Unexpected ticket purchase at www.delta.com?

by Graham Cluley on March 2, 2009 | Comments Off

Filed Under: Malware, Spam

The hackers are at it again, forcing a flurry of fake flight tickets to flood your email inboxes.

It's not a new method of tricking people into opening a malicious email attachment, but it surely works.

The latest campaign that has been spammed out claims that you have bought a ticket with Delta Air Lines. According to the email, the attached passenger itinerary receipt confirms that you paid your ticket in full and confirms your right to fly with Delta Air Lines.

Malicious email claiming to come from Delta airlines

Inside the attached file (delta_8612Z.zip) lurks the Troj/Inject-EW Trojan horse, however, which aims to sneak undetected onto your Windows PC for its own malicious purposes.

As always, think twice (and then, perhaps, twice again) before ever opening an unsolicited email attachment.

About the author

Graham Cluley is senior technology consultant at Sophos. The readers of Computer Weekly voted him security blogger of the year in 2009 and 2010, and he pipped Stephen Fry to the title of "Twitter user of the year" too. Which was nice. He was also named "Best Security Blogger" by the readers of SC Magazine in 2011. You can subscribe to Graham's updates on Facebook, follow him on Twitter and circle him on Google Plus for regular updates.