Spam Mails Notifying Receipt of ‘Insurance Policy Amendment Certificate’ Circulating
According to Webroot the security company, cyber criminals are spamming out e-mail messages which notify Internauts that they have got one "iGO4 Private Car Insurance Policy Amendment Certificate."
In reality, these bogus e-mails are designed for spreading malware, observes Webroot.
Security Blogger and Cyber-Crime Researcher Dancho Danchev at Webroot after studying the spam run describes the messages as telling recipients that their request to adjust their Personal Vehicle Policy is now complete.
But if Internet users, out of curiosity, open a given attachment labeled 'certificate.pdf.exe' they are likely to install one fresh sample of Trojan-PSW.Win32.Tepfer.
It may be noted that Trojan-PSW.Win32.Tepfer represents the 'password seizure' family of malware as well as possibly executes other criminal activities too, like stealing important data stored inside Web-browser cache, digging out electronic mail ids, alternatively gathering system data that can help in further schemes related to targeted assaults.
Presently, merely 27 AV engines of VirusTotal's entire 47 anti-virus scanners consist of the particular malware's signature. However, recent security solutions are chanced with detecting the Trojan because of the way it behaves, Webroot highlights.
Worryingly, it's because of the above kinds of malicious spam attacks which are causing an increase in malware online, researchers at Webroot remark.
In any case, for remaining safe from the aforesaid kinds of spam attacks and not getting victimized with them, Internet users are suggested abiding by some simple rules. One, they should be skeptical of attachments within uninvited bulk e-mails followed with not clicking on the same. But in case one considers clicking on such attachments, it is important to scan them first with updated signatures. Moreover, loading anti-virus software that is of the latest is vital for patching all security flaws which are prone to malware exploitation.
Conclusively, the current spam campaign, according to Dancho Danchev, is from those very cyber-crooks who were recently spamming similar fake e-mails informing recipients of Westminster Hotel booking. The fake e-mails carrying the subject line "Your Booking Reservation at Westminster Hotel" notified readers about certain hotel booking that had gotten done for them whilst in reality planted the Trojan-PSW.Win32.Tepfer onto their PCs.
» SPAMfighter News - 22-07-2013