Spamvertised 'DHL Tracking Notification' emails serve malware

Summary:Security researchers from Sophos have intercepted a currently circulating malware campaign that's using 'DHL Tracking Notification" themed emails in order to serve malware.

Security researchers from Sophos have intercepted a currently circulating malware campaign that's using 'DHL Tracking Notification" themed emails in order to serve malware.

The emails contain a ZIP attachment -- DHL-Express-Delivery-Notification-Details_03-2012_[random string].zip -- that's containing the actual malicious code. The malware is currently detected as Mal/BredoZp-B and Mal/Zbot-FV.

This isn't the first time that cybercriminals are impersonating DHL. In the past, they have also impersonated UPS and FedEx, once again in an attempt to trick end and corporate users into downloading and executing a malicious attachment.

End and corporate users are advised to avoid interacting with the emails, and to report them as spam/fraudulent immediately.

Topics: Malware, Collaboration, Security

About

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog sharing real-time threats intelligence data with the rest of the community... Full Bio

zdnet_core.socialButton.googleLabel Contact Disclosure

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.