New phishing email found using Delta Airlines
Friday, March 6, 2009
A new phishing scam was found yesterday by a security firm involving emails that appeared to come from Delta Airlines as a confirmation of a ticket purchased by the user.
The message, which has the subject Confirmation of ticket purchase at www.delta.com, asks the user to download and print their Passenger Itinerary Receipt to their machine, which is an attachment in the email.
If a user downloads the attachment, a Trojan file will be placed on the computer which can reportedly avoid detection from antivirus products. As of yesterday afternoon, at least 3,000 examples were found of the email and the number increasing, according to the security firm that found the phishing attack.
Recently, a similar scam was found which also utilized Delta Airlines as an unknowing cyberculprit with a fake email campaign attempting to dupe users into thinking their credit card was charged for a flight.
The email told users to confirm their ticket purchase and asked to download a .zip file, which was found to be a Trojan, SCMagazineus.com reports. The file, named W32/Trojan2.FXRO, is similar to Zbot, a banking Trojan with the potential to commit identity theft by steal sensitive and personal information from infected machines.
Related News:
Conficker still a threat to web security - 3.18.2010
The Conficker worm was by far the most notorious piece of malware in 2009 for several reasons. Not only did it receive media attention and infect more computers than any other strain, according to Katonda, a business technology website, it reminded web security professionals of bygone days when major epidemics were the norm.
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
|
