Identity Theft News

Trojan in pseudo Delta email

Monday, March 2, 2009

A spoof email is currently being sent to users claiming to be from Delta Airlines and informing the recipient their credit card has been charged for a flight, according to an advisory from the company.

Users are told to confirm their ticket purchase in the email and asked to download the attached zip file, which is a Trojan, SCMagazineus.com reports. The file, named W32/Trojan2.FXRO, is similar to Zbot, a banking Trojan that has the potential to steal sensitive and personal information from infected machines.

The emails have reportedly been sent within the past two days and it is unknown how many people have been affected by the email attack.

The cybercriminals involved concealed their tracks through a technique called email address spoofing, which allows the attacker to enter in a different "From" address in the fake email, according to the article.

Recently, similar email attacks have hit other airlines, including Northwest and United Airlines. Given the current state of the economy, cybercriminals may be using the public's fear of identity theft to convince them to download the malicious file in the email message.

This may also be another reminded for organizations and SMBs to update their email security.ADNFCR-1765-ID-19052313-ADNFCR

Related News:

Threat of identity theft shows need for online security - 11.19.2009
As Americans live increasingly large portions of their lives on the internet, the possibilities and incentives for remote identity theft increase as well. A report in the New York Times advises caution, and gives tips for constructing an "online bulwark" to prevent theft and fraud.

Wi-Fi network security vulnerable to man-in-the-middle attacks on smart phones - 11.16.2009
Researchers last week revealed a weakness in mobile network security that could allow for so-called "man-in-the-middle" techniques to steal personal information from users of certain types of mobile phones.

FDIC warns banks of money transfer 'mules' duped by cybercriminals - 11.2.2009
In a new warning to banks about illicit electronic fund transfers, the Federal Deposit Insurance Corporation (FDIC) said last week that online bank account theft is rising using "money mules," unwitting job-seekers who are duped by cyber crooks into wiring funds from hacked bank accounts.

Obama addresses cybersecurity awareness in YouTube video - 10.21.2009
Online cyber attacks and identity theft have never been higher, a threat environment that challenges U.S. security every day. President Obama has designated October as National Cybersecurity Awareness Month, which he addressed in a web video last week.

Facebook application security hole exposes millions to hacking, researcher says - 10.19.2009
A security researcher is warning Facebook users about potential vulnerabilities in Facebook applications that could allow cross-site scripting (XSS) hacker attacks for hijacking user accounts.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now