Subscribe to Virus Experts – We Make Your Digital Life Secured RSS FeedSubscribe to Virus Experts – We Make Your Digital Life SecuredComments FEED

Browse > Home /

Danger! Fake $50 iTunes certificate carries malware

May 10, 2010 by admin  
Filed under Security News

Leave a Comment

 

 

Amid all the usual attacks posing as delivery notices from DHL and FedEx this morning, I spotted some malware that had been spammed out posing as an Apple iTunes certificate for $50.

 

itunes malware Danger! Fake $50 iTunes certificate carries malware

The emails read as follows:

Subject: Thank you for buying iTunes Gift Certificate!
From: "iTunes Online Store" <software@itunes.com>
Attached file: iTunes_certificate_997.zip

Hello!

You have received an iTunes Gift Certificate in the amount of $50.00
You can find your certificate code in attachment below.

Then you need to open iTunes. Once you verify your account, $50.00 will be credited to your account, so you can start buying music, games, video right away.

iTunes Store.

 

Running the attached malware can infect Windows computers. Clearly the hackers are hoping that in your excitement about receiving a $50 iTunes gift certificate that you will throw caution to the wind and open the attachment.

 

Sophos detects the malware, contained inside a ZIP file, as Troj/BredoZp-AM andMal/FakeAV-BW.

 

 

By Graham Cluley, Sophos

 

Tags: , , , , , , , , , , , , , , , , ,

Malicious bogus DHL and FedEx emails bombard inboxes

October 20, 2009 by admin  
Filed under Security News

1 Comment

We are currently seeing a large number of malicious emails purporting to be sent from FedEx or DHL, but containing attachments designed to infect your computer.

 

It’s a familiar story. In the case of the malware attached to the emails coming from DHL, the communication claims that there has been an error in the delivery address, and so you are invited to pick up the parcel “at our post office personaly” (spelling has often been the downfall for would-be hackers).

 

If the poor spelling doesn’t set your alarm bells ringing then you might be foolish enough to open the attached shipping label (we have seen examples where this can be called DHL_print_label_75ba9.zip or DHL_print_label_9731b.zip)

 

dhl delivery1 Malicious bogus DHL and FedEx emails bombard inboxes

Sophos detects the attached malware as Troj/BredoZp-A or Mal/Bredo-A.

 

On the SophosLabs blog, Prashant has written about a similar campaign claiming to come from FedEx, carrying an infected invoice in the form of a file called TR768212.zip.

 

The thing which is most notable about these current spammed-out attacks, though, are their ferocity. Take a look at what our email malware traps intercepted in a less than two minute interval:

 

dhl fedex list Malicious bogus DHL and FedEx emails bombard inboxes

Dangerous emails claiming to come from courier companies are nothing new – it has become a standard method by which hackers can socially engineer you into opening a malicious attachment or clicking on a dangerous link.

 

Make sure that you and your colleagues are wise to the trick – and think before you click.

 

by Graham Cluley, Sophos


Tags: , , , , , , , ,