These services are often pitched as “forgotten password recovery services”; they can sell anywhere from $230 for Gmail to $350 for Yahoo mail and others. The fact is that these services often produce the promised results, thanks to the victim-tailored spear phishing attempt. Today’s educated cyber criminals tend to do their best to automatically and efficiently personalize their campaigns in an attempt to increase the probability of a successful malware infection/phishing lead with information harvested from the PC of an infected friend. http://alrt.co/YlSxHq
Takeaway: Email users are advised to be extra cautious when receiving emails that contain a suspicious amount of knowledge about them, especially emails sent to them from impersonated parties who might have interest in compromising them. Email users should employ two-factor authentication where applicable.