CERT mailing list archives

Previous By Date Next
Previous By Thread Next

Current Activity - Scams Exploiting Boston Marathon Explosion

From: Current Activity <us-cert () us-cert gov>
Date: Wed, 17 Apr 2013 15:51:16 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

National Cyber Awareness System
Scams Exploiting Boston Marathon Explosion


Original release date: April 17, 2013

Malicious actors are exploiting the April 15 explosions at the Boston
Marathon in attempts to collect money intended for charities and to
spread malicious code. Fake websites and social networking accounts have
been set up to take advantage of those interested in learning more
details about the explosions or looking to contribute to fundraising
efforts.

For example, the Twitter account @_BostonMarathon was created shortly
after the explosions took place. The account stated it would donate $1
for each retweet and was crafted to closely resemble the legitimate
Boston Marathon Twitter account (@BostonMarathon). This account has
since been suspended by Twitter; however, the likelihood that similar
social media accounts will surface remains high.

Phishing email campaigns are also circulating using subject lines
related to the Boston Marathon explosions. Do not open unexpected
attachments or click on links in suspicious emails, even if the email
appears to be from someone you know.

US-CERT recommends that all persons interested in donating funds should
go directly to established charities such as the American Red Cross.
Exercise caution when interacting with social media accounts that claim
to represent the best interests of those involved in the incident, and
directly visit established news sources rather than conducting general
search engine queries, as it can be difficult to tell which search
results may lead to scam sites.

Relevant URL(s):
____________________________________________________________________

   Produced by US-CERT, a government organization.
____________________________________________________________________

This product is provided subject to this Notification:
http://www.us-cert.gov/privacy/notification/

Privacy & Use policy:
http://www.us-cert.gov/privacy/

This document can also be found at
http://www.us-cert.gov/ncas/current-activity/2013/04/17/Scams-Exploiting-Boston-Marathon-Explosion

For instructions on subscribing to or unsubscribing from this
mailing list, visit http://www.us-cert.gov/mailing-lists-and-feeds/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBUW79KXdnhE8Qi3ZhAQLc6Af/WOwu5cyKZCJLF46MIzv728zIV6QTMiIH
M3/WkUvTM0l/Ra7JZywZnx20rpU0hqKVGygZfnehnf7GxTKk05dLoFO1Yi99EJlU
8IEQAyxqy65LcQbAezD3dBMMqX28IH/+ZX7t06VdPp6HG5qFM52dEg8aGco6eSqz
8R6PxbyrllGjUlF1qQ7L22dhJ1BmPJkOxSydcvbK6MEOCn5F8RjGKXHRwQSg6tVq
VwEZnG8Z56GW+64271OF5Rc46Cb/TZHFnNw3eBZUgAmgWQhpqNXgcoRh0rEUGVon
+JnqhnmShrnnE1PnHcoSjs6J1BIRTd8TBdr6djJouIvnFglz3lIpkA==
=dH5y
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: