Malware Spam Attack Disguised As U.S. Customs and Border Protection Message
After recent malware emails disguised as UPS and tax messages, there is a new attack circulating via bogus email messages and claims to be from “US Customs Service.” The messages may contain the following subject lines:
Customs – We have received a parcel for you
Customs, please read
Parcel requires declaration
Your parcel is at the customs office
The message indicates that a parcel has been received addressed to the recipient of the email. These messages may also encourage users to open an attachment to the message that may contain malicious code.
The messages start with a greeting, and then says:
We have received a parcel for you, sent from France on July 9. Please fill out the customs declaration attached to this message and send it to us by mail or fax. The address and the fax number are at the bottom of the declaration form.
The attachment currently called Bill_Tax.zip, and the Trojan inside is a variation of what we’ve seen previously, detected by Sophos as Mal/Spy-A.
Users should not open attachments contained in unsolicited email messages and use anti-virus software with updated virus signature files.
More on CyberInsecure:
Leave a Reply
Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.