Spammers Masquerade UPS Within New Bulk E-mail Scheme
Security researchers from Webroot the security company caution Internauts about bulk e-mails, spammers are dispatching, while pretending to be the Sandy Springs, Georgia (USA) headquartered UPS (United Parcel Service) the postal package delivery firm.
Reportedly, the hoax electronic mail tells the recipient that the package delivery firm couldn't hand over the parcel he'd given on July 27 as it was given an incorrect delivery address. The message then requests the recipient to take a print out of an attached label copy so he may gather the parcel from the UPS office. Blog.webroot.com reported this, August 31, 2012.
Interestingly, to make the e-mail appear somewhat genuine, the spammers have used UPS' logos; however, following the "Print a shipping Label" web-link added below the text, actually leads end-users onto a hijacked site providing a file named Label_Copy_UPS.zip that in reality represents one downloader Trojan.
Independent Cyber Threats Analyst Security and Security Blogger Dancho Danchev of Webroot remarked that the malware had been identified as TrojanDownloader:Win32/Kuluoz.B; Trojan-Downloader.Win32.Kuluoz.z. Blog.webroot.com published this.
Fortunately, 36 anti-virus scanners from an aggregate 42 of VirusTotal have detected the Trojan thus making the malware's detection rate extremely high, writes Danchev.
And while the extremely weak grammar and spelling in the e-mail's text quickly makes recipients suspicious of it not being an UPS message, there may be several who likely will get trapped with the trick. Besides, it isn't quite likely for UPS to get in touch with consumers through e-mails that aren't welcome while they supply delivery details through attached documents. Formerly, cyber-criminals have been routinely using UPS' name in campaigns that spread malicious software.
And alongside UPS, some more reputed delivery firms like FedEx and DHL too have gotten targeted again-and-again in spam schemes for malware distribution. Similarly e-mails serving malware and posing as communication from Post Express had also been observed.
Thus, for remaining safe from getting victimized with the above kinds of spam mail attacks, Webroot's experts urge Internet-users to eschew from impulsively clicking on web-links alternatively taking down files given in uninvited e-mails irrespective of whatever the messages state alternatively the way they make anyone think.
Related article: Spammers Target Church and Charity
» SPAMfighter News - 10-09-2012