Email based threat in message “An employee has been terminated”


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "An employee has been terminated". This email is send from the spoofed addresses and has the following body: An Employee has just been terminated. Name: Michael Harney Employee profile: Link Emplid: 6283 Rcd#: 0 Termination Date: 11/22/2016 The embedded … Continue reading Email based threat in message “An employee has been terminated”

New VBS malware in email “Please verify” leads to Locky


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "Please verify". This email is send from the spoofed addresses and has the following body: Hey *******, as you requested, I have proofread the technical document you sent. There are some confused parts in it. Please verify the parts … Continue reading New VBS malware in email “Please verify” leads to Locky

New VBS malware in email with subject “Bill” – Locky ransomware


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "Bill". This email is send from the spoofed addresses and has the following body: Dear ******* To continue using our maintenance service, please pay for last month's fee by 4th of November. The bill is attached in the email. … Continue reading New VBS malware in email with subject “Bill” – Locky ransomware

New WSF malware in emails “Voice Message from Outside Caller”


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "Voice Message from Outside Caller (2m 31s)". This email is send from the spoofed address "Peach Telecom <peach_necsv446@hotmail.co.uk>" and has the following body: Voice Message Arrived on Friday, Aug 26 @ 8:50 AM Name: Outside Caller Number: Unavailable Duration: … Continue reading New WSF malware in emails “Voice Message from Outside Caller”

New Javascript malware in email “office equipment”


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "office equipment". This email is send from the spoofed addresses and has the following body: Dear ****, Please sign the attached purchase of the office equipment. We will send you back the receipt afterward. Best regards, Marylou Cox Sales … Continue reading New Javascript malware in email “office equipment”