Ecard Scams: Greetings! A Scammer Has Sent You an Ecard!

Beware the latest ecard scams: Internet ScamBusters #242

Today’s issue answers the most frequent question we’ve
received over the past month: “I’m getting a LOT of ecards all
of a sudden: are they real or are they ecard scams? If
they’re scams, can you explain how they work?”

Ecards are a fast, inexpensive and creative way to send
greetings to friends and relatives, but they’re also a
valuable tool for scammers who want to trick people into
downloading viruses, spyware, Trojans and more!

Some scammers actually ask permission to install rogue
software on your computer using a “EULA” (End User License
Agreement) that most ecard recipients don’t bother to read.

Some ecard recipients are told to download certain software to
read their message. Then, this program bombards everyone in
their address books with scam ecards and unwanted marketing
messages.

Discover how to defend against the latest wave of ecard scams!

First, though, we recommend you check out the most popular
articles from our other sites during the past week:

How Young Is Too Young For a Cell Phone? Find out if kindergartners
are too young to have their own href="http://www.consumertipsreports.org/how_young_is_too_young_for_a_cell_phone.html"
target="_blank">cell phones in this changing world.

The Credit Cards of the Wealthy: Take a peek at the href="http://www.creditcardtipsetc.com/credit_cards_of_the_rich_and_famous.html"
target="_blank">exclusive credit cards the rest of us may never
see.

How Myspace, Facebook and Other Social Websites Pose an Identity
Theft Risk
: href="http://www.identitytheftfixes.com/are_social_websites_being_used_for_identity_theft.html"
target="_blank">Identity theft can happen unless you know how
social websites can be used against you.

Benefits of Liquid Bandage Products: Popular href="http://www.emergencypreparednesstips.org/benefits_of_liquid_bandage_products.html"
target="_blank">liquid bandage products can be very beneficial.

On to today’s main topic…


Ecard Scams: Greetings! A Scammer Has Sent You an Ecard!


Ecards scams have existed since legitimate companies first
offered consumers the ability to customize and email REAL
greeting cards via the Internet.

Since late spring, however, we’ve been flooded with emails
from ScamBusters readers complaining about a new wave of scam
ecards and postcards.

