Subject: Bling Bling!!

Body: I have good news. I tried out this website and it is definantly worth your time. You get 15 free ringtones! That’s right, FREE!!! Give it a try, I don’t know how long they will be offering this.GET THEM NOW!

Appears that the link goes to a fake profile that redirects you to a an image hosted at http://stupidtoad.com/free/

Here is the spammers information provided by godaddy.com

Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
Domain Name: STUPIDTOAD.COM
Created on: 08-Apr-06
Expires on: 09-Apr-07
Last Updated on: 13-Aug-06

Administrative Contact:
Jenson, Allen a_jenson@hotmail.com
3679 Sand Creek Rd
Farmington, Missouri 63640
United States
(573) 747-9498

If you find your friends posting this, tell them to change their password on their profile. It was most likely hijacked. These posts may also be hosted at other sites. If you see one, let us know and we will get the word out.

The above screenshot is the latest in MySpace spam bulletins. These have been appearing more and more. Usually the link you click on is a redirector link to go to an affiliate website. This however is not the worst part about the bulletin post. All of these bulletins are not being posted by your MySpace friends. They are being posted by someone who hijacked their profile.

If you found that you or some of your friends have posted this bulletin, then change your password immediately or message your friends and tell them to change their password immediately as well.

Most likley they were somehow redirected to a MySpace phishing site setup to steal their password. Never enter your password on sites other then MySpace. Some site may be setup to look like MySpace so remember to always check for the MySpace url in the address bar.

Security watchers have discovered a phishing attack targeting users of MySpace, the social networking website. The attack comes in the form of a hyperlink sent to potential marks in an AOL instant messaging message.

Users who follow the link are taken to a bogus website that spoofs the MySpace.com login page. The ruse is designed to fool users into handing over account information to crooks. Surfers duped into handing over this information are subsequently forwarded to the real MySpace.com website.

According to net security firm WebSense, the fraudulent site also sets a “cookie on the victim’s computer, which prevents the phishing attack from being displayed on any subsequent visits”.

The MySpace phishing email is another example of how email fraudsters are widening their sights beyond traditional targets, such as eBay and high street banks, alongside moves to develop more sophisticated scams.

THIS HAS BEEN IDENTIFIED AS SPAM. DO NOT FOLLOW THE LINK IN CASE OF VIRUS OR SPYWARE.

THIS HAS BEEN IDENTIFIED AS SPAM. DO NOT FOLLOW THE LINK IN CASE OF VIRUS OR SPYWARE.