Security Market Segment LS
Friday, 28 August 2015 11:13

Spammers take advantage of Ashley Madison data breach Featured

By

Spammers have been quick to try to cash in on the Ashley Madison data breach, with a spike in email campaigns mentioning the ‘infidelity’ website, according to a global security firm.

Symantec says there has been a surge in spam messages mentioning the leak of the Ashley Madison users’ data, with spammers trying to take advantage of those affected by the breach.

In a blog on its website from Dick O’Brien, Symantec says scammers are often quick to take advantage of current events and the sheer size of the Ashley Madison breach, coupled with the embarrassing nature of its database, “provide a perfect opportunity for scammers to prey on those worried that their or their partner’s name is included in the breach.”

And, Symantec’s advice to consumers:  “Be very wary of any email purporting to relate to the breach.”

In his blog, O’Brien says the number of spam campaigns blocked on the basis of mentioning Ashley Madison shot up immediately after the publication of the stolen database on 18 August and, although indicative of the trend, “this represents a fraction of all blocked campaigns as many more would be detected under general anti-spam rules or predictive heuristics.”

O’Brien says the breach and subsequent leak of user data has created a “market  opportunity” for scammers seeking to take advantage of people affected by the breach, and since 19 August, Symantec has blocked thousands of spam emails listing domains relating to Ashley Madison in the “to” or “from” fields, including:


•    ashleymadisonaccounts.com

•    ashleymadisonlegalaction.com

•    ashleymadisonlistleak.com

•    ashleymadisondata.net

•    ashleymadisondata.info

•    ashleymadisondata.co.uk

•    ashleymadisondata.org

•    ashleymadisonteam.com

•    ashleymadisonleakeddata.com

•    ashleymadisonnews.net

•    checkashleymadison.com

•    ismyhusbandonashleymadison.com

And, from 22 August, Symantec says further spam campaigns have been blocked that contain references to the website in the subject lines of emails, including these:


•    “How to check if your email is part of Ashley Madison's hack”

•    “Ashley Madison Hack Should Scare You”

•    “How to Check if You Were Exposed in Ashley Madison Hack”

•    “Ashley Madison records leak”

•    “Ashley Madison Hack Update”

•    “Ashley Madison hacked, is your spouse cheating”

According to O’Brien, given the nature of its business, Ashley Madison has always been the subject of some spam activity. “For example, one campaign which began on 1 July, before news of the breach emerged, featured a subject line of ‘pending message from ashleymadison.com’.

“However, recent weeks have seen a spike above this baseline of activity.”

O’Brien also says: “Others have also noted attempts by scammers to capitalise on the breach. For example, security writer Brian Krebs has reported on blackmail emails aimed at people who had their details exposed in the breach. Krebs quoted one email which demanded a bitcoin (approximately US$225 at the time of writing) from the target in exchange for a promise of non-disclosure of the information to their partner.”

In its advice to consumers targeted by the spam emails, Symantec says:

•    Exercise caution with websites offering to check if someone’s details are included in the breach. Unscrupulous operators could use the submitted details to identify people who are worried about the breach and target them with extortion attempts

•    Do not pay anyone offering to remove personal details from the leaked data, since this cannot be done. This information is already in the public domain and multiple copies exist.

BUSINESS WORKS BETTER WITH WINDOWS 1O. MAKE THE SHIFT

You cannot afford to miss this Dell Webinar.

With Windows 7 support ending 14th January 2020, its time to start looking at your options.

This can have significant impacts on your organisation but also presents organisations with an opportunity to fundamentally rethink the way users work.

The Details

When: Thursday, September 26, 2019
Presenter: Dell Technologies
Location: Your Computer

Timezones

QLD, VIC, NSW, ACT & TAS: 11:00 am
SA, NT: 10:30 am
WA: 9:00 am NZ: 1:00 pm

Register and find out all the details you need to know below.

REGISTER!

ADVERTISE ON ITWIRE NEWS SITE & NEWSLETTER

iTWire can help you promote your company, services, and products.

Get more LEADS & MORE SALES

Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]

OR CLICK HERE!

Peter Dinham

Peter Dinham is a co-founder of iTWire and a 35-year veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

VENDOR NEWS & EVENTS

REVIEWS

Recent Comments