Alert — There has been a resurgence of an email virus that installs malware on the victim’s computer. The email claims to be from a delivery company, such as, the UPS, FedEx or DHL. Do not open the email. Definitely, do not unzip the email attachment.
The email usually looks something like this:
Hello!
Unfortunately we were not able to deliver the postal package you have sent on the 5th of June in time
because the addressee’s address is erroneous.
Please print out the invoice copy attached and collect the package at our department.
DHL Express Services.
Attachment Converted: “c:\FILE_Xfecf.zip”
Comments Off
US-CERT is aware of reports of economic stimulus scams circulating. These scams are being conducted through both email and malicious websites.
Some of the email scam messages request personal information, which can then be used for identity theft. Other email scam messages offer to deposit the stimulus funds directly into users’ bank accounts. If users provide their banking information, the attackers may be able to withdraw funds from the users’ accounts.
The website scams entice users by claiming that they can help them get money from the stimulus fund. These websites typically request payment for their services. If users provide their credit card information, the attackers running the malicious sites may make unauthorized charges to the card, or charge users more than the agreed upon terms.
US-CERT encourages users to do the following to help mitigate the risks:
Review the Federal Trade Commission alert about economic stimulus scams.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.
US-CERT is aware of public reports indicating that phishing scams are circulating via fraudulent U.S. Internal Revenue Service emails offering users stimulus package payments. These emails include text that attempts to convince users to follow a link to a website or to complete an attached document. The website and document request the user to provide personal information.
Users receiving the fraudulent email messages are encouraged to send the email message and the website URL to the IRS at phishing@irs.gov.
US-CERT encourages users to do the following to help mitigate the risks:
* Do not follow unsolicited web links received in email messages.
* Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
* Refer to the Avoiding Social Engineering and Phishing Attacks (pdf) document for more information on social engineering attacks.
* Review the How to Report and Identify Phishing, E-mail Scams and Bogus IRS Web Sites document on the IRS website.