A wave of spam mails lures recipients with fake warning of domain password reset; links lead to a fake Canadian Online Pharmacy

Tettnang, 1 July 2010 – IT security expert Avira warns of a current wave of spam mails that attempt to trick recipients by warning that their domain password will be reset unless they click through on an embedded link – which then leads to a fake online pharmacy.

With subject lines like “Reset your <domain name> password”, the emails pressurize users, advising that their domain password will be reset – unless they click on a link to stop this from happening. And in an effort to trick even more people, recipients who agree to a password reset are lured by the spammers to click through on a link in the message to proceed.

What users do not see is that the link in the mail leads to a domain other than the one shown in the message. Furthermore, while this web site is apparently loading, users are automatically redirected to yet another site after four seconds. During this time, a hidden so-called ‘iframe’ is shown, which is often used to exploit security vulnerabilities in browser plug-ins and outdated software by injecting malware.

Hapless users are then redirected to a fake Canadian Online Pharmacy. This fraudulent site is designed to capture credit and debit card information. Anyone making an order also runs the risk of receiving fake medications instead of the real thing, which may even pose a health risk.

Avira advises its users not to click on the embedded links or order pharmaceutical products from such websites, but to remove these mails immediately from their mailbox and empty the deleted items folder. Users of the Avira Premium Security Suite profit from double protection: spam mails are tagged as phishing by Avira MailGuard and the spam web site is also blocked by Avira WebGuard.

Users of the free Avira AntiVir Personal – Free Antivirus basic protection need to stay on their guard not to fall victim to email-based spam or phishing attacks. For optimum protection, Avira recommends an upgrade to its AntiVir Premium or Avira Premium Security Suite.

Further information about the spam mails can be found in the Avira TechBlog.

About Avira

Avira stands for extreme reliability and internet freedom around the globe.
The company was founded 25 years ago on Tjark Auerbach's promise to "make software that does good things for my friends and family". Because of Avira's security expertise and award-winning antivirus software, today more than 100 million consumers and small businesses live free of spyware, phishing, worms and other internet based threats. The company delivers IT-security protection to computers, servers and networks both directly and in the cloud.

In addition to protecting the online world, Avira's CEO promotes well being in the offline world through the Auerbach Foundation, which supports charitable and social projects. The philosophy of the foundation is to help people to help themselves.

For more information, join the community at www.facebook.com/avira.