Be Careful of the iphone Delivery Spam Email Campaign
With the fact that deliveries of the very trendy iPhone 5 will begin, Patrik Runald, Director of Security Research at Websense issued a notice about the current spam email campaigns themed around the iPhone 5, according to the news published by HELP NET SECURITY on September 19, 2012.
"Apple retailed more than 2 Million of new phone in less than 24 hours, so clearly, there's a big interest in receiving the device. This indicates that a lot of people are enthusiastically waiting for their shipping notices to learn when the phone will ring, he claims.
The false notifications don't display the iPhone, but still could con many eager users, noted by Web sense.
IPhone orders will be given by UPS.
"So when Patrick Runald received a UPS notification, mailed today, he anticipated it to be about his iphone, but it wasn't," expressed Runald in another statement published by info security-magazine on September 19, 2012.
3-4 weeks time is a very short duration by cyber crooks; and they have not been unhurried. The professional email, updated the UPS logo and a small number of semantic, grammar or spelling errors often found in fake emails, says that the recipient's delivery address is wrong. "Please take out a print of the invoice copy attached and gather the package at our department." It's all very convincing.
But then, the mail has an html page attached instead of the invoice and the html page says, "Please pause. You will be taken forward..." what it doesn't say is that the users is taken to a black hole exploit kit host in Russia; which Websense is confident that it will try to deliver financial malware.
Websense noted that it has already intercepted over 45,000 emails same as the above mentioned one. UPS/FedEx attracts are not the updated one, but many times like this-when people are keenly waiting for an email of similar nature, risk is full that the recipient will have their guards to implement the attached file..
Users are suggested to be more careful if they are waiting for a delivery notification, and not to execute any attachment included in those emails.
Related article: BOA Concerned about Safety of Team Data
» SPAMfighter News - 28-09-2012