It’s Amazon’s turn
For those of you tired of seeing and hearing about malware being distributed via the infamous UPS emails, here’s a little something new for you this morning from our spam traps;
Your transaction has been processed by WorldPay, on behalf of Amazon Inc.
The invoice file is attached to this message.
This is not a tax receipt.
We processed your payment.
Amazon Inc has received your order,
and will inform you about delivery.
Sincerely,
Amazon Team
It does not indicate that your order has been accepted.
It is the responsibility of Amazon Inc to confirm that
your order has been accepted, and to deliver any goods or services you have ordered.
As ever they’ve not made much of an effort, simply using a legitimate comany name in an attempt to entice users to open the malicious attachment to see what they’re being charged for. It’s the oldest trick in the book, just with a new brand name. Regular Amazon shoppers will recognise that the email looks nothing like one from the real ‘Amazon Team’, and surely there’s no one left out there who falls for this kind of nonsense any more?
Presumably those responsible for distributing the malware have made the decision that the Amazon brand will net them a whole new set of victims. Don’t give them the satisfaction.
Sophos users are doubly protected, as we both block the email and proactively detect the attached malware as Mal/EncPk-HZ.
Filed under: General
Windows 7 security - A great leap forward or business as usual?
