Spammers threaten to “disconnect your internet”

Samples of a malicious campaign intercepted by SophosLabs carry the subject line “Your internet access is going to get suspended’ from the sender “ICS Monitoring Team’. 

The spam emails claim that the recipient has been conducting illegal activities online, which are said to be documented in a .zip file attached to the mails.  Unsuspecting users, who may be dependent on their connection or concerned over the recent spate of online piracy cases, that open the file risk infection from a malicious Trojan horse which will give hackers covert access to their PC.   

Graham Cluley senior technology consultant at Sophos commented:

With a recent survey finding that nearly half of Britain’s web users suffer from net addiction, it was only a matter of time before spammers would deploy social engineering tactics to take advantage. Recent piracy cases will also worry web users, especially those who may be using unsecured Wi-Fi – they’ll want to open the attachment to make sure that someone else hasn’t been using their connection to download copyrighted movies or music.  Unfortunately by then it’s too late, and they could have handed access to their computer and files to the hackers.  

The spammers have been using two malicious attachments in these emails, detected as Troj/Meredrop-A and Troj/Agent-HQK.

Don't miss