Spam Gets DangerousSpam Gets Dangerous

Beware 'brand spoofing,' in which a spammer disguises E-mail to make it appear as if it's from a trusted company in order to extract personal information.

Tony Kontzer, Contributor

July 8, 2003

2 Min Read
information logo in a gray background | information

A major anti-spam vendor is warning companies to take precautions against an emerging form of spam designed to take advantage of unsuspecting users.

SurfControl plc execs say "brand spoofing," in which a spammer disguises E-mail to make it appear as if it's from a trusted company in order to extract personal information such as account details and Social Security numbers, is a growing and dangerous form of spam. Among the companies that have been brand spoofed in recent months are Best Buy, UPS, Bank of America, PayPal and First Union Bank, according to SurfControl.

Sony Electronics last week warned that it had become aware of a deceptive mass E-mailing that was sent to consumers with the subject "Sonystyle user and email address." The message, which claimed to come from "SonyStyle Customer Service," requested personal information, including user names and passwords.

Michael Osterman, principal analyst with messaging research firm Osterman Research, says brand spoofing is a newer form of E-mail spoofing, in which spammers disguise E-mails to look like they come from familiar addresses, such as those of co-workers. Osterman thinks brand spoofing is most threatening to consumers who don't get a lot of E-mail and thus might be easily fooled, but he also expects it could endanger small businesses where the recipient is more likely to be a decision-maker.

SurfControl advises companies to take a few precautionary steps to protect their IT systems, employees, and customers:

• Notify customers and employees that E-mails seeking personal information are suspicious and should be reported immediately. There's no legitimate reason for any Web site to ask for E-mail verification or an update of confidential information via E-mail.

• Urge customers and employees not to open suspicious E-mails or even visit Web sites mentioned, as they pose a risk, such as the possible automatic download of a Trojan horse program, to anyone logging on to the site.

• Monitor Internet and spam security information resources.

Read more about:

20032003

About the Author

Tony Kontzer

Tony Kontzer

Contributor

See more from Tony Kontzer
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

A group of smiling college graduates celebrating their graduation.
IT Leadership
Why Liberal Arts Grads Could Be the Best Programmers of the AI Era
Why Liberal Arts Grads Could Be the Best Programmers of the AI Era

Jan 17, 2025

Flame front of the Eaton Fire on the first night during the January 2025 California wildfires in Altadena and Los Angeles
IT Sectors
How Tech Supports the Emergency Response to the LA County Wildfires
How Tech Supports the Emergency Response to the LA County Wildfires

Jan 16, 2025

Graphic Pop Art style Illustration of Keanu Reeves as NEO from the film, The Matrix
IT Infrastructure
Y2K and Infrastructure Resilience 25 Years Later
Y2K and Infrastructure Resilience 25 Years Later

Jan 7, 2025

Young businessman working on a virtual screen of the future and sees the inscription: Now hiring
IT Leadership
Help Wanted: IT Hiring Trends in 2025
Help Wanted: IT Hiring Trends in 2025

Nov 20, 2024

Cobol programming language software development concept on vitual screen.
IT Leadership
Untangling Enterprise Reliance on Legacy Systems
Untangling Enterprise Reliance on Legacy Systems

Jan 21, 2025

Webinars
More Webinars
White Papers
More White Papers
Reports
More Reports