Emails containing malicious attachments bypass spam
filters, masquerading as a notice of online-ordering confirmation.
Often, users of postal services, Google, Microsoft and
Yahoo! do not get a ton of spam every day. Thanks to a special filter unwanted
and malicious emails do not get to the
users.
However, experts from the IS of Norman Safeground
warned about a new technique used by spammers to bypass filters. With its help,
the attackers send emails with attached malware.
Last week, one of the experts Norman Safeground found
in his email box three letters with the subjects- «Order no. 9623423 »,« Order no.
46534454 »and« Order no. 9755453 ". Each of them had a malicious
attachment. Topic posts chosen by chance, because now many users bought goods
on the internet, and entitled "Order number 9623423," do not arouse
suspicion.
Attackers masterful designed fake malicious emails in such a way that the
filters such as Google and Yahoo! can not distinguish them from legitimate.
Scammers use a very clever trick of social engineering: the user who receives
an order confirmation on a product that , did want to check out what was going on, and
certainly opens the malicious attachment.
When you receive confirmation of the order for the
goods, the expert advises not to open attachments and do not pass on the
proposed links. Check the order information or inquire with the provider of
banking services that have been implemented if any transaction.
Source : securitylab.ru
No comments:
Post a Comment