New WSF malware in emails “Voice Message from Outside Caller”


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "Voice Message from Outside Caller (2m 31s)". This email is send from the spoofed address "Peach Telecom <peach_necsv446@hotmail.co.uk>" and has the following body: Voice Message Arrived on Friday, Aug 26 @ 8:50 AM Name: Outside Caller Number: Unavailable Duration: … Continue reading New WSF malware in emails “Voice Message from Outside Caller”

New Javascript malware in email “office equipment”


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "office equipment". This email is send from the spoofed addresses and has the following body: Dear ****, Please sign the attached purchase of the office equipment. We will send you back the receipt afterward. Best regards, Marylou Cox Sales … Continue reading New Javascript malware in email “office equipment”

Fake email DHL with subject “DHL Levering: 7TOWTQ6363338851” downloads malware


MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject "DHL Levering: 7TOWTQ6363338851". The email has the DHL logo included, is written in Dutch and sent to .nl domains and as such targetting DHL customers in the Netherlands. This email is send from the spoofed address "DHL Parcel <****@*****.**>" … Continue reading Fake email DHL with subject “DHL Levering: 7TOWTQ6363338851” downloads malware

Fake domain name registration/extension notice leads to phishing attempt


MX Lab, http://www.mxlab.eu, started to intercept some fake domain registration/extension during the last few days, on a low volume, that clearly show that those are attempts to steal credit card information over an insecure HTTP connection. The emails are sent from addresses like: noreply@orderinformation4640.com noreply@yourcompletedorder4002.com noreply@yourreceipt2612.com noreply@yourcompletedorder6221.com The possible subjects are: FWD: Attention: Domain Registration … Continue reading Fake domain name registration/extension notice leads to phishing attempt