Fake Apple Store order notification emails floating around the Web right now are redirecting to a new site pushing the same old familiar list of discount (read: fake) pharmaceuticals.
Similar scams have been going on for months now. They typically redirect to a relatively familiar pharmacy page hosted on compromised sites or newly registered domains.
According to a Websense report, this particular spam campaign is unique in that it utilizes a relatively new spam web template. The new template has a Wikipedia look about it and is titled “WikiPharmacy.”
In terms of volume compared to other pharmaceutical spam campaigns, this one is somewhat unimpressive. Upon a closer look at the IP address where this domain is hosted though, Websense discovered the same IP address serves more than 24,000 other domains that were all used in one pharma-spam campaign or another.
This report comes amid increased attacks targeting Apple’s operating system. In fact, earlier this month Threatpost reported on the emergence of a new Mac crimeware kit. There have also been reported increases in the occurrence of Mac OS X scareware.
