'You visit illegal websites' FBI-themed emails lead to scareware

Summary:Multiple vendors are reporting on a currently ongoing spamvertised scareware-serving campaign, that's brand-jacking the FBI.

Multiple vendors are reporting on a currently ongoing spamvertised scareware-serving campaign, that's brand-jacking the FBI. The marked with "High Priority" emails attempt to impersonate the Federal Bureau of Investigation.

Sample subject: You visit illegal websites

Sample message: Sir/Madam, we have logged your IP-address on more than 40 illegal Websites. Important: Please answer our questions! The list of questions are attached. pbu bx ng

Sample attachment: document.zip

Upon execution document.exe drops a copy of the XP Total Security scareware, and is currently detected as Trojan.Zlob.2.Gen.

Users are advised to avoid interacting with suspicious links and email attachments found in email messages.

Topics: Government : US, Browser, Collaboration, Government, Malware, Security

About

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog sharing real-time threats intelligence data with the rest of the community... Full Bio

zdnet_core.socialButton.googleLabel Contact Disclosure

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.