Danger on the Web: spam lenders

Probably everyone received a loan offer sent via e-mail. A reply to it may result in serious consequences.

Small loan companies, which can’t compete with the international banks, very often base their marketing strategies on the electronic mailings. Unfortunately, there is a number of unscrupulous organizations which, undercover of such mails, con into services much more expensive than those advertised. The experts from Kaspersky Lab warn that emails with a loan offer might be used to spread ‘credit spam’. The frauds may offer their assistance in getting a loan and request the password to the online banking system, three-digit CVV code or users passport or contact details. As a result, they can use those data to make forged documents.

Frauds who offer loans most often make use of two tools: phishing and malicious attachments. Phishing is an attempt to steal user’s data through fake websites, imitating official banking services or e-payment systems. The attachments may contain malicious software, which looks like a form for a loan or approved credit agreements.


A reply to a spam message tells spammers that this e-mail address really exists and is actively used. One should be prepared for more advertising messages.


Fraudsters have an array of tricks to fool the users. Some spammers introduce themselves as charity organizations, which help people in need. Such messages may contain some Bible quotes to make them look more credible. Others try to attract potential clients by promising substantial sums of money (even up to several million), which they can provide in a short period of time (from a few hours to a few days), without any deposit, bondsmen or proof of income, with the minimum of necessary documents – explains Maria Vergelis, a spam analyst from Kaspersky Lab. One should remember that any attempt of opening the attached “agreement” may lead to system infection and loss of the data stored on hard drive.

Experts from Kaspersky Lab advise not to reveal your personal data on suspicious websites and not to complete HTML forms received from unknown senders. What is more, one shouldn’t give personal data to third parties or correspond with unknown “lenders”. Experts also warn not to run executable files or open the attachments, especially archives and office documents from unknown senders.



Be the first to comment