Fake My Opera Account Activation Emails in Circulation

[Peaches]

Fake My Opera Account Activation Emails in Circulation

Contain links that lead to malicious websites

Web and email security vendor Websense has issued an alert about a new spam campaign producing fake My Opera account activation emails. All links contained in the rogue messages lead to a malicious website.

"Heads up! Malicious My.Opera.com account activation emails are now circulating," a warning posted on Websense's Twitter feed reads. By the looks of one of the offending messages, it appears that spammers are sending out almost perfect copies of the real My Opera account activation notifications.

The "From" field of these rogue emails is forged, in order to appear as if they originate from a real Opera address. Their subject is " Welcome to My Opera!" and the content includes an activation link, which ends with a "&username=boffin" parameter. It seems that "boffin" is a real account, but there is no indication as to why it is abused in this spam.

Furthermore, legit My Opera account activation emails contain two pargraphs reading: " Your username is: [username]" and "Your profile page is at: http://my.opera.com/[username]". For some reason in the rogue messages reported by Websense the [username] parts do not match, one paragraph listing "haymixer" and the other "boffin".

Read more here: http://news.softpedi...on-147826.shtml