Better Business Bureau warns of new scheme

Share this content

Better Business Bureau is alerting consumers and businesses about a phishing scheme that uses both e-mail messages and blog posts directing recipients and viewers to register software with BBB. BBB wants the public to know that such messages and posts are not coming from any element of the BBB System, and that this attack has not affected BBB computer systems or networks nor has any data been comprised.

Reports to BBB indicate that targeted businesses have received bogus messages requesting them to "register new software and update contact information" with BBB. The messages provide a link for the process. In investigating the attack, BBB has discovered phony notices and postings on various blogs being used as additional tactic to reach victims.

"The messages and posts are most likely part of a large-scale phishing scam leveraging the trusted nature of the BBB name to entice recipients and bloggers to open messages and access attachments or links," said Joan Coughlin, BBB spokesperson. "Anyone receiving an e-mail or viewing a blog requiring the registration of software with BBB should not click on any links or in any way respond to the message, because doing so may allow harmful viruses or spyware to enter the recipient's computer or network."

BBB has determined that there are a number of addresses and subject lines being used in to perpetrate the e-mail element of the attack. Following is a representative sample of actual address and subject lines used in this attack.

The phishing scheme is also appearing on multiple blog sites.

BBB is advising consumers and businesses to take the following precautions and actions to steer clear of this phishing attack and to protect their computer systems and networks.


Please login or register to join the discussion.

There are currently no replies, be the first to post a reply.