Collaborate Disseminate
An email with the subject of Failed on delivery pretending to come from Royal Mail Team <info@footballplayers1.ga> with a zip attachments containing a malicious word doc is another one from the current bot runs which try to download various Trojans and password stealers especially banking Trojans … Continue reading →
There is a lot of chat and buzz on Twitter, Facebook, private forums and mailing lists amongst security researchers and Anti-malware companies this last week. It has been extremely quiet, malware wise, with a vastly reduced, in fact almost non … Continue reading →
One of the frequent subjects in a phishing attempt is Tax returns or tax refunds , where especially in UK, you need to submit your Tax Return online. The phishers have caught on to the fact that in UK all government services … Continue reading →
Continue reading Automated tax refund notification – Phishing
An email with the subject of Spam2Ls Suspicious activity on your PayPal Account pretending to come from PayPal <service@intl.paypal.com> with a link in the email that when clicked which downloads a password stealing malware. At first, I thought this was … Continue reading →
Continue reading Spam2Ls Suspicious activity on your PayPal Account delivers malware
An email with the subject of ACH – Bank account information form pretending to come from Ali Bolton <Ali.Bolton@jpmchase.com> with a zip attachment which downloads Cerber ransomware. I haven’t seen one of these spoofed jpmchase.com / ACH emails for ages. Previously the … Continue reading →
Continue reading ACH – Bank account information form malspam delivers Cerber ransomware
Yet another really lame email from the Locky gang with the subject of Lottery Ticket #71088492 [ random numbered] pretending to come from random senders with a zip attachment which downloads Locky ransomware They use email addresses and subjects that will entice a user … Continue reading →
Continue reading Lottery Ticket #71088492 malspam leads to #Locky
Another lame email from the Locky ransomware gang with the subject of New Message from your bank manager pretending to come from random senders with a zip attachment which downloads Locky They use email addresses and subjects that will entice a … Continue reading →
Continue reading New Message from your bank manager malspam delivers #Locky
An email where the subject is the word FWD: or Fw: and the alleged senders name pretending to come from random senders with a malicious word RTF doc spreadsheet attachment is another one from the current bot runs which try to … Continue reading →
Continue reading The attached proposal includes declaration malspam broken malware macros
After the somewhat more peaceful and restful Holiday weekend in UK/USA, it is back to full speed with malspam emails. Lets start the day with an email with the subject of Fraudlent Behavior – Account Suspended pretending to come from random … Continue reading →
Continue reading Fraudlent Behavior – Account Suspended malspam delivers #Locky
Another foreign language malspam email in the same manner as THIS post that are spoofing random companies with the subject of COPIE FACTURE + JUSTIFICATIFS coming from random senders with a zip attachment containing a malicious word doc is another one from the … Continue reading →
Continue reading COPIE FACTURE + JUSTIFICATIFS malspam uses PowerShell to deliver malware