deviantArt (or dA) is one of a number of popular sites for artists and creatives to share and connect with like-minded people. Art, photos, and tuts (short for "tutorials") are regularly shared here. A short time ago, the website has started to sport a new logo and layout. dA will also be launching a mobile app for Android and iOS devices.
The site also has its share of online threats. In 2012, our very own Chris Boyd found a XSS (cross-site scripting) phishing run and fake software served on it. In 2013, Boyd found spam links being shared on the site that lead to various other sites.
Recently, we have found accounts created on dA that were about 1-2 weeks old spamming links of downloadable electronic books. Doing a simple search for downloadable PDF within the site shows these spammy posts:azlibrary(dot)net, a site hosted in Germany and registered less than 3 months ago. Clicking the links, however, lead to a survey scam:
[gallery type="slideshow" ids="6559,6560"]
When one visits the aforementioned dot-net site, users are presented with a button to register. Clicking it also leads to the exact survey scam page. Let's look at this for a while.
Below is the screenshot of gripnode(dot)co:
Here's a list of just some of the spammy account names on dA we've seen: