Beware! A spate of malicious emails have been spammed out by online criminals, disguised as legitimate communications from the UK branch of online retail giant Amazon.
In a widespread attack, email messages have been distributed designed to trick computer users into opening an attachment disguised as information about an order for an unnamed item.
Here’s part of a typical message seen by the experts at SophosLabs:
From the looks of things, the body of the email itself – which have a subject line of “Your Order with Amazon.co.uk” – is harmless.
Any links contained inside the email do indeed go to the legitimate Amazon UK website, rather than a webpage hosting malware, and there are not attempts to phish for information.
The danger arrives in the file attached to the emails. The emails carry an attached file called “Your Order Details with Amazon.zip” which contains a Trojan horse.
It’s understandable that some computer users would be fooled into opening the attachment, as they might be wondering what on earth they have ordered from Amazon.
It should go without saying that Amazon UK is a completely innocent party. They didn’t send out the emails (despite what the forged “from” address used in the attack might suggest), and are having their brand tarnished by the cybercriminals behind this attack.
Computer users protected by Sophos security products will find the attachment is detected proactively as Mal/BredoZp-B.
Although there has been increased talk recently of drive-by-downloads and compromised websites being used to deliver malware onto the computers of unsuspecting computer users, it’s worth remembering that email-based malware is far from dead.
You should always keep your security systems up-to-date, and – because of the danger they could introduce to your computer – be suspicious of unsolicited email attachments.Follow @gcluley