Learn about Zero Trust Architecture
Impenetrable cybersecurity without sacrificing usability
Gain detailed visibility into all your endpoints activities
Harden applications and hardware environments
Immediate and continuous response to incidents
Close the window of time your data could be exposed
Get your Comodo solutions setup, deployed or optimized
Control access to malicious websites
Defend from any internet based threats
Stop email threats before it enters your inbox
Preserve and protect your sensitive data
Keep your website running fast and malware free
Add encryption to your websites
Automated certificate mgmt. platform
Secure private intranet environments
Digital signature solutions for cloud apps
Encrypt emails for senders and recipients
Stay compliant with PCI DSS
Trusted authentication for IoT devices
Francisco Partners a leading technology-focused private equity fund, has acquired a majority stake in Comodo’s certificate authority business. Newly renamed from Comodo CA Limited to Sectigo Limited. Privacy Policies, Trademarks, Patents and Terms & Conditions are available on Sectigo Limited’s web site.
Meet the people behind the direction for Comodo
Get the latest news about Comodo
People are the key to achievement and prosperity
Stay up to date with our on-demand webinars
Worldwide: Sales, Support and General Inquiries
Schedule a live demonstration of our solutions
Need immediate help? Call 1-888-551-1531
Instantly removes viruses to keep your PC virus free
Experience true mobile security on your mobile apple devices
Secure Internet Browser based on Chrome
Chrome browser internet security extension
Submit a ticket to our support team
Share any product bugs or security flaws
Collaborate with research experts on data sets
Valkyrie Threat Intelligence Plugins
Valkyrie Threat Intelligence APIs
The Comodo Antispam Labs (CASL) team has identified a malware attack targeted specifically at businesses and consumers who make purchases from Pandora Jewelers, an international Danish jewelry manufacturer and retailer known for its customizable charm bracelets, rings and necklaces.
E-mail phishing activity rises dramatically as the holiday season is upon us – and Pandora Jewelers is a new phishing target, using language that capitalizes on the public’s desire for an extreme sale. The email is designed to capture credit card and financial information from business or consumers who try and make a purchase.
The e-mail spoofing threat arrived from the sender address custserv@aquae.kao6161.com with the subject line “Pandora Clearance.”
In the email screen grab, the e-mail appears to be from a fictitious jewelry reseller advertising a Pandora Jewelry sale. Pandora Jewelry typically allows its official resellers to promote the sale of their products via their own store websites and through e-mail promotions, which is why this phishing e-mail can be so dangerous to unsuspecting victims.
The Comodo Antispam Labs team identified the Pandora phishing email through IP, domain, and URL analysis.
The links provided should have pointed to http://www.pandora.net, however, the target links are directed to http://www.bestpandorajewelry.com/index.html.
“Phishing emails are one of the biggest threats for techonlogy users today, because they are abusing the trust that is built between consumers, business and brands,” said Fatih Orhan, Director of Technology for Comodo and the Comodo Anti-spam Labs. “The hackers are pretending to be from a trusthworthy entity such as a business owner, an e-commerce site or a popular social network, with the intention to steal customer’s credentials and/or financial information. At Comodo, we work diligently in creating innovative technology solutions that stay a step ahead of the cyber criminals, and keep enterprises and IT environments safe.”
The ComodoAntispam Labs team is made up of more than 35 IT security professionals, ethical hackers, computer scientists and engineers, all full time Comodo employees, analyzing and filtering spam, phishing and malware from across the globe. With offices in the US, Turkey, Ukraine, the Philippines and India, the CASL team analyzes more than 1,000,000 potential pieces of phishing, spam or other malicious/unwanted emails per day, using the insights and findings to secure and protect its current customer base and the at-large public, enterprise and Internet community.
If you feel your company’s IT environment is under attack from phishing, malware, spyware or cyberattacks, contact the security consultants at the Comodo: https://enterprise.comodo.com/contact-us.php
Email and Screen Grabs
The email screen that viewers initially see is below. The “Shop Now” section of the email is where the cyber thieves are looking for businesses and consumers to click, to begin shopping and trying to obtain their financial information:
The HTML page users are taking to after clicking “Shop Now”
For the System IT Administrators who think their IT may be susceptible to the fake email, the sender’s email domain is “aquae.kao6161.com.” The domain is registered at 2015-03-31T00:00:00+08:00Z out of Fucain, China.
Related Resources:
Website Backup
Website Status
Website Checker
Tags: COMODO LABS,Cyber Thieves,Pandora Jewelers,phishing email
Reading Time: 3 minutes Update: check the latest version of Comodo’s free mobile security app How Your Smartphone can Turn Hazardous Your smartphone is your best friend and assistant. But within a few minutes, it can turn into an insidious betrayer. Then it begins tracking every move you make, catching every word you say or write – and pass…
Reading Time: 3 minutes What Is Phishing? Phishing is a method employed by cybercriminals to access email accounts and systems using deception rather than defeating security protections. In basic phishing attacks, cybercriminals send an email that appears to be legal, tempting the victim to open an attachment or click on a link. This click could result in loading malware…
Reading Time: 3 minutes Phishing trap for One Drive users. How to avoid falling prey? Cybercriminals often use very cunning and inventive tricks to manipulate victim’s mind in phishing attacks. They aimed at eliciting data in such a way the victim doesn’t aware of it. For that purpose, the crooks use social engineering tricks. Recently Comodo specialists discovered a…
Sign up to our cyber security newsletter
Comodo Cybersecurity would like to keep in touch with you about cybersecurity issues, as well as products and services available. Please sign up to receive occasional communications. As a cybersecurity company, we take your privacy and security very seriously and have strong safeguards in place to protect your information.
agreecheck
See how your organization scores against cybersecurity threats
Advanced Endpoint Protection, Endpoint Detection and Response Built On Zero Trust Architecture available on our SaaS EPP