Last week my wife got an email from one of her Gmail accounts inviting her to join the web site brizy.com. For some reason, she logged in using her Gmail name and password. The site immediately sent the same message out to a few people in her Gmail address book, including me.
The next time she loaded Gmail, she got a warning message in red near the top of the page. Gmail said that her account had been accessed from another state, and suggested she change her password.
We did that, and then I checked the WebRoot security logs, and re-scanned her system. It did not find anything. At that point, I assumed the problem was solved.
But last night she got an email from brizy.com again. And it apparently sent out another set of spam invites. I have attached a picture of the email I received, without the pretty pictures. EVERY link in that email looks like this:
(BRIZY web site)/rmd.php?a=l&v=3&q=(125 alphanumeric characters here)&vm=brizy-mta18
I did some Google searches on this Gmail / Brizy problem. I was surprised at how little information there was. The standard recommendation is to NOT open any emails from brizy.com. I downloaded MalwareBytes Anti-Malware and ran its scan. I also re-ran a WebRooot Secure AnyWhere scan, but netiher of these found anything.
I want to keep this from happening the NEXT time she gets mail from brizy.com. I flagged the mail she received as spam, but don't know if that is sufficient. I am hoping someone here has a solution, or can point me in the right direction.