Malware Delivered by Fake Xerox Emails, says Bitdefender

According to security firm Bitdefender, a new spam email campaign is currently masquerading across the Internet which is abusing the name and popularity of Xerox, a US-based document management company, by appealing Internauts into downloading a scanned file that contaminates their machines with malware.

As accords to Bitdefender's data, it is discussing about a 10,000 email wave recorded in less than sixty minutes, thereby qualifying this assault as significant.

The email entitled as 'Scan from a Xerox WorkCentre' that is common enough to allure some hasty or busy Internauts for whom getting scanned papers through work hours is ordinary. These recipients overlook the particulars particularly if they witness that the received message was mailed by someone in the company itself.

Shedding light on spam email campaign, Loredana Botezatu, a Research Analyst with Bitdefender noted that cybercriminals have been well-known to stare at lists of email ids for ordinary or corporate domain names for much more targeted attacks, as accords to news published by gmanetwork.com on August 28, 2013.

Investigation demonstrated that the bogus email dispenses a downloader Trojan that has been identified as Trojan.GenericKDV.1210899 by Bitdefender software and it looks for vulnerability on the PC of the victim to push forward malicious code.

Botezatu said that it generally works because many users don't maintain their software updated with most recent of security fixes.

Once it detects the flaws, the malicious software further downloads Trojan.Zbot.IAO, the banking Trojan that embezzles and snatches passwords and usernames to monitor websites of banks.

Bitdefender obstructs the spam emails and malicious websites and users having the antivirus (AV) solution installed on their systems are protected. So the company recommends users to maintain their software and antivirus updated.

Conclusively, it is not the first time that Xerox has been targeted by cybercriminals according to security firm Websense. In January 2013, cybercriminals sent emails purporting to be from Xerox from a scanner inside the office building to email accounts of staff members of the company and emails entitled "Re: Scan from a Xerox W. Pro #XXXXXXX," informing recipients that the document was sent from a Xerox device.

» SPAMfighter News - 9/3/2013