As the holiday season approaches, a lot of people are bound to travel in order to visit their loved ones, so fake e-ticket confirmation spam campaigns are to be expected.
Symantec warns about a fake airline message currently being sent out to unsuspecting users:
The included link supposedly takes users to the ticket they need to print out, but actually redirects them to a Russian site known for hosting malware. In the past, this same site has been found hosting – among other things – malicious Java files that exploit one or more vulnerabilities.
Users are advised to keep a lookout for scams typical for the holiday season, and to avoid opening attachments and following links included in unsolicited emails.