Watch out for an email posing as a notification from UPS or FedEx. DO NOT CLICK THE ATTACHMENT! The email is sent from the spoofed address “United Parcel Service <****@ups.com>” where *** is filled in with various combinations like:
infojs@
joiner2@
joiner22@
….
The message has the following body:
Dear customer.
The parcel was sent your home address.
And it will arrive within 7 business day.
More information and the tracking number are attached in document below.
Thank you.
© 1994-2011 United Parcel Service of America, Inc.
The attached ZIP file has the name UPSnotice.rar and contains the 16 kB large file UPS notify.exe.
The Trojan Horse is known as BDS/Hostil.F.9 (Antivir), TrojanDownloader:Win32/Chepvil.I (Microsoft), Mal/Bredo-K (Sophos), Backdoor.Cycbot (Symantec)
TIPS:
•UPS would always use your name if they were emailing you
•UPS would always send from a UPS email address
•UPS would always include their company details on the email
•UPS would never send you a .dat file to open
No comments:
Post a Comment