to BleepingComputer, which had access to one of these campaigns, e-mail is quite simple. A message saying only “Please confirm your subscription or cancel your subscription. Thank you!”.

Campaign seeks to validate active users to send more spam and phishing in the future. Photo: BleepingComputer.
Campaign seeks to validate active users to send more spam and phishing in the future. Photo: BleepingComputer.

Regardless of which buttons were clicked, the email service sends an email saying “Please unsubscribe from your newsletter”, which confirms the user’s validity in several malicious emails.

By clicking on 'unsubscribbe me' a new email is sent to several malicious addresses. Photo: BleepingComputer.
By clicking on ‘unsubscribbe me’ a new email is sent to several malicious addresses. Photo: BleepingComputer.

BleepingComputer created a new email to test the malicious campaign. With a reset email, he replied to the email, confirming to be an active user to various addresses used in spam and phishing campaigns.

In just a few days, our fake account [criada para testar a campanha maliciosa] was bombarded with spam emails“, reported Lawrence Abrams, editor of BleepingComputer.

Abrams recommends that anyone who receives such an email report it and send it to a spam box. “No legitimate organization will send these types of emails without further explaining what the email is referring to“he concludes.


Sources: BleepingComputer, TheHack.

You might also like

More Similar Posts

Leave a Reply

Your email address will not be published.

Fill out this field
Fill out this field
Please enter a valid email address.