Spammers Hide Behind Google Translate
The lesson, according to Barracuda Labs, is simple: don't click on e-mailed links.
"A basic strategy for blocking spam that contains links is to consider the reputation and destination of the links found in the message," write Barracuda's Dave Michmerhuizen and Shawn Anderson. "Spammers fight back by looking for open URL redirectors and poorly maintained URL shorteners that they can hide behind."
In this case, the spammers are using translate.google.com as a benign-looking URL redirector. In one sample, Michmerhuizen and Anderson show how Google Translate is used to link to Yahoo's URL shortener, which leads to a hacked WordPress blog, which then redirects to a rogue pharmacy Web site.
"[It's] worthwhile to know that spammers are taking these extreme steps to hide what they're doing, and no matter how good your spam filtering solution you have to be especially aware of emailed links," Michmerhuizen and Anderson write. "In short, don't click on them."