[Ucs-events] FDIC and Western Union themed emails lead to ma…

Top Page
Delete this message
Reply to this message
Author: Bob Beaudoin
Date:  
To: 
Subject: [Ucs-events] FDIC and Western Union themed emails lead to malware
Malware Watch: FDIC and Western Union themed emails lead to malware

By Dancho Danchev | August 31, 2011, 5:36am PDT

Security researchers from Sophos, have intercepted two currently active and
circulating malware campaigns, enticing users into downloading and executing
malicious file attachments.

The *first campaign*<http://nakedsecurity.sophos.com/2011/08/30/fdic-notification-malware/>
is
impersonating the Federal Deposit Insurance Corporation (FDIC), for
malware-serving purposes.

<http://i.zdnet.com/blogs/fdic_malware.jpg>

Spamvertised as:

Dear customer,Your account ACH and WIRE transaction have been temporarily
suspended for security reasons due to the expiration of your security
version. To download and install the newest installations read the
document(pdf) attached below.As soon as it is setup, you transaction
abilities will be fully restored.Best Regards, Online Security departament,
Federal Deposit Insurance Corporation.

The spamvertised *FDIC_document.zip* is currently detected as Mal/BredoZp-B.

The *second campaign*<http://nakedsecurity.sophos.com/2011/08/31/western-union-money-transfer-trojan/>
is
impersonating Western Union for malware serving purposes.

<http://i.zdnet.com/blogs/western-union-email.jpg>

Spamvertised as:

ATTENTION!DEAR CONSUMER , You have received a remittance, more information
about the money transfer is in the attached file.Money Order can be cashed
at any branch or bank in Your citySincerely , Westernunion

The spamvertised attachments are currently detected as Mal/Zbot-CX.

Users are advised not to interact with suspicious emails, or *spam
emails*<http://www.zdnet.com/blog/security/survey-millions-of-users-open-spam-emails-click-on-links/5889>
in
general.