BBB warns consumers and businesses to be on the look out for any suspicious email from UPS. A new malware distribution campaign that generates emails posing as delivery notifications from United Parcel Service (UPS) is currently hitting people’s inboxes.
The rogue emails bear a subject of “United Parcel Service notification” and have spoofed headers to make it appear as if it originates from an firstname.lastname@example.org address.
The contained message reads: “The parcel was sent your home address. And it will arrive within 7 business day. More information and the tracking number are attached in document below. Thank you.”
The attachment is called UPSnotify.rar, and it contains a file called UPSnotify.exe which is a trojan downloader. Once installed, this malicious file proceeds to download and execute additional malware on the computer.
BBB advises consumers to treat all email attachments with caution, even if the emails appear to originate from legitimate sources. Also, consumers should be aware that the name of various parcel delivery services like UPS, DHL, USPS, FedEx and others are constantly used to distribute malware. When in doubt, always call the company over the phone to inquire about your package.
To read the full article, visit http://news.softpedia.com/news/Fake-UPS-Email-Campaign-Serves-Malware-Cocktail-191161.shtml