Happy
Monday! A little nasty business to start your week: According to the United
Postal Service (UPS), cybercriminals have launched another massive spam
campaign targeting consumers and business customers across the country
impersonating the UPS. The emails have taken on different forms in recent weeks
from “We failed to deliver your package on time” to “Wrong recipient addresses”
and even “Your UPS account is suspended.”
Regardless
of the claim, clicking on the link in the email or opening the alleged
attachment (if you “hover” over the attached “pdf” it’s actually an executable
file) downloads and executes malicious software instantly. The malware opens a backdoor on the infected
host, allowing the cybercriminals to gain complete control over the victim’s computer
and network.
According
to VirusTotal, the detection rate for the malicious attachment:
MD5: 0e78d3704332c59b619f872fd6d33d25 is
detected by 32 out of 43 antivirus scanners as
“Trojan-Downloader.Win32.Andromeda.qw.”
For
more information and to see current examples of spam email claiming to be from
the UPS, Click Here