Help Net Security newsletters: Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here!

#wrapper *:not(#noScriptAlert) { opacity: 0.75; } #noScriptAlert { display: block; }

Please turn on your JavaScript for this page to function normally.

Zeljka Zorz, Editor-in-Chief, Help Net Security

November 24, 2011

Fake iTunes gift certificate offer carries malware

As the holiday shopping season is poised to start in the U.S. with tomorrow’s Black Friday, users are advised to be extra careful when it comes to too-good-to-be-true offers landing in their inboxes.

An example of this is a current spam email campaign that notifies them of having been the lucky recipient of a $50 gift certificate for iTunes:

“The spoofed email is purportedly from the iTunes Store, the subject line reads iTunes Gift Certificate, and the message includes an attachment that supposedly contains a certificate code,” warns Sophos.

Unfortunately, the zipped attachment is actually a variant of the backdoor-opening, information-stealing piece of malware detected by Sophos as Mal/BredoZp-B.

More about

malware

Resources

Don't miss

Cybersecurity news

HNS Daily

Daily newsletter sent Monday-Friday

HNS Newsletter

Weekly newsletter sent on Mondays

InSecure Newsletter

Editor's choice newsletter sent twice a month

Breaking news

Periodical newsletter released when there is breaking news

Cybersecurity jobs

Weekly newsletter listing new cybersecurity job positions

Open source

Monthly newsletter focusing on open source cybersecurity tools

I have read and agree to the terms & conditions

Fake iTunes gift certificate offer carries malware

Featured news

Resources

Don't miss