Daily cyber threats and internet security news: network security, online safety and latest security alerts
July 26th, 2008

Malware Spam Attack Disguised As U.S. Customs and Border Protection Message

After recent malware emails disguised as UPS and tax messages, there is a new attack circulating via bogus email messages and claims to be from “US Customs Service.” The messages may contain the following subject lines:

Customs – We have received a parcel for you

Customs, please read

Parcel requires declaration

Your parcel is at the customs office

The message indicates that a parcel has been received addressed to the recipient of the email. These messages may also encourage users to open an attachment to the message that may contain malicious code.

The messages start with a greeting, and then says:

We have received a parcel for you, sent from France on July 9. Please fill out the customs declaration attached to this message and send it to us by mail or fax. The address and the fax number are at the bottom of the declaration form.

The attachment currently called, and the Trojan inside is a variation of what we’ve seen previously, detected by Sophos as Mal/Spy-A.

Users should not open attachments contained in unsolicited email messages and use anti-virus software with updated virus signature files.

Share this item with others:

More on CyberInsecure:
  • Malware Infected Spam Threatens To Suspend Internet Access
  • U.S Schools Are Targeted In Malware Spam Campaign
  • Cheap RFID Sniffing And Cloning Device For Sale By Researcher
  • Stolen Database Being Used To Spam Stickam Users
  • Southern Connecticut State University Warns Of Data Breach After Web Defacement

  • If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Malware Spam Attack Disguised As U.S. Customs and Border Protection Message

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.