Over the past two days, Safe Systems Engineers have detected two new trends in spam emails. As these are both new threats, they have been able to make it through email filters and to users’ mailboxes. As always, Safe Systems strives to keep you informed of the newest threats, to allow you to better manage your financial institution’s systems.
The first new threat is a spam email containing a Trojan. We have seen a large number of spam messages with a subject line of “setting for your mailbox are changed” with an attachment named “doc.pdf”. This attachment is carrying a Trojan payload that, if opened, will infect the machine.
After detecting the threat, we have blocked this message at the email gateway for our SafeSysMail customers, but we urge you to check with your users and if anyone has received this message and opened the PDF to please contact Safe Systems Support to ensure their machine is not infected.
Secondly, phishing emails are being sent to multiple email addresses at financial institutions, such as abuse@, scams@, customersupport@, fraud@, etc. The emails claim to be from a good Samaritan who is notifying the institution about phishing emails he has received (you can read the email below). According to reports, clicking on the link will attempt to install malware on the computer. We urge you to check with your users and if anyone has received this message and clicked on the link to please contact Safe Systems Support to ensure their machine is not infected.
Cc: firstname.lastname@example.org; email@example.com; firstname.lastname@example.org; email@example.com
Subject: Possible Fake Web Site
Hello, I just received an email stating it was from your bank and since I don’t have any accounts with you I think this is a fake site.
I just thought you might like to know someone is trying to scam your customers.
The email had the following link to your bank [LINK]
Thanks, I hope you catch the scammers.
Safe Systems is providing this information in an effort to keep our customers informed and to enable you to better manage your financial institution’s systems. If you have any questions or require any additional information, please feel free to contact us at firstname.lastname@example.org or your Account Manager.