Take a look at a couple of email messages Sophos intercepted earlier today.
Firstly, the great guys at Google have been in touch. Their message, entitled “Thank you from Google!”, says that they have received my job application and are investigating whether they have the right position inside their company for me.
If I’ve forgotten the details of my job application (which I clearly have, as I can’t for the life of me remember applying for a job at the Googleplex) then they’ve handily attached it as CV-20100120-112.zip.
And here’s a message from Facebook. They’ve dropped me a note as well – with the title “You have got a new message on Facebook!” – to say that I’ve received a personal message from an unnamed friend.
Rather than visiting the Facebook site (which is such a pain, isn’t it?), Facebook have kindly attached the personal message to the email as a file called Facebook message.zip.
Hopefully none of you would be foolish enough to click on the attachments, because they are – of course – malicious.
Sophos products detect the ZIP files in both cases as Troj/ZipMal-AM and their contents as the W32/AutoRun-BHX worm.
Always be suspicious of unsolicited email attachments, and ensure that your anti-virus protection is up-to-date. Malware campaigns can take different disguises and users must learn to be on their guard.
In fact, just as I finish writing this I see there’s another campaign spreading the same malware.
The subject line this time?
"Laura would like to be your friend on hi5!"
Full story: Naked Security – Sophos
Related Posts
- Phony Facebook Photos lead to malware
This latest Facebook scam seems to have been rattling around for a few weeks now, directing you to malware from hacked websites hosting the rogue files. There also appear to be various Facebook applic... - “Photos” via Instant Messengers, Facebook Lead to Malware
We’ve received reports about a new wave of malware spreading via Facebook, Yahoo! Messenger and Windows Live. Messages are spreading via these services that have the following text:
Foto http... - Emails with subject “LinkedIn Messages, 9/30/2010″ lead to malware
MX Lab, http://www.mxlab.eu, started to intercept a new trojan distribution campaign by email with the subject “LinkedIn Messages, 9/30/2010″.
The email is send from the spoofed address &#... - Email messages with subject “LinkedIn Alert” lead to malware. Belgian political party Vlaams Belang is hosting a malicious file.
MX Lab, http://www.mxlab.eu, is intercepting an certain amount of emails with the subject “LinkedIn Alert” that leads to a website with malicious software and redirects surfers to a online... - Google Celeb Searches Lead to qooglesearch Malware
Whatever the latest hot topic is, chances are the blackhat SEO criminals are already poised to cash in. Over this past weekend, ScanSafe saw a surge in celebrity searches leading to malware encounters... - Google+ Project Vs Facebook Safety Features
Today there are many social networks on the internet and everyday new ones are being introduced with new and better features. They have unique and useful features, which makes it easy for users to rem... - 500 free credits from Facebook – malware
There's no such thing as a free lunch - or free Facebook credits. As proof consider the attack described below which has several stages:1) Users get messages with o... - CBS Money Watch / ZDnet hacked and blacklisted by Google
We are getting reports that the CBS Money Watch and some ZDNet web sites are currently distributing malware and blacklisted by Google. We are still investigating it, but if you try to visit the CBS Mo... - Spam from your Facebook account? Malware attack poses as official warning
Cybercriminals are adopting a new disguise, following last week's "Facebook password changed" malware attack.
Computer users are discovering malicious code has been sent to their email inboxes, preten... - An open letter to Facebook about safety and privacy
Dear Facebook,
As you know, for some years we have been discussing with your security team our concerns about safety and privacy on Facebook.
Every day, victims report to us numerous incidents of crim...
Posted on 25 January 2011. Tags: Facebook, from, Google, Lead, Malware, Messages, Personal, Thank
