Browse » Home » Spam » Hallmark.com Phishing Email

Hallmark.com Phishing Email

Posted June 10, 2008 

How nice, I just received an e-card out of the blue, sent to an email address I hardly ever use!

Wow, what a bright spot on my day!

A Friend has sent you a Hallmark E-Card.

If you recognize this name, click the link to see your E-Card.
http://www.hallmark.com/ECardWeb/ECV.jsp?a=EG0694272732475M245925860Y&product_id=

If this name is not familiar to you and you’re concerned about online security, please use the following steps:

Visit http://www.hallmark.com/getecard
Enter your e-mail address in the Original Recipient.s E-Mail Address box.
Enter EG0694262772475 in the Confirmation Number box.
Click Display Greeting.

Want to send an E-Card too ? Visit www.hallmark.com/ecards

To view Hallmark’s privacy policy or for questions, visit www.hallmark.com, and click the links at the bottom of the page.

Call me crazy, but I right-clicked the link before launching it, copied and pasted it into a plain text document to make sure I was getting sent to the right website.

And guess what, the email secretly linked to http://85.137.134.54.dyn.user.ono.com/funnypicture.exe.

Still, who cares? It’s just a FunnyPicture(.exe)!

Yeah, right.

If my “Friend” who sent me the Hallmark.com card had been honest, I think the link would have been:
http://85.137.134.54.dyn.user.ono.com/IdentityTheft.exe.

LOL.

If you didn’t know already, here’s another reminder to avoid opening attachments and links from anyone you don’t know. Phishers send out all sorts of fake emails to try to scam information out of you (name, email, account passwords) and steal your identity.

Hallmark.com Phishing Email Is Ugly

Hallmark.com Phishing Email

Hallmark.com Phishing Email Might Be a Phishing Email

WTF is a Phishing Email?

Phishing emails are fake emails sent by people trying to steal your financial information or identity. Phishing is just what it sounds like: only instead of someone fishing for fish, phishers are going after human catches.

Some phishing emails are disguised as charities looking for a donation after a big natural disaster, other phishing emails will look like an e-card you need to retrieve, but most phishing emails pretend to be from a big bank concerned about your account.

Now, let’s talk about…

Why Phishing Emails Suck

Phishing emails, like Hallmark.com Phishing Email, generally look authentic, but there are a few ways to realize they’re faker than a chest on a Playboy bunny.

  • Scare tactics: Most phishing emails will tell you that your financial account has been closed and you need to take immediate action to restore it. If you have reason to think an email like this is real, type your bank’s website address into your browser. Never click any of the links an email like this.
  • Fake hyperlinks: Phishing emails will show you a hyperlinked URL that, if you click it, sends you to a completely different website. It’s at this scam website–which may look pretty real except for the revealed URL–that phishers usually try to capture your login information.
  • Domain name forgery: Once you click this link and get taken to the phishing website, sometimes even then you can’t see the real URL of the site–it may be disguised with javascript to read like a trusted domain (for example, the phishers might use code to make your browser display www.trustedbank.co.uk, when you’re really visiting www.damnscam.co.uk/trustedbank-phishing.htm).
  • Images instead of text: Phishing emails sometimes use a graphic of text instead of actual words, so that they can bypass your spam detectors. Remember that pretty V1AGARA or C1ALIS picture you got recently?
  • Undisclosed recipients: The better phishing emails don’t make this mistake, but a lot of times phishing emails will spam a ton of people at once and leave the “To:” section reading “undisclosed recipients”–even though the email is supposed to address your account in particular.

Did Hallmark.com Phishing Email use these moves to try to scam you?

Popularity: 7% [?]

WTF? Hallmark.com Phishing Email?

Yep. Read more:

» How to Spot a Phishing Email
» Even More Phishing Emails
» How to Avoid Phishing Scams
» Ebay Phishing Email
» GOOGLE CALENDAR PHISHING SCAM SURFACES

More in Spam »