Malware poses as FTC complaint

By

USA - The US Federal Trade Commission (FTC) has become the latest government agency to be used as a front for e-mail attacks.

Malware poses as FTC complaint
Email security provider MX Logic said that it had found multiple instances of fraudulent emails claiming to be from an email for the government organization.

The messages notify users that they have filed a complaint with the agency and included a document  with a copy of the alleged complaint. Users who open the document are infected with a keylogger that can be used to steal login information and other confidential data.

Sam Masiello, director of the MX Logic Threat Center, thinks that attack is related to two prior spam runs where the senders posed as government agencies. In January, scammers used bogus tax refund claims to lure victims. In May, emails that appeared to be from the Better Business Bureau were used to install key-loggers on victims' PCs.

"I would guess that these different variants are being sent out by the same spam gang, and are likely even targetting the same people with each new run," Masiello said in an posting to a company blog.

The attacks furthermore have similar patterns. They target business executives and managers, the messages are highly personalised and all three attacks use a malicious RTF file to install key-loggers on the targeted systems.

Masiello recommends that users immediately delete the email if an attack attempt is suspected.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:

Most Read Articles

Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack

Home Affairs officer accessed data on "friends and associates"

Home Affairs officer accessed data on "friends and associates"

Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks

International Criminal Court hit by cyber attack

International Criminal Court hit by cyber attack

Log In

  |  Forgot your password?