Cybercriminals are currently sending out the spam messages – which come attached with a malware infected .zip file – with titles such as “Post Express Service. Get the parcel’ and “Post Express Service. Number of your parcel’, all followed by random serial numbers.
We’ve seen spammers use this tactic countless times before, sending messages claiming to be from FedEx, UPS and DHL, attempting to get the recipient to click a link or open a file,” said Graham Cluley, senior technology consultant at Sophos.
“Unfortunately, all you’re likely to receive is a Trojan Horse. There’s only one reason why cybercriminals keep using this type of social engineering to fool users into running malware – it’s still working for them. If you receive a message like this, don’t even open the email – delete it right away.”
Sophos detects the ZIP file as Troj/BredoZp-BT and the enclosed malware as Troj/Spyeye-R.