Crypto Locker Trojan/Virus will cripple
your computers! The usual delivery of the attack is via an e-mail
disguised as UPS/USPS/FedEx. Keep in mind that these parcel services DO
NOT send out attachments! Just delete the e-mail if it comes from
ups.com, usps.gov, or, fedex.com and has an attachment. Also, the
hackers are getting this virus around most anti-virus solutions and spam
filters; probably by changing up the code and pushing the e-mail
through legitimate mail servers on the web. One I investigated came
through a citibank.com server in London.
They are also known to use ADP as a front.
Sunday, October 6, 2013
Thursday, October 3, 2013
Your UPS Invoice is Ready
It claims to come from UPS, the represented address is UPSBillingCenter@ups.com, it has an attached zip file named UPS_Invoice_8890001251.zip, which contains a file called Report_03102013.exe. It is also possible that the .zip file and .exe files will have slightly different numbers in their names to help defeat spam and virus filters. It is either spoofed or hacked. DON'T OPEN IT; IT IS A VIRUS!
Delete and move on with your day!
The message hails from Greenford, London, England. It looks like it was somehow routed or spoofed through Citibank; 524DC67B.901010@citibank.com. Citibank.com does not designate 46.37.50.131 as permitted sender.
Infected Virus Spam Mail Text;
This is an automatically generated email. Please do not reply to this email address.
Dear UPS Customer,
New invoice(s) are available for the consolidated payment plan(s) / account(s) enrolled in the UPS Billing Center
Please open attached file to view and pay your invoice.
________________________________________
(c) 2013 United Parcel Service of America, Inc. UPS, the UPS brandmark, and the color brown are trademarks of United Parcel Service of America, Inc. All rights reserved.
For more information on UPS's privacy practices, refer to the UPS Privacy Policy.
Please do not reply directly to this e-mail. UPS will not receive any reply message.
For questions or comments, visit Contact UPS.
Delete and move on with your day!
The message hails from Greenford, London, England. It looks like it was somehow routed or spoofed through Citibank; 524DC67B.901010@citibank.com. Citibank.com does not designate 46.37.50.131 as permitted sender.
Infected Virus Spam Mail Text;
This is an automatically generated email. Please do not reply to this email address.
Dear UPS Customer,
New invoice(s) are available for the consolidated payment plan(s) / account(s) enrolled in the UPS Billing Center
Please open attached file to view and pay your invoice.
________________________________________
(c) 2013 United Parcel Service of America, Inc. UPS, the UPS brandmark, and the color brown are trademarks of United Parcel Service of America, Inc. All rights reserved.
For more information on UPS's privacy practices, refer to the UPS Privacy Policy.
Please do not reply directly to this e-mail. UPS will not receive any reply message.
For questions or comments, visit Contact UPS.
Subscribe to:
Posts (Atom)