Here’s a typical email:

~~~ Begin Ecard Scam Email ~~~

“Subject: You’ve received a postcard from a Neighbor!

Hi. Neighbor has sent you a postcard.

See your card as often as you wish during the next 15 days.

SEEING YOUR CARD

If your email software creates links to Web pages, click on
your card’s direct www address below while you are connected
to the Internet:

%0A%3C/p%3E%3Cp%20class%3D%22times%22%3E%0AOr%20copy%20and%20paste%20it%20into%20your%20browser%27s%20%22Location%22%20box%20%28where%0AInternet%20addresses%20go%29.%0A%3C/p%3E%3Cp%20class%3D%22times%22%3E%0AWe%20hope%20you%20enjoy%20your%20awesome%20card.%0A%3C/p%3E%3Cp%20class%3D%22times%22%3E%0AWishing%20you%20the%20best%2C%3Cbr%20/%3E%0AMail%20Delivery%20System%2C%3Cbr%20/%3E%0APostcardsFrom.Com%22%0A%3C/p%3E%3C/blockquote%3E%3Cp%3E%0A%7E%7E%7E%20End%20Ecard%20Scam%20Email%20%7E%7E%7E%0A%3C/p%3E%0A%0A%3Ch2%20align%3D%22center%22%3EEcard%20Scams%3A%20Malicious%20Goals%3C/h2%3E%0A%3Cp%3E%0AThere%20are%20a%20number%20of%20variations%20on%20this%20email%20that%20have%20been%0Asent%20by%20different%20scammers%20using%20different%20company%20names%20and%0Awebsites.%0A%3C/p%3E%3Cp%3E%0AIn%20addition%20to%20the%20bogus%20ecard%20offer%20above%2C%20Sophos.com%20reports%0Athat%20%3Ca%20%0Ahref%3D%22http%3A//www.sophos.com/pressoffice/news/articles/2007/07/july4.html%22%20%0Atarget%3D%22_blank%22%20rel%3D%22nofollow%22%3Ewidespread%20malware%20attacks%3C/a%3E%20occurred%20around%20the%20%0AJuly%204%0Aholiday%2C%20disguised%20as%20Independence%20Day%20greetings.%0A%3C/p%3E%3Cp%3E%0ASome%20of%20the%20many%20subject%20lines%20used%20include%3A%0A%3C/p%3E%3Cblockquote%3E%3Cp%3E%0A4th%20Of%20July%20Celebration%3Cbr%20/%3E%0AAmerican%20Pride%2C%20On%20The%204th%3Cbr%20/%3E%0AAmerica%27s%20231st%20Birthday%3Cbr%20/%3E%0AAmericas%20B-Day%3Cbr%20/%3E%0AAmerica%20the%20Beautiful%3Cbr%20/%3E%0ACelebrate%20Your%20Independence%3Cbr%20/%3E%0ACelebrate%20Your%20Nation%0A%3C/p%3E%3C/blockquote%3E%3Cp%3E%0AWe%20expect%20you%20will%20see%20similar%20attacks%20on%20future%20holidays.%0A%3C/p%3E%3Cp%3E%0AIn%20general%2C%20a%20scammer%27s%20goals%20fall%20into%20four%20categories%3A%0A%3C/p%3E%3Cp%3E%0A1%29%20To%20install%20viruses%20on%20your%20hard%20drive%20that%20will%20wreak%0Ahavoc%20with%20your%20computer.%0A%3C/p%3E%3Cp%3E%0A2%29%20To%20install%20spyware%20or%20Trojans%20on%20your%20computer%20that%20will%0Ascan%20your%20machine%20for%20personal%20and%20financial%20information.%0A%3C/p%3E%3Cp%3E%0A3%29%20To%20install%20adware%20that%20will%20bombard%20your%20desktop%20with%0Apop-up%20ads%2C%20launch%20adult%20websites%20or%20send%20phony%20ecards%20to%0Aeveryone%20in%20your%20address%20book%20–%20cards%20that%20appear%20to%20have%0Acome%20from%20YOU%21%0A%3C/p%3E%3Cp%3E%0A4%29%20Turn%20your%20computer%20into%20a%20%27zombie%27%20to%20help%20spam%20or%20attack%0Aother%20computers.%0A%3C/p%3E%0A%3Ch2%20align%3D%22center%22%3EMethods%20of%20%22Infection%22%20from%20Ecards%3C/h2%3E%0A%3Cp%3E%0ANot%20all%20scammers%20use%20the%20same%20tactics%20to%20infect%20your%20computer%0Awith%20rogue%20programs.%0A%3C/p%3E%3Cp%3E%0AIn%20some%20cases%2C%20merely%20opening%20the%20phony%20ecard%20will%20cause%0Amalicious%20software%20to%20download%20onto%20your%20computer.%20In%20other%0Acases%2C%20you%27ll%20be%20prompted%20to%20install%20software%20that%20the%20scammer%0Aclaims%20is%20needed%20to%20view%20your%20special%20greeting%20card.%0A%3C/p%3E%3Cp%3E%0AThe%20cleverest%20method%20of%20spreading%20rogue%20programs%20is%20to%20ask%0Ayour%20permission%20first%21%20Once%20you%20reach%20the%20scammer%27s%20site%2C%0Ayou%27re%20presented%20with%20an%20End%20User%20License%20Agreement%20%28EULA%29%2C%0Apacked%20with%20page%20after%20page%20of%20%22legalese.%22%0A%3C/p%3E%3Cp%3E%0ABuried%20in%20the%20fine%20print%20–%20and%20it%27s%20all%20fine%20print%20–%20is%0Alanguage%20informing%20you%20that%20the%20company%20WILL%20install%20certain%0Aprograms%20on%20your%20computer%20once%20you%20agree%20to%20the%20terms%20and%0Aconditions.%0A%3C/p%3E%3Cp%3E%0AUnfortunately%2C%20seasoned%20Web%20surfers%20are%20so%20used%20to%0Aautomatically%20accepting%20these%20EULAs%20that%20few%20bother%20to%20read%0Athem.%20And%20obviously%2C%20almost%20no%20one%20asks%20an%20attorney%20to%0Atranslate%20all%20that%20legalese.%0A%3C/p%3E%3Cp%3E%0AAccording%20to%20Snopes.com%2C%20a%20new%20wave%20of%20phony%20ecard%0Anotifications%20began%20reaching%20inboxes%20during%20June.%20These%0Aemails%20tried%20to%20induce%20people%20to%20click%20links%20that%20would%0Ainstall%20malicious%20programs.