I have received 4 spammy emails in the past 3 days from the same sender.
Background info:
The sender is a friend in my email contacts.
The email “To” line contains 5 or 6 names, some of which are mutual friends of mine and the sender, but listed weirdly, with the letters utf 8 added between the names…
The “To” line reads: utf 8 JoeSmith, utf 8 David, utf 8 MikeJones
I’m guessing that a hacker accessed my friend’s email contacts, and used his address to send a message to everybody in the list.
Now my question, which is about the content of the spammed mails:
each mail contains nothing but a link. the link starts with https and goes to a site called t.co . Am I right that this is a twitter link?
The full link is similar to https:// t.co/ XMAA12345F
(without the spaces). there are 10 characters after the final slash,
but the 10 characters are different each time.There is no other text or attachment.
So my question is : how dangerous would it be if I had clicked on the link? What is the spammer trying to do?
I have no idea what the spammer was trying to do, but I sure wouldn’t click on a link from any spam email I received. Better safe than sorry.
You might want to contact one of your cohorts, who presumably got the same message you did, and see if they clicked on the link, and if they did, what happened.
Yeah, I wouldn’t bother analyzing a spam email link, much less click on it. Assume it’s dangerous. My default is instant delete, no questions asked. The OP is like “what would happen if I poked this hornet nest with a chopstick?”
that’s what I was wondering. I had heard that t.co links were supposed to be safe.
Also, I’m wondering why each link is different. If a spammer wants me to click on his website, or download his virus, or whatever, why create a different link each time?
With shortening, many pseudo-links can point to the same thing. Creating pseudo-links is very simple, i.e., can be automated, and avoids filters. Someone setting up a filter would have to block each pseudo-link.