%0A%3Cbr%20/%3E%0A%3Ca%20href%3D%22http%3A//www.snopes.com/computer/virus/postcard.asp%22%20target%3D%22_blank%22%20rel%3D%22nofollow%22%3Ehttp%3A//www.snopes.com/computer/virus/postcard.asp%3C/a%3E%0A%3C/p%3E%3Cp%3E%0A%22Using%20subject%20lines%20such%20as%20%27You%27ve%20received%20a%20postcard%20from%0Aa%20family%20member%2C%27%20the%20emails%20tried%20to%20%5Btrick%20people%5D%20into%0Adownloading%20a%20variant%20of%20the%20Storm%20Trojan%2C%20%27an%20aggressive%0Apiece%20of%20malware%20that%20has%20been%20hijacking%20computers%20to%20serve%20as%0Aattacker%20bots%27%20since%20earlier%20in%20the%20year.%22%0A%3C/p%3E%3Cp%3E%0AIf%20your%20computer%20is%20hijacked%20to%20serve%20as%20a%20%22bot%2C%22%20it%20becomes%20–%20in%20effect%20–%20%0Aa%20%22terrorist%20sleeper%2C%22%20awaiting%20orders%20from%0Aits%20commander%20that%20will%20cause%20it%20to%20attack%20other%20individual%0Acomputers%20or%20networks.%20%28A%20virus%20behaves%20independently%2C%20and%0Acan%27t%20be%20remotely%20controlled%20once%20it%27s%20installed.%29%0A%3C/p%3E%0A%3Ch2%20align%3D%22center%22%3ESigns%20of%20Ecard%20Deception%3C/h2%3E%0A%3Cp%3E%0AOne%20sign%20that%20an%20ecard%20may%20be%20fake%20is%20often%20contained%20in%20the%0A%22FROM%22%20line.%20The%20email%20will%20say%20you%27ve%20received%20a%20card%20from%20a%0AGENERIC%20friend%2C%20neighbor%2C%20classmate%2C%20secret%20admirer%2C%20etc.%0A%3C/p%3E%3Cp%3E%0ASince%20most%20people%20who%20send%20REAL%20ecards%20insert%20their%20names%20in%0Athe%20%22From%22%20line%2C%20be%20VERY%20suspicious%20when%20an%20ecard%20arrives%0A%22From%3A%20A%20Relative.%22%0A%3C/p%3E%0A%3Ch2%20align%3D%22center%22%3EOther%20signs%20of%20deception%20include%3A%3C/h2%3E%0A%0A%3Cul%3E%3Cli%3E%3Cp%3ESpelling%20mistakes%20–%20e.g.%2C%20congratulation%21%20%28Or%20your%20name%20is%0Amisspelled.%29%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3EErrors%20in%20the%20message%20–%20e.g.%2C%20it%20says%20YOU%20sent%20the%20card%0Ayou%27ve%20just%20received.%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3EThe%20sender%20isn%27t%20someone%20you%20know.%0A%3C/p%3E%3C/li%3E%3C/ul%3E%0A%3Ch2%20align%3D%22center%22%3EStaying%20Safe%3C/h2%3E%0A%3Cul%3E%3Cli%3E%3Cp%3EIf%20in%20doubt%2C%20don%27t%20open%20an%20ecard.%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3EDelete%20any%20ecard%20from%20someone%20you%20don%27t%20know.%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3ENever%20click%20on%20anything%20from%20an%20unknown%20source%2C%20never%20open%0Aan%20attachment%20from%20an%20unknown%20source%2C%20and%20never%20download%20from%0Aan%20unknown%20source.%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3ENever%20click%20to%20accept%20terms%20from%20any%20company%20without%0Areading%20the%20fine%20print.%20Beware%20of%20those%20EULAs%21%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3EUse%20antivirus%20software%20and%20keep%20it%20up%20to%20date.%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3E%20Use%20Mozilla%20Firefox.%20Many%20ecard%20scams%20use%20loopholes%20in%0AInternet%20Explorer%2C%20so%20Firefox%20is%20far%20more%20secure%20against%20this%0Atype%20of%20scam.%20But%20since%20Firefox%20is%20not%20100%25%20secure%20either%2C%0Amake%20sure%20you%20keep%20FireFox%20updated.%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3EWe%20recommend%20against%20opening%20any%20ecard%20with%20an%20attachment.%0AYou%20never%20know%20what%27s%20really%20in%20that%20attachment%20until%20it%27s%20too%0Alate.%0A%3C/p%3E%3Cp%20align%3D%22center%22%3E%0A%3Cb%3ERemember%3A%20even%20opening%20attachments%20that%20appear%20to%20come%20from%0Afriends%20or%20coworkers%20puts%20you%20at%20risk.%3C/b%3E%0A%0A%3C/p%3E%3C/li%3E%3Cli%3E%3Cp%3EBe%20skeptical%20and%20alert.%20If%20something%20seems%20fishy%2C%20be%0Acautious.%20A%20Trojan%20can%20make%20a%20phony%20ecard%20look%20like%20it%27s%0Acoming%20from%20a%20friend%20or%20family%20member%2C%20so%20be%20vigilant.%0A%3C/p%3E%3C/li%3E%3C/ul%3E%3Cp%3E%0ABy%20the%20way%2C%20Mac%20users%20are%20generally%20safe%20from%20these%20attacks.%0A%3C/p%3E%3Cp%3E%0AFor%20more%20informat
ion%20on%20ecards%2C%20visit%20our%20article%20%22%3Ca%20%0Ahref%3D%22http%3A//www.scambusters.org/ecards.html%22%3EAre%20Ecards%20Safe%3F%3C/a%3E.%22%0A%3C/p%3E%3Cp%3E%0AThis%20article%20also%20contains%20helpful%20links%20to%20information%20about%0Aanti-virus%20software%2C%20spyware%20removal%20and%20email%20safety%20tips.%0A%3C/p%3E%3Cp%3E%0ABy%20following%20these%20tips%2C%20you%20can%20stay%20safe%20from%20ecard%20scams.%0A%3C/p%3E%3Cp%3E%0ATime%20to%20close%20–%20we%27re%20off%20to%20take%20a%20walk.%20See%20you%20next%20week.%0A%3C/p%3E%26nbsp%3B%3Cp%3E%3C/p%3E%0A%0A